Check DNS, Urls + Redirects, Certificates and Content of your Website



A

Top config

Checked:
03.05.2021 19:57:30


Older results

No older results found


1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
2602:806:a003:40e::5c50:2521
AAAA
2602:806:a003:40e::5c50:2521
Fremont/California/United States (US) - Peter Jin Technologies LLC

yes



2. DNSSEC


No DNSSEC - Informations found


3. Name Servers


No Nameserver entries found


4. SOA-Entries


No SOA entries found

5. Screenshots

Startaddress: https://2602:806:a003:40e::5c50:2521/, address used: about:blank, Screenshot created 2021-05-03 19:58:14 +00:0

Mobil (412px x 732px)

11166 milliseconds

Mobil + Landscape (732px x 412px)

11177 milliseconds

Screen (1280px x 1680px)

1130 milliseconds

Mobile- and other Chrome-Checks

widthheight
visual Viewport412732
content Size412732

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://2602:806:a003:40e::5c50:2521/
2602:806:a003:40e::5c50:2521
301
https://●●ǀ●●●●●ǀ●●ǀ●.scp.rdns.peterjin.org/
Html is minified: 100.00 %
0.316
A
Location: https://xn--fjaaa5308aabaaaabab.scp.rdns.peterjin.org/
Vary: Accept
Content-Type: text/plain; charset=utf-8
Content-Length: 88
Date: Mon, 03 May 2021 17:57:34 GMT
Connection: close

• https://2602:806:a003:40e::5c50:2521/
2602:806:a003:40e::5c50:2521 No GZip used - 1775 / 4859 - 36.53 % possible
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 1/2305
200

Html is minified: 212.55 %
4.290
A
strict-transport-security: max-age=31536000
x-frame-options: DENY
content-security-policy: default-src 'self'; style-src 'unsafe-inline'
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
Content-Type: text/html; charset=utf-8
Content-Length: 4859
Date: Mon, 03 May 2021 17:57:35 GMT
Connection: close

• https://xn--fjaaa5308aabaaaabab.scp.rdns.peterjin.org/
No GZip used - 1776 / 4859 - 36.55 % possible
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 1/2305
200

Html is minified: 212.55 %
4.030
A
strict-transport-security: max-age=31536000
x-frame-options: DENY
content-security-policy: default-src 'self'; style-src 'unsafe-inline'
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
Content-Type: text/html; charset=utf-8
Content-Length: 4859
Date: Mon, 03 May 2021 17:57:46 GMT
Connection: close

• http://2602:806:a003:40e::5c50:2521/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
2602:806:a003:40e::5c50:2521
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 100.00 %
0.333
A
Not Found
Visible Content: Cannot GET /.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 208
Date: Mon, 03 May 2021 17:57:40 GMT
Connection: close

• https://[2602:0806:a003:040e:0000:0000:5c50:2521]/
2602:806:a003:40e::5c50:2521 No GZip used - 1776 / 4859 - 36.55 % possible
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 1/2305
200

Html is minified: 212.55 %
4.220
N
Certificate error: RemoteCertificateNameMismatch
strict-transport-security: max-age=31536000
x-frame-options: DENY
content-security-policy: default-src 'self'; style-src 'unsafe-inline'
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
Content-Type: text/html; charset=utf-8
Content-Length: 4859
Date: Mon, 03 May 2021 17:57:41 GMT
Connection: close

7. Comments


1. General Results, most used to calculate the result

Aname "2602:806:a003:40e::5c50:2521" is ipv6 address, public suffix is not defined
Agood: All ip addresses are public addresses
Agood: destination is https
AGood: No cookie sent via http.
Agood: every https has a Strict Transport Security Header
Agood: HSTS max-age is long enough, 31536000 seconds = 365 days
AGood: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
Nhttps://[2602:0806:a003:040e:0000:0000:5c50:2521]/ 2602:806:a003:40e::5c50:2521
200

Error - Certificate isn't trusted, RemoteCertificateNameMismatch

2. DNS- and NameServer - Checks


3. Content- and Performance-critical Checks

AGood: All checks /.well-known/acme-challenge/random-filename without redirects answer with the expected http status 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge should work. If it doesn't work: Check your vHost configuration (apachectl -S, httpd -S, nginx -T). Every combination of port and ServerName / ServerAlias (Apache) or Server (Nginx) must be unique. Merge duplicated entries in one vHost. If you use an IIS, extensionless files must be allowed in the /.well-known/acme-challenge subdirectory. Create a web.config in that directory. Content: <configuration><system.webServer><staticContent><mimeMap fileExtension="." mimeType="text/plain" /></staticContent></system.webServer></configuration>. If you have a redirect http ⇒ https, that's ok, Letsencrypt follows such redirects to port 80 / 443 (same or other server). There must be a certificate. But the certificate may be expired, self signed or with a not matching domain name. Checking the validation file Letsencrypt ignores such certificate errors. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
https://xn--fjaaa5308aabaaaabab.scp.rdns.peterjin.org/
200

Warning: https result with status 200 and size greater then 1024 Bytes without GZip found. Add GZip support so the html content is compressed.
https://2602:806:a003:40e::5c50:2521/ 2602:806:a003:40e::5c50:2521
200

Warning: https result with status 200 and size greater then 1024 Bytes without GZip found. Add GZip support so the html content is compressed.
https://[2602:0806:a003:040e:0000:0000:5c50:2521]/ 2602:806:a003:40e::5c50:2521
200

Warning: https result with status 200 and size greater then 1024 Bytes without GZip found. Add GZip support so the html content is compressed.
https://xn--fjaaa5308aabaaaabab.scp.rdns.peterjin.org/
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://2602:806:a003:40e::5c50:2521/ 2602:806:a003:40e::5c50:2521
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://[2602:0806:a003:040e:0000:0000:5c50:2521]/ 2602:806:a003:40e::5c50:2521
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://xn--fjaaa5308aabaaaabab.scp.rdns.peterjin.org/
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://2602:806:a003:40e::5c50:2521/ 2602:806:a003:40e::5c50:2521
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://[2602:0806:a003:040e:0000:0000:5c50:2521]/ 2602:806:a003:40e::5c50:2521
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://xn--fjaaa5308aabaaaabab.scp.rdns.peterjin.org/
200

Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
https://2602:806:a003:40e::5c50:2521/ 2602:806:a003:40e::5c50:2521
200

Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
https://[2602:0806:a003:040e:0000:0000:5c50:2521]/ 2602:806:a003:40e::5c50:2521
200

Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
AGood: All checked attribute values are enclosed in quotation marks (" or ').
AInfo: No img element found, no alt attribute checked
ADuration: 70864 milliseconds, 70.864 seconds


8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
●●ǀ●●●●●ǀ●●ǀ●.scp.rdns.peterjin.org
xn--fjaaa5308aabaaaabab.scp.rdns.peterjin.org
443
ok
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok
●●ǀ●●●●●ǀ●●ǀ●.scp.rdns.peterjin.org
xn--fjaaa5308aabaaaabab.scp.rdns.peterjin.org
443
ok
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no http/2 via ALPN
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain (complete)
1CN=ipv6-things.srv.peterjin.org

2CN=R3, O=Let's Encrypt, C=US


●●ǀ●●●●●ǀ●●ǀ●.scp.rdns.peterjin.org
2602:806:a003:40e::5c50:2521
443
ok
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok

●●ǀ●●●●●ǀ●●ǀ●.scp.rdns.peterjin.org
2602:806:a003:40e::5c50:2521
443
ok
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok
no http/2 via ALPN 
No SNI required - domain included in main certificate
Tls.1.2
no Tls.1.1
no Tls.1.0
no http/2 via ALPN
No SNI required - domain included in main certificate
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain (complete)
1CN=ipv6-things.srv.peterjin.org

2CN=R3, O=Let's Encrypt, C=US


[2602:0806:a003:040e:0000:0000:5c50:2521]
2602:806:a003:40e::5c50:2521
443
name does not match
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok

[2602:0806:a003:040e:0000:0000:5c50:2521]
2602:806:a003:40e::5c50:2521
443
name does not match
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain (complete)
1CN=ipv6-things.srv.peterjin.org

2CN=R3, O=Let's Encrypt, C=US


9. Certificates

1.
1.
CN=ipv6-things.srv.peterjin.org
03.05.2021
01.08.2021
expires in 80 days
*.aliases.peterjin.org, *.colors.misc.peterjin.org, *.misc.peterjin.org, *.ptable.misc.peterjin.org, *.scp.rdns.peterjin.org, *.t.rdns.peterjin.org, ipv6-things.srv.peterjin.org - 7 entries
1.
1.
CN=ipv6-things.srv.peterjin.org
03.05.2021

01.08.2021
expires in 80 days
*.aliases.peterjin.org, *.colors.misc.peterjin.org, *.misc.peterjin.org, *.ptable.misc.peterjin.org, *.scp.rdns.peterjin.org, *.t.rdns.peterjin.org, ipv6-things.srv.peterjin.org - 7 entries

KeyalgorithmEC Public Key (256 bit, prime256v1)
Signatur:SHA256 With RSA-Encryption
Serial Number:0443407121AAD73B2FD8B6E1215807790328
Thumbprint:A1FDD26F1B1B782ED174C9D554DAE42FC3465ADA
SHA256 / Certificate:H2HLXod0aHH67sPr6RLQIthj0kfCLPX3DslXBVCJFVs=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):13fbf7bf5c19a338c284f3559352245a6fb748a95cf89fb526afc7d2b68fff02
SHA256 hex / Subject Public Key Information (SPKI):aa40a544a6d041b96fe34d439752790599d16967e600ff69d6913420df66527d
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://r3.o.lencr.org
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=R3, O=Let's Encrypt, C=US
07.10.2020
29.09.2021
expires in 139 days


2.
CN=R3, O=Let's Encrypt, C=US
07.10.2020

29.09.2021
expires in 139 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:400175048314A4C8218C84A90C16CDDF
Thumbprint:48504E974C0DAC5B5CD476C8202274B24C8C7172
SHA256 / Certificate:cwwb3NhfV85dwLunM+XxulqSWyp3HWQKJvekVCJNrTs=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


3.
CN=DST Root CA X3, O=Digital Signature Trust Co.
30.09.2000
30.09.2021
expires in 140 days


3.
CN=DST Root CA X3, O=Digital Signature Trust Co.
30.09.2000

30.09.2021
expires in 140 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:44AFB080D6A327BA893039862EF8406B
Thumbprint:DAC9024F54D8F6DF94935FB1732638CA6AD77C13
SHA256 / Certificate:BocmAzGnJAPZCfEF5pvPDTLhvSST/8bZIG0RvNZ3Bzk=
SHA256 hex / Cert (DANE * 0 1):0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739
SHA256 hex / PublicKey (DANE * 1 1):563b3caf8cfef34c2335caf560a7a95906e8488462eb75ac59784830df9e5b2b
SHA256 hex / Subject Public Key Information (SPKI):29cc40db5e2de462a311cbbafaa1dc466960002335ecdf3317f2cd05c1d0bedf
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:



10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

No CertSpotter - CT-Log entries found


2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > 2019 are listed

No CRT - CT-Log entries found


11. Html-Content - Entries

Summary

Subresource Integrity (SRI)
DomainnameHtmlElementrel/property∑ size∑ problems∑ int.∑ ext.∑ Origin poss.∑ SRI ParseErrors∑ SRI valid∑ SRI missing
https://xn--fjaaa5308aabaaaabab.scp.rdns.peterjin.org/
a

11

0


0
0
0


link
other
1

0


0
0
0


meta
other
2

0


0
0
0

https://2602:806:a003:40e::5c50:2521/
2602:806:a003:40e::5c50:2521
a

11

0


0
0
0


link
other
1

0


0
0
0


meta
other
2

0


0
0
0

https://[2602:0806:a003:040e:0000:0000:5c50:2521]/
2602:806:a003:40e::5c50:2521
a

11

0


0
0
0


link
other
1

0


0
0
0


meta
other
2

0


0
0
0

Details

DomainnameHtml-Elementname/equiv/ property/relhref/src/contentHttpStatusmsgStatus
https://xn--fjaaa5308aabaaaabab.scp.rdns.peterjin.org/

a

/random?type=a3k


1
ok








a

/random?type=any


1
ok








a

/random?type=color


1
ok








a

/random?type=misc


1
ok








a

/random?type=scp


1
ok








a

/random?type=ttgen


1
ok








a

http://[2602:806:a003:40e::5c50:2521]


1
ok








a

https://ipv6-things.srv.peterjin.org/


1
ok








a

https://scp-2521.scp.rdns.peterjin.org/


1
ok








a

https://www.peterjin.org/wiki/IPv6_Things


2
ok








link
canonical
https://scp-2521.scp.rdns.peterjin.org


1
ok








meta
title
●●|●●●●●|●●|● has breached containment!


1
ok








meta
viewport
width=device-width, initial-scale=1


1
ok







https://2602:806:a003:40e::5c50:2521/
2602:806:a003:40e::5c50:2521
a

/random?type=a3k


1
ok








a

/random?type=any


1
ok








a

/random?type=color


1
ok








a

/random?type=misc


1
ok








a

/random?type=scp


1
ok








a

/random?type=ttgen


1
ok








a

http://[2602:806:a003:40e::5c50:2521]


1
ok








a

https://ipv6-things.srv.peterjin.org/


1
ok








a

https://scp-2521.scp.rdns.peterjin.org/


1
ok








a

https://www.peterjin.org/wiki/IPv6_Things


2
ok








link
canonical
https://scp-2521.scp.rdns.peterjin.org


1
ok








meta
title
●●|●●●●●|●●|● has breached containment!


1
ok








meta
viewport
width=device-width, initial-scale=1


1
ok







https://[2602:0806:a003:040e:0000:0000:5c50:2521]/
2602:806:a003:40e::5c50:2521
a

/random?type=a3k


1
ok








a

/random?type=any


1
ok








a

/random?type=color


1
ok








a

/random?type=misc


1
ok








a

/random?type=scp


1
ok








a

/random?type=ttgen


1
ok








a

http://[2602:806:a003:40e::5c50:2521]


1
ok








a

https://ipv6-things.srv.peterjin.org/


1
ok








a

https://scp-2521.scp.rdns.peterjin.org/


1
ok








a

https://www.peterjin.org/wiki/IPv6_Things


2
ok








link
canonical
https://scp-2521.scp.rdns.peterjin.org


1
ok








meta
title
●●|●●●●●|●●|● has breached containment!


1
ok








meta
viewport
width=device-width, initial-scale=1


1
ok








12. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers:


No NameServer - IP address - Informations found


13. CAA - Entries

No CAA entries found


14. TXT - Entries

No TXT entries found


15. Portchecks

No Port checks



Permalink: https://check-your-website.server-daten.de/?i=a57e4235-c4d8-40d7-98a7-efa06ddb2893


Last Result: https://check-your-website.server-daten.de/?q=%5b2602%3a806%3aa003%3a40e%3a%3a5c50%3a2521%5d&h=xn--fjaaa5308aabaaaabab.scp.rdns.peterjin.org - 2021-05-03 19:57:30


Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=%5b2602%3a806%3aa003%3a40e%3a%3a5c50%3a2521%5d&h=xn--fjaaa5308aabaaaabab.scp.rdns.peterjin.org" target="_blank">Check this Site: [2602:806:a003:40e::5c50:2521]</a>