IPDebrief

34.128.95.203

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON ๐Ÿ”ง Full Actions API
๐Ÿค– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

IP Intelligence Briefing: 34.128.95.203

Date: 2026-06-14

---

**1. Core Profile**

- HTTP/HTTPS (ports 80/443), SSH (port 22)

- TLS certificate issued to gea.gbuser.net (Greenbone AG)

- Nginx server banner

---

**2. Threat & Abuse Indicators**

- Valid SPF/DNSSEC for `googleusercontent.com`

- No DNSBL listings detected

---

**3. Historical Observations**

- Consistent DNS resolution for Google-owned domains

- Moderate operator risk score (0.5652) due to DNSSEC/Caa compliance

- No spikes in threat signals or network anomalies

---

**4. Relationships & Context**

- Google Cloud infrastructure (GOOGL-2)

- DNS hostnames: `203.95.128.34.bc.googleusercontent.com`

---

**5. Recommendations**

---

Source: IPDebrief Threat Intelligence Platform | © 2026 Jason Alberino.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

๐ŸŒ Geolocation

Country๐Ÿ‡ฎ๐Ÿ‡ฉ Indonesia
RegionJK
CityJakarta
TimezoneAsia/Jakarta
Latitude-6.18
Longitude106.85

๐Ÿข Ownership & Registration

OrganizationGoogle LLC
ASNAS396982
Network Nameโ€”
CIDR Block34.128.64.0/19
RIRARIN
Countryโ€”
Abuse ContactAvailable via RDAP

๐ŸŒ DNS Intelligence

PTR203.95.128.34.bc.googleusercontent.com
Forward ConfirmedYes โ€” FCrDNS verified
Forward Hostnames203.95.128.34.bc.googleusercontent.com

๐Ÿ” DNS Hygiene

Hygiene Score100% (Excellent)
SPF1/2 domains
DMARC1/2 domains
FCrDNSVerified
DNSSECValid
CAAPresent
Domains Checked2 domains

โ˜๏ธ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeWeb Server
Network TierHosting โ€” Infrastructure provider without advanced routing
Cloud

๐Ÿ”Œ Services & Open Ports

PortServiceProtocolBanner
80httptcpโ€”
443httpstcpโ€”
22sshtcp
Closed Ports25, 3389, 8080, 8443 (3 open / 7 scanned)
Servernginx
HTTP Titleโ€”
SSH VersionSSH-2.0-Greenbone_9.2p1gb Greenbone OS 24.10

๐Ÿ” TLS Certificate

A self-signed certificate was detected. This is common for development servers, internal services, or IoT devices.
โš ๏ธ
CN=gea.gbuser.net, OU=Vulnerability Management Team, O=Greenbone AG Customer, L=Osnabrueck, S=Niedersachsen, C=DE
Issued by CN=gea.gbuser.net, OU=Vulnerability Management Team, O=Greenbone AG Customer, L=Osnabrueck, S=Niedersachsen, C=DE
Self-signed: Yes
SANsgea.gbuser.net
Valid From2026-03-03T05:51:35+00:00
Valid Until2028-03-02T05:51:35+00:00
TLS ProtocolTls13
Cipher SuiteTLS_AES_256_GCM_SHA384
Signature Algorithmsha256RSA
Validity Period730 days
Serial Number466D3273DBF3C39B71BA5216DADFD5144F5886E4
Thumbprint21E602A547A1E6C58A59DCD2DB730778B1196536

๐ŸŽฏ Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
26%
24
routing
17%
23
services
26%
23
ownership
22%
34
reputation
28%
13
geolocation
30%
23
Overall25%1220
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
Data CoherenceMixed Signals (68%) โ€” 2 contradiction(s)
AttributionModerate (55%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid
โš  Geo sources disagree on country: DE, ID
โš  TLS certificate claims DE but primary geo says ID

๐Ÿ“… Observation Timeline ๐Ÿ”„ Live

First Seen2026-05-07 23:04:15 UTC
Last Seen2026-06-27 04:23:01 UTC
Profile Built2026-06-27 22:30:51 UTC
Data FreshnessLive
Signal Types28
Total Observations34
๐Ÿ” 28 signal types ยท 34 observations collected
This report is generated from 28+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API ๐Ÿ”ง Actions API ๐Ÿ“ง Enterprise Access

โ„น๏ธ About This Report

All data shown is publicly available network metadata โ€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.