94.131.247.61

As of: Feb 02, 2023 3:18pm UTC | Latest
{
  "ip": "94.131.247.61",
  "services": [
    {
      "_decoded": "ssh",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.5",
      "banner_hashes": [
        "sha256:06fb0c01d3a2a962b56d99bbce69166fe6ceb99184ee4d7f3cbc62739a480bd4"
      ],
      "banner_hex": "5353482d322e302d4f70656e5353485f382e327031205562756e74752d347562756e7475302e35",
      "extended_service_name": "SSH",
      "observed_at": "2023-02-01T18:31:54.960393538Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 22,
      "service_name": "SSH",
      "software": [
        {
          "product": "openssh",
          "other": {
            "comment": "Ubuntu-4ubuntu0.5"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Ubuntu",
          "product": "Linux",
          "version": "20.04",
          "other": {
            "family": "Linux"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:openbsd:openssh:8.2:p1:*:*:*:*:*:*",
          "part": "a",
          "vendor": "OpenBSD",
          "product": "OpenSSH",
          "version": "8.2",
          "update": "p1",
          "other": {
            "family": "OpenSSH"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.248.133.119",
      "ssh": {
        "endpoint_id": {
          "_encoding": {
            "raw": "DISPLAY_UTF8"
          },
          "raw": "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.5",
          "protocol_version": "2.0",
          "software_version": "OpenSSH_8.2p1",
          "comment": "Ubuntu-4ubuntu0.5"
        },
        "kex_init_message": {
          "kex_algorithms": [
            "curve25519-sha256",
            "[email protected]",
            "ecdh-sha2-nistp256",
            "ecdh-sha2-nistp384",
            "ecdh-sha2-nistp521",
            "diffie-hellman-group-exchange-sha256",
            "diffie-hellman-group16-sha512",
            "diffie-hellman-group18-sha512",
            "diffie-hellman-group14-sha256"
          ],
          "host_key_algorithms": [
            "rsa-sha2-512",
            "rsa-sha2-256",
            "ssh-rsa",
            "ecdsa-sha2-nistp256",
            "ssh-ed25519"
          ],
          "client_to_server_ciphers": [
            "[email protected]",
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "[email protected]",
            "[email protected]"
          ],
          "server_to_client_ciphers": [
            "[email protected]",
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "[email protected]",
            "[email protected]"
          ],
          "client_to_server_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-sha1"
          ],
          "server_to_client_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-sha1"
          ],
          "client_to_server_compression": [
            "none",
            "[email protected]"
          ],
          "server_to_client_compression": [
            "none",
            "[email protected]"
          ],
          "first_kex_follows": false
        },
        "algorithm_selection": {
          "kex_algorithm": "[email protected]",
          "host_key_algorithm": "ecdsa-sha2-nistp256",
          "client_to_server_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          },
          "server_to_client_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          }
        },
        "server_host_key": {
          "fingerprint_sha256": "1d105058f2eed6ca4954ec131e22db87787ed0318b9d3444ef23692427d2c639",
          "ecdsa_public_key": {
            "_encoding": {
              "b": "DISPLAY_BASE64",
              "gx": "DISPLAY_BASE64",
              "gy": "DISPLAY_BASE64",
              "n": "DISPLAY_BASE64",
              "p": "DISPLAY_BASE64",
              "x": "DISPLAY_BASE64",
              "y": "DISPLAY_BASE64"
            },
            "b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
            "curve": "P-256",
            "gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
            "gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
            "length": 256,
            "n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
            "p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
            "x": "oSgrS4LFekREBn1FgwKwx3fMsHC9pESEYCn0djtJz2M=",
            "y": "g5DJBW4FbKkThhHd0+Go+f5wFop0lw9bR/Z9N3JXilc="
          }
        },
        "hassh_fingerprint": "3ccd1778a76049721c71ad7d2bf62bbc"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "smtp",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "220 mukachevo-rada.gov.ua, ESMTP EXIM 4.94\r\n",
      "banner_hashes": [
        "sha256:3e13ac8174ad030e555781ff90ae8a1cdf17e75529e45db92dce5cfefedab103"
      ],
      "banner_hex": "323230206d756b61636865766f2d726164612e676f762e75612c2045534d5450204558494d20342e39340d0a",
      "certificate": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
      "extended_service_name": "SMTP-STARTTLS",
      "observed_at": "2023-02-01T22:10:01.494573152Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "port": 25,
      "service_name": "SMTP",
      "smtp": {
        "_encoding": {
          "banner": "DISPLAY_UTF8",
          "ehlo": "DISPLAY_UTF8",
          "start_tls": "DISPLAY_UTF8"
        },
        "banner": "220 mukachevo-rada.gov.ua, ESMTP EXIM 4.94\r\n",
        "ehlo": "250-mukachevo-rada.gov.ua Hello scanner-07.ch1.censys-scanner.com [167.94.138.62]\r\n250-SIZE 67108864\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-X_PIPE_CONNECT\r\n250-AUTH PLAIN LOGIN CRAM-MD5\r\n250-CHUNKING\r\n250-STARTTLS\r\n250 HELP\r\n",
        "start_tls": "220 TLS go ahead\r\n"
      },
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:exim:exim:4.94:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "exim",
          "product": "exim",
          "version": "4.94",
          "other": {
            "family": "exim"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.138.62",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
          "leaf_data": {
            "names": [
              "mukachevo-rada.gov.ua"
            ],
            "subject_dn": "C=UA, ST=Default, L=Default, O=Brainy, CN=mukachevo-rada.gov.ua",
            "issuer_dn": "C=UA, ST=Default, L=Default, O=Brainy, CN=mukachevo-rada.gov.ua",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "efbb14bd63b4a54b87cd062d46c55e8955075e852850395b5be181b1221775d5",
            "fingerprint": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
            "issuer": {
              "common_name": [
                "mukachevo-rada.gov.ua"
              ],
              "locality": [
                "Default"
              ],
              "organization": [
                "Brainy"
              ],
              "province": [
                "Default"
              ],
              "country": [
                "UA"
              ]
            },
            "subject": {
              "common_name": [
                "mukachevo-rada.gov.ua"
              ],
              "locality": [
                "Default"
              ],
              "organization": [
                "Brainy"
              ],
              "province": [
                "Default"
              ],
              "country": [
                "UA"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "yCdlXW/bKU+MgdstEUKsOCd11PNu1AdiCaOB90xcChSEqezwlg1Raiqa3H3NHMM8lYB2VC/X8bhYMbK9M+nYMDJWPDy0LlYv4UVItPk+q+GrTAD6erf3bNWohnH1mqWhCvHDxtMVsgADAioIhk9wN+HFwEcFsPFxc/rXMEsgjDZdfi/V+Kb1A6GmVcP4awVXYPX5Y5tWsss3ghnzQvLbgA2uSZK6g8JGwY2UHnYkMQ4t7XB4OkWjdoCmoUCywWFDR376cL8HH3rXTdyL3r1xZ6ByVtLd+hvUC6Xn9nCnpp8/FCRUJq0tfdNL+YGc2D1dMtCd8Sw/Vm20RPrAtHXWhQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "411633c73c2506ef248e81b915fff092f23f999f98c2a97043a66cf6a6b7ab07"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "303951d4c50efb2e991652225a6f02b1"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 301 Moved Permanently\r\nServer: nginx\r\nDate:  <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 162\r\nConnection: keep-alive\r\nLocation: https://94.131.247.61/\r\nX-Frame-Options: SAMEORIGIN\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\nReferrer-Policy: no-referrer\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\n",
      "banner_hashes": [
        "sha256:6d824f7fcc339cd45bb4a9e1c78efa43f06ed3679731f0cc03889094f4cdad73"
      ],
      "banner_hex": "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",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://94.131.247.61/",
          "headers": {
            "Accept": [
              "*/*"
            ],
            "_encoding": {
              "Accept": "DISPLAY_UTF8",
              "User_Agent": "DISPLAY_UTF8"
            },
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 301,
          "status_reason": "Moved Permanently",
          "headers": {
            "X_Xss_Protection": [
              "1; mode=block"
            ],
            "_encoding": {
              "X_Xss_Protection": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Location": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "X_Content_Type_Options": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Referrer_Policy": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "X_Frame_Options": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Strict_Transport_Security": "DISPLAY_UTF8"
            },
            "Connection": [
              "keep-alive"
            ],
            "Location": [
              "https://94.131.247.61/"
            ],
            "Server": [
              "nginx"
            ],
            "X_Content_Type_Options": [
              "nosniff"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Referrer_Policy": [
              "no-referrer"
            ],
            "Content_Type": [
              "text/html"
            ],
            "X_Frame_Options": [
              "SAMEORIGIN"
            ],
            "Content_Length": [
              "162"
            ],
            "Strict_Transport_Security": [
              "max-age=31536000; includeSubDomains"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>301 Moved Permanently</title>"
          ],
          "body_size": 162,
          "body": "<html>\r\n<head><title>301 Moved Permanently</title></head>\r\n<body>\r\n<center><h1>301 Moved Permanently</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
          "body_hashes": [
            "sha256:9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a",
            "sha1:3adb1f02d5b6054de0046e367c1d687b6cdf7aff"
          ],
          "body_hash": "sha1:3adb1f02d5b6054de0046e367c1d687b6cdf7aff",
          "html_title": "301 Moved Permanently"
        },
        "supports_http2": false
      },
      "observed_at": "2023-02-02T10:26:53.581124471Z",
      "perspective_id": "PERSPECTIVE_ORANGE",
      "port": 80,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:nginx:nginx:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "nginx",
          "product": "nginx",
          "other": {
            "family": "nginx"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.145.57",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "pop3",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "+OK Dovecot ready.\r\n",
      "banner_hashes": [
        "sha256:095c6dbf7d6290d9c885271a78f82e11a7df7c9a8733d4e13236b47608e527c4"
      ],
      "banner_hex": "2b4f4b20446f7665636f742072656164792e0d0a",
      "certificate": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
      "extended_service_name": "POP3S",
      "observed_at": "2023-02-02T00:29:32.882934179Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "pop3": {
        "_encoding": {
          "banner": "DISPLAY_UTF8",
          "start_tls": "DISPLAY_UTF8"
        },
        "banner": "+OK Dovecot ready.\r\n",
        "start_tls": "+OK Begin TLS negotiation now.\r\n"
      },
      "port": 110,
      "service_name": "POP3",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:dovecot:dovecot:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Dovecot",
          "product": "Dovecot",
          "other": {
            "family": "Dovecot"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.138.44",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
          "leaf_data": {
            "names": [
              "mukachevo-rada.gov.ua"
            ],
            "subject_dn": "C=UA, ST=Default, L=Default, O=Brainy, CN=mukachevo-rada.gov.ua",
            "issuer_dn": "C=UA, ST=Default, L=Default, O=Brainy, CN=mukachevo-rada.gov.ua",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "efbb14bd63b4a54b87cd062d46c55e8955075e852850395b5be181b1221775d5",
            "fingerprint": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
            "issuer": {
              "common_name": [
                "mukachevo-rada.gov.ua"
              ],
              "locality": [
                "Default"
              ],
              "organization": [
                "Brainy"
              ],
              "province": [
                "Default"
              ],
              "country": [
                "UA"
              ]
            },
            "subject": {
              "common_name": [
                "mukachevo-rada.gov.ua"
              ],
              "locality": [
                "Default"
              ],
              "organization": [
                "Brainy"
              ],
              "province": [
                "Default"
              ],
              "country": [
                "UA"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "yCdlXW/bKU+MgdstEUKsOCd11PNu1AdiCaOB90xcChSEqezwlg1Raiqa3H3NHMM8lYB2VC/X8bhYMbK9M+nYMDJWPDy0LlYv4UVItPk+q+GrTAD6erf3bNWohnH1mqWhCvHDxtMVsgADAioIhk9wN+HFwEcFsPFxc/rXMEsgjDZdfi/V+Kb1A6GmVcP4awVXYPX5Y5tWsss3ghnzQvLbgA2uSZK6g8JGwY2UHnYkMQ4t7XB4OkWjdoCmoUCywWFDR376cL8HH3rXTdyL3r1xZ6ByVtLd+hvUC6Xn9nCnpp8/FCRUJq0tfdNL+YGc2D1dMtCd8Sw/Vm20RPrAtHXWhQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "411633c73c2506ef248e81b915fff092f23f999f98c2a97043a66cf6a6b7ab07"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "303951d4c50efb2e991652225a6f02b1"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "imap",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready.\r\n",
      "banner_hashes": [
        "sha256:f51d5e84ff0ee890a8eb58f28f88217e9265f8e29785fd6a6495903e36725358"
      ],
      "banner_hex": "2a204f4b205b4341504142494c49545920494d41503472657631204c49544552414c2b205341534c2d4952204c4f47494e2d524546455252414c5320494420454e41424c452049444c45205354415254544c5320415554483d504c41494e20415554483d4c4f47494e20415554483d4449474553542d4d443520415554483d4352414d2d4d44355d20446f7665636f742072656164792e0d0a",
      "certificate": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
      "extended_service_name": "IMAPS",
      "imap": {
        "_encoding": {
          "banner": "DISPLAY_UTF8"
        },
        "banner": "* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready.\r\n",
        "start_tls": "a001 OK Begin TLS negotiation now.\r\n"
      },
      "observed_at": "2023-02-01T04:44:34.127883015Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "port": 143,
      "service_name": "IMAP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        }
      ],
      "source_ip": "167.94.138.63",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
          "leaf_data": {
            "names": [
              "mukachevo-rada.gov.ua"
            ],
            "subject_dn": "C=UA, ST=Default, L=Default, O=Brainy, CN=mukachevo-rada.gov.ua",
            "issuer_dn": "C=UA, ST=Default, L=Default, O=Brainy, CN=mukachevo-rada.gov.ua",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "efbb14bd63b4a54b87cd062d46c55e8955075e852850395b5be181b1221775d5",
            "fingerprint": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
            "issuer": {
              "common_name": [
                "mukachevo-rada.gov.ua"
              ],
              "locality": [
                "Default"
              ],
              "organization": [
                "Brainy"
              ],
              "province": [
                "Default"
              ],
              "country": [
                "UA"
              ]
            },
            "subject": {
              "common_name": [
                "mukachevo-rada.gov.ua"
              ],
              "locality": [
                "Default"
              ],
              "organization": [
                "Brainy"
              ],
              "province": [
                "Default"
              ],
              "country": [
                "UA"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "yCdlXW/bKU+MgdstEUKsOCd11PNu1AdiCaOB90xcChSEqezwlg1Raiqa3H3NHMM8lYB2VC/X8bhYMbK9M+nYMDJWPDy0LlYv4UVItPk+q+GrTAD6erf3bNWohnH1mqWhCvHDxtMVsgADAioIhk9wN+HFwEcFsPFxc/rXMEsgjDZdfi/V+Kb1A6GmVcP4awVXYPX5Y5tWsss3ghnzQvLbgA2uSZK6g8JGwY2UHnYkMQ4t7XB4OkWjdoCmoUCywWFDR376cL8HH3rXTdyL3r1xZ6ByVtLd+hvUC6Xn9nCnpp8/FCRUJq0tfdNL+YGc2D1dMtCd8Sw/Vm20RPrAtHXWhQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "411633c73c2506ef248e81b915fff092f23f999f98c2a97043a66cf6a6b7ab07"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "303951d4c50efb2e991652225a6f02b1"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "banner_grab",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 02 Feb 2023 05:48:11 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
      "banner_grab": {
        "_encoding": {
          "banner": "DISPLAY_BASE64"
        },
        "banner": "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",
        "transport": "TCP"
      },
      "banner_hashes": [
        "sha256:574871e488903dd932991b53d8202fc3ff88efcad9bdf8e5f130e3c619c0005d"
      ],
      "banner_hex": "485454502f312e31203430302042616420526571756573740d0a5365727665723a206e67696e780d0a446174653a205468752c2030322046656220323032332030353a34383a313120474d540d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a436f6e74656e742d4c656e6774683a203234380d0a436f6e6e656374696f6e3a20636c6f73650d0a0d0a3c68746d6c3e0d0a3c686561643e3c7469746c653e3430302054686520706c61696e20485454502072657175657374207761732073656e7420746f20485454505320706f72743c2f7469746c653e3c2f686561643e0d0a3c626f64793e0d0a3c63656e7465723e3c68313e3430302042616420526571756573743c2f68313e3c2f63656e7465723e0d0a3c63656e7465723e54686520706c61696e20485454502072657175657374207761732073656e7420746f20485454505320706f72743c2f63656e7465723e0d0a3c68723e3c63656e7465723e6e67696e783c2f63656e7465723e0d0a3c2f626f64793e0d0a3c2f68746d6c3e0d0a",
      "certificate": "991bc69edcedb99927c41c9866b4319d8ddaca6a471994c0ef51d0f86abf763d",
      "extended_service_name": "UNKNOWN",
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "2ad2ad0002ad2ad0002ad2ad2ad2ad83c2e51da709c877942c98b10a5e814a",
        "cipher_and_version_fingerprint": "2ad2ad0002ad2ad0002ad2ad2ad2ad",
        "tls_extensions_sha256": "83c2e51da709c877942c98b10a5e814a",
        "observed_at": "2023-02-01T13:38:28.259591144Z"
      },
      "observed_at": "2023-02-02T05:48:07.162297082Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 443,
      "service_name": "UNKNOWN",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        }
      ],
      "source_ip": "167.248.133.62",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "991bc69edcedb99927c41c9866b4319d8ddaca6a471994c0ef51d0f86abf763d",
          "chain_fps_sha_256": [
            "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
            "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f"
          ],
          "leaf_data": {
            "names": [
              "brainy.mukachevo-rada.gov.ua"
            ],
            "subject_dn": "CN=brainy.mukachevo-rada.gov.ua",
            "issuer_dn": "C=US, O=Let's Encrypt, CN=R3",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "e27cb4cc3ff1f98b2eeb7a41e577de876f060845e8e14d097dfcf08181f4051f",
            "fingerprint": "991bc69edcedb99927c41c9866b4319d8ddaca6a471994c0ef51d0f86abf763d",
            "issuer": {
              "common_name": [
                "R3"
              ],
              "organization": [
                "Let's Encrypt"
              ],
              "country": [
                "US"
              ]
            },
            "subject": {
              "common_name": [
                "brainy.mukachevo-rada.gov.ua"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "rAPDo6Zl5W9fBhffRF80SG1z9ixX1Gfzkg2adakCiuHAbDq/BhzIpX94R/E54apOk1H6g/D9iOU5kyRBUXgDTPen6oHINzrbsFWkQ2/poSVJRMNtz4WvnpqR41HAa/8Fx8Qh8idMSebaBx7wWCeMaO4wsGS/NF5c++UCc2alzk+OM+JdXySPnW7hNQ8emiv2OGbTKx88qFex9sn6LqqMmCCguJUvO2pG7dU/AyoDy4B09k6ROXMZ6QdxpkoVaUZZm/YpDLGgcaxzZpsw+Zv8TU/l5KUNEwMsr4SNxd0SgzeAO4jduTqpmUqYQylkmYBItFp+LZnCrxPb8gy3bGyqaQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "6ec97b65f67a3e850a54313b13b6ed7c746709f42d38121c9258fe956f91d22e"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd",
              "subject_dn": "C=US, O=Let's Encrypt, CN=R3",
              "issuer_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1"
            },
            {
              "fingerprint": "6d99fb265eb1c5b3744765fcbc648f3cd8e1bffafdc4c2f99b9d47cf7ff1c24f",
              "subject_dn": "C=US, O=Internet Security Research Group, CN=ISRG Root X1",
              "issuer_dn": "O=Digital Signature Trust Co., CN=DST Root CA X3"
            }
          ]
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 29
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "0debd3853f330c574b05e0b6d882dc27"
      },
      "transport_fingerprint": {
        "id": 262,
        "os": "CentOS",
        "raw": "65160,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "smtp",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "220 mukachevo-rada.gov.ua, ESMTP EXIM 4.94\r\n",
      "banner_hashes": [
        "sha256:3e13ac8174ad030e555781ff90ae8a1cdf17e75529e45db92dce5cfefedab103"
      ],
      "banner_hex": "323230206d756b61636865766f2d726164612e676f762e75612c2045534d5450204558494d20342e39340d0a",
      "certificate": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
      "extended_service_name": "SMTPS",
      "observed_at": "2023-02-02T08:06:45.364569835Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "port": 465,
      "service_name": "SMTP",
      "smtp": {
        "_encoding": {
          "banner": "DISPLAY_UTF8",
          "ehlo": "DISPLAY_UTF8"
        },
        "banner": "220 mukachevo-rada.gov.ua, ESMTP EXIM 4.94\r\n",
        "ehlo": "250-mukachevo-rada.gov.ua Hello scanner-27.ch1.censys-scanner.com [167.94.138.120]\r\n250-SIZE 67108864\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-X_PIPE_CONNECT\r\n250-AUTH PLAIN LOGIN CRAM-MD5\r\n250-CHUNKING\r\n250 HELP\r\n"
      },
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:exim:exim:4.94:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "exim",
          "product": "exim",
          "version": "4.94",
          "other": {
            "family": "exim"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.138.120",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
          "leaf_data": {
            "names": [
              "mukachevo-rada.gov.ua"
            ],
            "subject_dn": "C=UA, ST=Default, L=Default, O=Brainy, CN=mukachevo-rada.gov.ua",
            "issuer_dn": "C=UA, ST=Default, L=Default, O=Brainy, CN=mukachevo-rada.gov.ua",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "efbb14bd63b4a54b87cd062d46c55e8955075e852850395b5be181b1221775d5",
            "fingerprint": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
            "issuer": {
              "common_name": [
                "mukachevo-rada.gov.ua"
              ],
              "locality": [
                "Default"
              ],
              "organization": [
                "Brainy"
              ],
              "province": [
                "Default"
              ],
              "country": [
                "UA"
              ]
            },
            "subject": {
              "common_name": [
                "mukachevo-rada.gov.ua"
              ],
              "locality": [
                "Default"
              ],
              "organization": [
                "Brainy"
              ],
              "province": [
                "Default"
              ],
              "country": [
                "UA"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "yCdlXW/bKU+MgdstEUKsOCd11PNu1AdiCaOB90xcChSEqezwlg1Raiqa3H3NHMM8lYB2VC/X8bhYMbK9M+nYMDJWPDy0LlYv4UVItPk+q+GrTAD6erf3bNWohnH1mqWhCvHDxtMVsgADAioIhk9wN+HFwEcFsPFxc/rXMEsgjDZdfi/V+Kb1A6GmVcP4awVXYPX5Y5tWsss3ghnzQvLbgA2uSZK6g8JGwY2UHnYkMQ4t7XB4OkWjdoCmoUCywWFDR376cL8HH3rXTdyL3r1xZ6ByVtLd+hvUC6Xn9nCnpp8/FCRUJq0tfdNL+YGc2D1dMtCd8Sw/Vm20RPrAtHXWhQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "411633c73c2506ef248e81b915fff092f23f999f98c2a97043a66cf6a6b7ab07"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "303951d4c50efb2e991652225a6f02b1"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "smtp",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "220 mukachevo-rada.gov.ua, ESMTP EXIM 4.94\r\n",
      "banner_hashes": [
        "sha256:3e13ac8174ad030e555781ff90ae8a1cdf17e75529e45db92dce5cfefedab103"
      ],
      "banner_hex": "323230206d756b61636865766f2d726164612e676f762e75612c2045534d5450204558494d20342e39340d0a",
      "certificate": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
      "extended_service_name": "SMTP-STARTTLS",
      "observed_at": "2023-02-02T07:05:12.867629888Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "port": 587,
      "service_name": "SMTP",
      "smtp": {
        "_encoding": {
          "banner": "DISPLAY_UTF8",
          "ehlo": "DISPLAY_UTF8",
          "start_tls": "DISPLAY_UTF8"
        },
        "banner": "220 mukachevo-rada.gov.ua, ESMTP EXIM 4.94\r\n",
        "ehlo": "250-mukachevo-rada.gov.ua Hello scanner-27.ch1.censys-scanner.com [167.94.138.119]\r\n250-SIZE 67108864\r\n250-8BITMIME\r\n250-PIPELINING\r\n250-X_PIPE_CONNECT\r\n250-AUTH PLAIN LOGIN CRAM-MD5\r\n250-CHUNKING\r\n250-STARTTLS\r\n250 HELP\r\n",
        "start_tls": "220 TLS go ahead\r\n"
      },
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:exim:exim:4.94:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "exim",
          "product": "exim",
          "version": "4.94",
          "other": {
            "family": "exim"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.138.119",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
          "leaf_data": {
            "names": [
              "mukachevo-rada.gov.ua"
            ],
            "subject_dn": "C=UA, ST=Default, L=Default, O=Brainy, CN=mukachevo-rada.gov.ua",
            "issuer_dn": "C=UA, ST=Default, L=Default, O=Brainy, CN=mukachevo-rada.gov.ua",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "efbb14bd63b4a54b87cd062d46c55e8955075e852850395b5be181b1221775d5",
            "fingerprint": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
            "issuer": {
              "common_name": [
                "mukachevo-rada.gov.ua"
              ],
              "locality": [
                "Default"
              ],
              "organization": [
                "Brainy"
              ],
              "province": [
                "Default"
              ],
              "country": [
                "UA"
              ]
            },
            "subject": {
              "common_name": [
                "mukachevo-rada.gov.ua"
              ],
              "locality": [
                "Default"
              ],
              "organization": [
                "Brainy"
              ],
              "province": [
                "Default"
              ],
              "country": [
                "UA"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "yCdlXW/bKU+MgdstEUKsOCd11PNu1AdiCaOB90xcChSEqezwlg1Raiqa3H3NHMM8lYB2VC/X8bhYMbK9M+nYMDJWPDy0LlYv4UVItPk+q+GrTAD6erf3bNWohnH1mqWhCvHDxtMVsgADAioIhk9wN+HFwEcFsPFxc/rXMEsgjDZdfi/V+Kb1A6GmVcP4awVXYPX5Y5tWsss3ghnzQvLbgA2uSZK6g8JGwY2UHnYkMQ4t7XB4OkWjdoCmoUCywWFDR376cL8HH3rXTdyL3r1xZ6ByVtLd+hvUC6Xn9nCnpp8/FCRUJq0tfdNL+YGc2D1dMtCd8Sw/Vm20RPrAtHXWhQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "411633c73c2506ef248e81b915fff092f23f999f98c2a97043a66cf6a6b7ab07"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "303951d4c50efb2e991652225a6f02b1"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "imap",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready.\r\n",
      "banner_hashes": [
        "sha256:fc8940f7f5af06e9cd3cd6a9afa1817ebd0c8faffcf95b456b827ece6b9d2cdd"
      ],
      "banner_hex": "2a204f4b205b4341504142494c49545920494d41503472657631204c49544552414c2b205341534c2d4952204c4f47494e2d524546455252414c5320494420454e41424c452049444c4520415554483d504c41494e20415554483d4c4f47494e20415554483d4449474553542d4d443520415554483d4352414d2d4d44355d20446f7665636f742072656164792e0d0a",
      "certificate": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
      "extended_service_name": "IMAPS",
      "imap": {
        "_encoding": {
          "banner": "DISPLAY_UTF8"
        },
        "banner": "* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready.\r\n"
      },
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "05d14d20d21d20d05c05d14d05d20da23a7a927f270a23608b3c7a72999cab",
        "cipher_and_version_fingerprint": "05d14d20d21d20d05c05d14d05d20d",
        "tls_extensions_sha256": "a23a7a927f270a23608b3c7a72999cab",
        "observed_at": "2023-02-01T13:38:26.739446810Z"
      },
      "observed_at": "2023-02-01T14:56:29.402699154Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 993,
      "service_name": "IMAP",
      "source_ip": "162.142.125.10",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
          "leaf_data": {
            "names": [
              "mukachevo-rada.gov.ua"
            ],
            "subject_dn": "C=UA, ST=Default, L=Default, O=Brainy, CN=mukachevo-rada.gov.ua",
            "issuer_dn": "C=UA, ST=Default, L=Default, O=Brainy, CN=mukachevo-rada.gov.ua",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "efbb14bd63b4a54b87cd062d46c55e8955075e852850395b5be181b1221775d5",
            "fingerprint": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
            "issuer": {
              "common_name": [
                "mukachevo-rada.gov.ua"
              ],
              "locality": [
                "Default"
              ],
              "organization": [
                "Brainy"
              ],
              "province": [
                "Default"
              ],
              "country": [
                "UA"
              ]
            },
            "subject": {
              "common_name": [
                "mukachevo-rada.gov.ua"
              ],
              "locality": [
                "Default"
              ],
              "organization": [
                "Brainy"
              ],
              "province": [
                "Default"
              ],
              "country": [
                "UA"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "yCdlXW/bKU+MgdstEUKsOCd11PNu1AdiCaOB90xcChSEqezwlg1Raiqa3H3NHMM8lYB2VC/X8bhYMbK9M+nYMDJWPDy0LlYv4UVItPk+q+GrTAD6erf3bNWohnH1mqWhCvHDxtMVsgADAioIhk9wN+HFwEcFsPFxc/rXMEsgjDZdfi/V+Kb1A6GmVcP4awVXYPX5Y5tWsss3ghnzQvLbgA2uSZK6g8JGwY2UHnYkMQ4t7XB4OkWjdoCmoUCywWFDR376cL8HH3rXTdyL3r1xZ6ByVtLd+hvUC6Xn9nCnpp8/FCRUJq0tfdNL+YGc2D1dMtCd8Sw/Vm20RPrAtHXWhQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "411633c73c2506ef248e81b915fff092f23f999f98c2a97043a66cf6a6b7ab07"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "303951d4c50efb2e991652225a6f02b1"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "pop3",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "+OK Dovecot ready.\r\n",
      "banner_hashes": [
        "sha256:095c6dbf7d6290d9c885271a78f82e11a7df7c9a8733d4e13236b47608e527c4"
      ],
      "banner_hex": "2b4f4b20446f7665636f742072656164792e0d0a",
      "certificate": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
      "extended_service_name": "POP3S",
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "05d14d20d21d20d05c05d14d05d20da23a7a927f270a23608b3c7a72999cab",
        "cipher_and_version_fingerprint": "05d14d20d21d20d05c05d14d05d20d",
        "tls_extensions_sha256": "a23a7a927f270a23608b3c7a72999cab",
        "observed_at": "2023-02-02T15:18:26.082814428Z"
      },
      "observed_at": "2023-02-01T05:10:32.999480793Z",
      "perspective_id": "PERSPECTIVE_HE",
      "pop3": {
        "_encoding": {
          "banner": "DISPLAY_UTF8"
        },
        "banner": "+OK Dovecot ready.\r\n"
      },
      "port": 995,
      "service_name": "POP3",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:o:*:linux:*:*:*:*:*:*:*:*",
          "part": "o",
          "product": "linux",
          "source": "OSI_TRANSPORT_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:dovecot:dovecot:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Dovecot",
          "product": "Dovecot",
          "other": {
            "family": "Dovecot"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.9",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
          "leaf_data": {
            "names": [
              "mukachevo-rada.gov.ua"
            ],
            "subject_dn": "C=UA, ST=Default, L=Default, O=Brainy, CN=mukachevo-rada.gov.ua",
            "issuer_dn": "C=UA, ST=Default, L=Default, O=Brainy, CN=mukachevo-rada.gov.ua",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "efbb14bd63b4a54b87cd062d46c55e8955075e852850395b5be181b1221775d5",
            "fingerprint": "7c51c2378f47cf7734f389a011d136f237a4c25682b01beb8c4c2d69db352bd1",
            "issuer": {
              "common_name": [
                "mukachevo-rada.gov.ua"
              ],
              "locality": [
                "Default"
              ],
              "organization": [
                "Brainy"
              ],
              "province": [
                "Default"
              ],
              "country": [
                "UA"
              ]
            },
            "subject": {
              "common_name": [
                "mukachevo-rada.gov.ua"
              ],
              "locality": [
                "Default"
              ],
              "organization": [
                "Brainy"
              ],
              "province": [
                "Default"
              ],
              "country": [
                "UA"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "yCdlXW/bKU+MgdstEUKsOCd11PNu1AdiCaOB90xcChSEqezwlg1Raiqa3H3NHMM8lYB2VC/X8bhYMbK9M+nYMDJWPDy0LlYv4UVItPk+q+GrTAD6erf3bNWohnH1mqWhCvHDxtMVsgADAioIhk9wN+HFwEcFsPFxc/rXMEsgjDZdfi/V+Kb1A6GmVcP4awVXYPX5Y5tWsss3ghnzQvLbgA2uSZK6g8JGwY2UHnYkMQ4t7XB4OkWjdoCmoUCywWFDR376cL8HH3rXTdyL3r1xZ6ByVtLd+hvUC6Xn9nCnpp8/FCRUJq0tfdNL+YGc2D1dMtCd8Sw/Vm20RPrAtHXWhQ==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "411633c73c2506ef248e81b915fff092f23f999f98c2a97043a66cf6a6b7ab07"
            },
            "signature": {
              "self_signed": true,
              "signature_algorithm": "SHA256-RSA"
            }
          }
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "303951d4c50efb2e991652225a6f02b1"
      },
      "transport_fingerprint": {
        "id": 72,
        "os": "Ubuntu / Debian / CentOS",
        "raw": "28960,64,true,MSTNW,1460,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "ssh",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.2",
      "banner_hashes": [
        "sha256:9c70451373c78a04dfb6f5d44fde98bb3d2d033a1c3291d4bc3186588592ecc6"
      ],
      "banner_hex": "5353482d322e302d4f70656e5353485f382e327031205562756e74752d347562756e7475302e32",
      "extended_service_name": "SSH",
      "observed_at": "2023-02-01T14:56:21.089007402Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "port": 2216,
      "service_name": "SSH",
      "software": [
        {
          "product": "openssh",
          "other": {
            "comment": "Ubuntu-4ubuntu0.2"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Ubuntu",
          "product": "Linux",
          "version": "20.04",
          "other": {
            "family": "Linux"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:openbsd:openssh:8.2:p1:*:*:*:*:*:*",
          "part": "a",
          "vendor": "OpenBSD",
          "product": "OpenSSH",
          "version": "8.2",
          "update": "p1",
          "other": {
            "family": "OpenSSH"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.138.117",
      "ssh": {
        "endpoint_id": {
          "_encoding": {
            "raw": "DISPLAY_UTF8"
          },
          "raw": "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.2",
          "protocol_version": "2.0",
          "software_version": "OpenSSH_8.2p1",
          "comment": "Ubuntu-4ubuntu0.2"
        },
        "kex_init_message": {
          "kex_algorithms": [
            "curve25519-sha256",
            "[email protected]",
            "ecdh-sha2-nistp256",
            "ecdh-sha2-nistp384",
            "ecdh-sha2-nistp521",
            "diffie-hellman-group-exchange-sha256",
            "diffie-hellman-group16-sha512",
            "diffie-hellman-group18-sha512",
            "diffie-hellman-group14-sha256"
          ],
          "host_key_algorithms": [
            "rsa-sha2-512",
            "rsa-sha2-256",
            "ssh-rsa",
            "ecdsa-sha2-nistp256",
            "ssh-ed25519"
          ],
          "client_to_server_ciphers": [
            "[email protected]",
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "[email protected]",
            "[email protected]"
          ],
          "server_to_client_ciphers": [
            "[email protected]",
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "[email protected]",
            "[email protected]"
          ],
          "client_to_server_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-sha1"
          ],
          "server_to_client_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-sha1"
          ],
          "client_to_server_compression": [
            "none",
            "[email protected]"
          ],
          "server_to_client_compression": [
            "none",
            "[email protected]"
          ],
          "first_kex_follows": false
        },
        "algorithm_selection": {
          "kex_algorithm": "[email protected]",
          "host_key_algorithm": "ecdsa-sha2-nistp256",
          "client_to_server_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          },
          "server_to_client_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          }
        },
        "server_host_key": {
          "fingerprint_sha256": "e70d7c1dff3bb555da07e2589ea91558bbe43d1ff3ff3c60d978b5b81aff9491",
          "ecdsa_public_key": {
            "_encoding": {
              "b": "DISPLAY_BASE64",
              "gx": "DISPLAY_BASE64",
              "gy": "DISPLAY_BASE64",
              "n": "DISPLAY_BASE64",
              "p": "DISPLAY_BASE64",
              "x": "DISPLAY_BASE64",
              "y": "DISPLAY_BASE64"
            },
            "b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
            "curve": "P-256",
            "gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
            "gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
            "length": 256,
            "n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
            "p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
            "x": "pwBfTwArd4D8rcM9/YTm6n2GsBVmHUu1bPE0GOMSaAM=",
            "y": "Jkgq9D/kh7/QUgnY4pG6LdcHHPN4GM/vCD9IaAxU/3w="
          }
        },
        "hassh_fingerprint": "3ccd1778a76049721c71ad7d2bf62bbc"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "ssh",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.4",
      "banner_hashes": [
        "sha256:e20078bcee530304db53fd8477188794f82ff7a90a872ea40edd2db18f0e4134"
      ],
      "banner_hex": "5353482d322e302d4f70656e5353485f382e327031205562756e74752d347562756e7475302e34",
      "extended_service_name": "SSH",
      "observed_at": "2023-02-01T14:56:20.764078374Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "port": 4455,
      "service_name": "SSH",
      "software": [
        {
          "product": "openssh",
          "other": {
            "comment": "Ubuntu-4ubuntu0.4"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Ubuntu",
          "product": "Linux",
          "version": "20.04",
          "other": {
            "family": "Linux"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:openbsd:openssh:8.2:p1:*:*:*:*:*:*",
          "part": "a",
          "vendor": "OpenBSD",
          "product": "OpenSSH",
          "version": "8.2",
          "update": "p1",
          "other": {
            "family": "OpenSSH"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.138.44",
      "ssh": {
        "endpoint_id": {
          "_encoding": {
            "raw": "DISPLAY_UTF8"
          },
          "raw": "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.4",
          "protocol_version": "2.0",
          "software_version": "OpenSSH_8.2p1",
          "comment": "Ubuntu-4ubuntu0.4"
        },
        "kex_init_message": {
          "kex_algorithms": [
            "curve25519-sha256",
            "[email protected]",
            "ecdh-sha2-nistp256",
            "ecdh-sha2-nistp384",
            "ecdh-sha2-nistp521",
            "diffie-hellman-group-exchange-sha256",
            "diffie-hellman-group16-sha512",
            "diffie-hellman-group18-sha512",
            "diffie-hellman-group14-sha256"
          ],
          "host_key_algorithms": [
            "rsa-sha2-512",
            "rsa-sha2-256",
            "ssh-rsa",
            "ecdsa-sha2-nistp256",
            "ssh-ed25519"
          ],
          "client_to_server_ciphers": [
            "[email protected]",
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "[email protected]",
            "[email protected]"
          ],
          "server_to_client_ciphers": [
            "[email protected]",
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "[email protected]",
            "[email protected]"
          ],
          "client_to_server_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-sha1"
          ],
          "server_to_client_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-sha1"
          ],
          "client_to_server_compression": [
            "none",
            "[email protected]"
          ],
          "server_to_client_compression": [
            "none",
            "[email protected]"
          ],
          "first_kex_follows": false
        },
        "algorithm_selection": {
          "kex_algorithm": "[email protected]",
          "host_key_algorithm": "ecdsa-sha2-nistp256",
          "client_to_server_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          },
          "server_to_client_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          }
        },
        "server_host_key": {
          "fingerprint_sha256": "6004911f1749170950df4ba5db5801eb82120d40a44444c09e848846ed2bf6fe",
          "ecdsa_public_key": {
            "_encoding": {
              "b": "DISPLAY_BASE64",
              "gx": "DISPLAY_BASE64",
              "gy": "DISPLAY_BASE64",
              "n": "DISPLAY_BASE64",
              "p": "DISPLAY_BASE64",
              "x": "DISPLAY_BASE64",
              "y": "DISPLAY_BASE64"
            },
            "b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
            "curve": "P-256",
            "gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
            "gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
            "length": 256,
            "n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
            "p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
            "x": "cM+L3jVU0P+8vDRAN997eWW6far5oYrqCI6IKf2Hy90=",
            "y": "hSPa91sdfSVfWlcUZfnmTkT0+7kQXOhBoxdTbJHnHIU="
          }
        },
        "hassh_fingerprint": "3ccd1778a76049721c71ad7d2bf62bbc"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "ssh",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.4",
      "banner_hashes": [
        "sha256:e20078bcee530304db53fd8477188794f82ff7a90a872ea40edd2db18f0e4134"
      ],
      "banner_hex": "5353482d322e302d4f70656e5353485f382e327031205562756e74752d347562756e7475302e34",
      "extended_service_name": "SSH",
      "observed_at": "2023-01-31T12:04:39.331449907Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 7788,
      "service_name": "SSH",
      "software": [
        {
          "product": "openssh",
          "other": {
            "comment": "Ubuntu-4ubuntu0.4"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Ubuntu",
          "product": "Linux",
          "version": "20.04",
          "other": {
            "family": "Linux"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:openbsd:openssh:8.2:p1:*:*:*:*:*:*",
          "part": "a",
          "vendor": "OpenBSD",
          "product": "OpenSSH",
          "version": "8.2",
          "update": "p1",
          "other": {
            "family": "OpenSSH"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.248.133.47",
      "ssh": {
        "endpoint_id": {
          "_encoding": {
            "raw": "DISPLAY_UTF8"
          },
          "raw": "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.4",
          "protocol_version": "2.0",
          "software_version": "OpenSSH_8.2p1",
          "comment": "Ubuntu-4ubuntu0.4"
        },
        "kex_init_message": {
          "kex_algorithms": [
            "curve25519-sha256",
            "[email protected]",
            "ecdh-sha2-nistp256",
            "ecdh-sha2-nistp384",
            "ecdh-sha2-nistp521",
            "diffie-hellman-group-exchange-sha256",
            "diffie-hellman-group16-sha512",
            "diffie-hellman-group18-sha512",
            "diffie-hellman-group14-sha256"
          ],
          "host_key_algorithms": [
            "rsa-sha2-512",
            "rsa-sha2-256",
            "ssh-rsa",
            "ecdsa-sha2-nistp256",
            "ssh-ed25519"
          ],
          "client_to_server_ciphers": [
            "[email protected]",
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "[email protected]",
            "[email protected]"
          ],
          "server_to_client_ciphers": [
            "[email protected]",
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "[email protected]",
            "[email protected]"
          ],
          "client_to_server_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-sha1"
          ],
          "server_to_client_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-sha1"
          ],
          "client_to_server_compression": [
            "none",
            "[email protected]"
          ],
          "server_to_client_compression": [
            "none",
            "[email protected]"
          ],
          "first_kex_follows": false
        },
        "algorithm_selection": {
          "kex_algorithm": "[email protected]",
          "host_key_algorithm": "ecdsa-sha2-nistp256",
          "client_to_server_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          },
          "server_to_client_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          }
        },
        "server_host_key": {
          "fingerprint_sha256": "6004911f1749170950df4ba5db5801eb82120d40a44444c09e848846ed2bf6fe",
          "ecdsa_public_key": {
            "_encoding": {
              "b": "DISPLAY_BASE64",
              "gx": "DISPLAY_BASE64",
              "gy": "DISPLAY_BASE64",
              "n": "DISPLAY_BASE64",
              "p": "DISPLAY_BASE64",
              "x": "DISPLAY_BASE64",
              "y": "DISPLAY_BASE64"
            },
            "b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
            "curve": "P-256",
            "gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
            "gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
            "length": 256,
            "n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
            "p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
            "x": "cM+L3jVU0P+8vDRAN997eWW6far5oYrqCI6IKf2Hy90=",
            "y": "hSPa91sdfSVfWlcUZfnmTkT0+7kQXOhBoxdTbJHnHIU="
          }
        },
        "hassh_fingerprint": "3ccd1778a76049721c71ad7d2bf62bbc"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "ssh",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.2",
      "banner_hashes": [
        "sha256:9c70451373c78a04dfb6f5d44fde98bb3d2d033a1c3291d4bc3186588592ecc6"
      ],
      "banner_hex": "5353482d322e302d4f70656e5353485f382e327031205562756e74752d347562756e7475302e32",
      "extended_service_name": "SSH",
      "observed_at": "2023-02-01T16:42:25.996437692Z",
      "perspective_id": "PERSPECTIVE_HE",
      "port": 40099,
      "service_name": "SSH",
      "software": [
        {
          "product": "openssh",
          "other": {
            "comment": "Ubuntu-4ubuntu0.2"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Ubuntu",
          "product": "Linux",
          "version": "20.04",
          "other": {
            "family": "Linux"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:openbsd:openssh:8.2:p1:*:*:*:*:*:*",
          "part": "a",
          "vendor": "OpenBSD",
          "product": "OpenSSH",
          "version": "8.2",
          "update": "p1",
          "other": {
            "family": "OpenSSH"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.220",
      "ssh": {
        "endpoint_id": {
          "_encoding": {
            "raw": "DISPLAY_UTF8"
          },
          "raw": "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.2",
          "protocol_version": "2.0",
          "software_version": "OpenSSH_8.2p1",
          "comment": "Ubuntu-4ubuntu0.2"
        },
        "kex_init_message": {
          "kex_algorithms": [
            "curve25519-sha256",
            "[email protected]",
            "ecdh-sha2-nistp256",
            "ecdh-sha2-nistp384",
            "ecdh-sha2-nistp521",
            "diffie-hellman-group-exchange-sha256",
            "diffie-hellman-group16-sha512",
            "diffie-hellman-group18-sha512",
            "diffie-hellman-group14-sha256"
          ],
          "host_key_algorithms": [
            "rsa-sha2-512",
            "rsa-sha2-256",
            "ssh-rsa",
            "ecdsa-sha2-nistp256",
            "ssh-ed25519"
          ],
          "client_to_server_ciphers": [
            "[email protected]",
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "[email protected]",
            "[email protected]"
          ],
          "server_to_client_ciphers": [
            "[email protected]",
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "[email protected]",
            "[email protected]"
          ],
          "client_to_server_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-sha1"
          ],
          "server_to_client_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-sha1"
          ],
          "client_to_server_compression": [
            "none",
            "[email protected]"
          ],
          "server_to_client_compression": [
            "none",
            "[email protected]"
          ],
          "first_kex_follows": false
        },
        "algorithm_selection": {
          "kex_algorithm": "[email protected]",
          "host_key_algorithm": "ecdsa-sha2-nistp256",
          "client_to_server_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          },
          "server_to_client_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          }
        },
        "server_host_key": {
          "fingerprint_sha256": "e70d7c1dff3bb555da07e2589ea91558bbe43d1ff3ff3c60d978b5b81aff9491",
          "ecdsa_public_key": {
            "_encoding": {
              "b": "DISPLAY_BASE64",
              "gx": "DISPLAY_BASE64",
              "gy": "DISPLAY_BASE64",
              "n": "DISPLAY_BASE64",
              "p": "DISPLAY_BASE64",
              "x": "DISPLAY_BASE64",
              "y": "DISPLAY_BASE64"
            },
            "b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
            "curve": "P-256",
            "gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
            "gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
            "length": 256,
            "n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
            "p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
            "x": "pwBfTwArd4D8rcM9/YTm6n2GsBVmHUu1bPE0GOMSaAM=",
            "y": "Jkgq9D/kh7/QUgnY4pG6LdcHHPN4GM/vCD9IaAxU/3w="
          }
        },
        "hassh_fingerprint": "3ccd1778a76049721c71ad7d2bf62bbc"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "ssh",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.4",
      "banner_hashes": [
        "sha256:e20078bcee530304db53fd8477188794f82ff7a90a872ea40edd2db18f0e4134"
      ],
      "banner_hex": "5353482d322e302d4f70656e5353485f382e327031205562756e74752d347562756e7475302e34",
      "extended_service_name": "SSH",
      "observed_at": "2023-02-01T14:56:22.553698800Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "port": 40155,
      "service_name": "SSH",
      "software": [
        {
          "product": "openssh",
          "other": {
            "comment": "Ubuntu-4ubuntu0.4"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:*:*:*:*",
          "part": "o",
          "vendor": "Ubuntu",
          "product": "Linux",
          "version": "20.04",
          "other": {
            "family": "Linux"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:openbsd:openssh:8.2:p1:*:*:*:*:*:*",
          "part": "a",
          "vendor": "OpenBSD",
          "product": "OpenSSH",
          "version": "8.2",
          "update": "p1",
          "other": {
            "family": "OpenSSH"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.138.62",
      "ssh": {
        "endpoint_id": {
          "_encoding": {
            "raw": "DISPLAY_UTF8"
          },
          "raw": "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.4",
          "protocol_version": "2.0",
          "software_version": "OpenSSH_8.2p1",
          "comment": "Ubuntu-4ubuntu0.4"
        },
        "kex_init_message": {
          "kex_algorithms": [
            "curve25519-sha256",
            "[email protected]",
            "ecdh-sha2-nistp256",
            "ecdh-sha2-nistp384",
            "ecdh-sha2-nistp521",
            "diffie-hellman-group-exchange-sha256",
            "diffie-hellman-group16-sha512",
            "diffie-hellman-group18-sha512",
            "diffie-hellman-group14-sha256"
          ],
          "host_key_algorithms": [
            "rsa-sha2-512",
            "rsa-sha2-256",
            "ssh-rsa",
            "ecdsa-sha2-nistp256",
            "ssh-ed25519"
          ],
          "client_to_server_ciphers": [
            "[email protected]",
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "[email protected]",
            "[email protected]"
          ],
          "server_to_client_ciphers": [
            "[email protected]",
            "aes128-ctr",
            "aes192-ctr",
            "aes256-ctr",
            "[email protected]",
            "[email protected]"
          ],
          "client_to_server_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-sha1"
          ],
          "server_to_client_macs": [
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "[email protected]",
            "hmac-sha2-256",
            "hmac-sha2-512",
            "hmac-sha1"
          ],
          "client_to_server_compression": [
            "none",
            "[email protected]"
          ],
          "server_to_client_compression": [
            "none",
            "[email protected]"
          ],
          "first_kex_follows": false
        },
        "algorithm_selection": {
          "kex_algorithm": "[email protected]",
          "host_key_algorithm": "ecdsa-sha2-nistp256",
          "client_to_server_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          },
          "server_to_client_alg_group": {
            "cipher": "aes128-ctr",
            "mac": "hmac-sha2-256",
            "compression": "none"
          }
        },
        "server_host_key": {
          "fingerprint_sha256": "e70d7c1dff3bb555da07e2589ea91558bbe43d1ff3ff3c60d978b5b81aff9491",
          "ecdsa_public_key": {
            "_encoding": {
              "b": "DISPLAY_BASE64",
              "gx": "DISPLAY_BASE64",
              "gy": "DISPLAY_BASE64",
              "n": "DISPLAY_BASE64",
              "p": "DISPLAY_BASE64",
              "x": "DISPLAY_BASE64",
              "y": "DISPLAY_BASE64"
            },
            "b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
            "curve": "P-256",
            "gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
            "gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
            "length": 256,
            "n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
            "p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
            "x": "pwBfTwArd4D8rcM9/YTm6n2GsBVmHUu1bPE0GOMSaAM=",
            "y": "Jkgq9D/kh7/QUgnY4pG6LdcHHPN4GM/vCD9IaAxU/3w="
          }
        },
        "hassh_fingerprint": "3ccd1778a76049721c71ad7d2bf62bbc"
      },
      "transport_protocol": "TCP",
      "truncated": false
    }
  ],
  "location": {
    "continent": "Europe",
    "country": "Ukraine",
    "country_code": "UA",
    "city": "Kyiv",
    "postal_code": "03039",
    "timezone": "Europe/Kyiv",
    "province": "Kyiv City",
    "coordinates": {
      "latitude": 50.458,
      "longitude": 30.5303
    },
    "registered_country": "Ukraine",
    "registered_country_code": "UA"
  },
  "location_updated_at": "2023-01-28T21:41:20.905310Z",
  "autonomous_system": {
    "asn": 49720,
    "description": "GIGACLOUD-AS",
    "bgp_prefix": "94.131.247.0/24",
    "name": "GIGACLOUD-AS",
    "country_code": "UA"
  },
  "autonomous_system_updated_at": "2023-01-23T16:39:21.957140Z",
  "operating_system": {
    "uniform_resource_identifier": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:*:*:*:*",
    "part": "o",
    "vendor": "Ubuntu",
    "product": "Linux",
    "version": "20.04",
    "other": {
      "family": "Linux"
    }
  },
  "dns": {
    "names": [
      "brainy.mukachevo-rada.gov.ua",
      "old.mukachevo-rada.gov.ua",
      "mukachevo-rada.gov.ua",
      "www.mukachevo-rada.gov.ua",
      "mail.mukachevo-rada.gov.ua",
      "lists.mukachevo-rada.gov.ua"
    ],
    "records": {
      "brainy.mukachevo-rada.gov.ua": {
        "record_type": "CNAME",
        "resolved_at": "2023-01-11T17:32:57.902335386Z"
      },
      "www.mukachevo-rada.gov.ua": {
        "record_type": "A",
        "resolved_at": "2023-01-21T18:03:36.378093707Z"
      },
      "mail.mukachevo-rada.gov.ua": {
        "record_type": "A",
        "resolved_at": "2023-01-31T17:45:47.816958953Z"
      },
      "old.mukachevo-rada.gov.ua": {
        "record_type": "A",
        "resolved_at": "2023-01-27T17:47:59.949141687Z"
      },
      "mukachevo-rada.gov.ua": {
        "record_type": "A",
        "resolved_at": "2023-01-21T18:03:35.853538163Z"
      },
      "lists.mukachevo-rada.gov.ua": {
        "record_type": "CNAME",
        "resolved_at": "2023-02-01T17:30:30.197556350Z"
      }
    },
    "reverse_dns": {
      "names": [
        "mukachevo-rada.gov.ua"
      ],
      "resolved_at": "2023-01-19T12:43:57.861694310Z"
    }
  },
  "last_updated_at": "2023-02-02T15:18:34.728Z"
}