Check DNS, Urls + Redirects, Certificates and Content of your Website

...

skip EDNS-Check

skip Content-Check

check links

Top config

Checked:
14.01.2020 15:03:14

Older results

No older results found

1. IP-Addresses

Host	Type	IP-Address	is auth.	∑ Queries	∑ Timeout
acm.nl	A	80.95.173.110 Rotterdam/South Holland/Netherlands (NL) - Intermax Amsterdam network Hostname: www.acm.nl	yes	2	0
	AAAA	2001:4c10:5:623::110 Rotterdam/South Holland/Netherlands (NL) - Intermax network	yes
www.acm.nl	CNAME	acm.nl	yes	1	0
	A	80.95.173.110 Rotterdam/South Holland/Netherlands (NL) - Intermax Amsterdam network Hostname: www.acm.nl	yes
	AAAA	2001:4c10:5:623::110 Rotterdam/South Holland/Netherlands (NL) - Intermax network	yes

2. DNSSEC

Zone (*)	DNSSEC - Informations

Zone: (root)
(root)	1 DS RR published


	• Status: Valid because published


	2 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 33853, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 01.02.2020, 00:00:00 +, Signature-Inception: 11.01.2020, 00:00:00 +, KeyTag 20326, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: nl
nl	1 DS RR in the parent zone found


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner nl., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 27.01.2020, 05:00:00 +, Signature-Inception: 14.01.2020, 04:00:00 +, KeyTag 33853, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 33853 used to validate the DS RRSet in the parent zone


	2 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 34112, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 63744, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner nl., Algorithm: 8, 1 Labels, original TTL: 3600 sec, Signature-expiration: 22.01.2020, 13:28:43 +, Signature-Inception: 08.01.2020, 07:08:02 +, KeyTag 34112, Signer-Name: nl


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 34112 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 34112, DigestType 2 and Digest "PFtfmzVXRVxQdRqb6evpI4yI4Z9fB/kwl2kXtRuVzSI=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: acm.nl
acm.nl	1 DS RR in the parent zone found


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner acm.nl., Algorithm: 8, 2 Labels, original TTL: 3600 sec, Signature-expiration: 26.01.2020, 09:03:06 +, Signature-Inception: 12.01.2020, 02:08:02 +, KeyTag 63744, Signer-Name: nl


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 63744 used to validate the DS RRSet in the parent zone


	1 DNSKEY RR found


	Public Key with Algorithm 13, KeyTag 43458, Flags 257 (SEP = Secure Entry Point)


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner acm.nl., Algorithm: 13, 2 Labels, original TTL: 3600 sec, Signature-expiration: 23.01.2020, 00:00:00 +, Signature-Inception: 02.01.2020, 00:00:00 +, KeyTag 43458, Signer-Name: acm.nl


	• Status: Good - Algorithmus 13 and DNSKEY with KeyTag 43458 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 43458, DigestType 2 and Digest "w+1GDdADXnjQMeb6QVPHBCAHcR2ef4GAjhZ/G0Vw8Hs=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone


	RRSIG Type 1 validates the A - Result: 80.95.173.110 Validated: RRSIG-Owner acm.nl., Algorithm: 13, 2 Labels, original TTL: 3600 sec, Signature-expiration: 23.01.2020, 00:00:00 +, Signature-Inception: 02.01.2020, 00:00:00 +, KeyTag 43458, Signer-Name: acm.nl


	RRSIG Type 16 validates the TXT - Result: DNSSEC ENABLED v=spf1 a:mail.acm.nl include:spf.acm.nl include:spf.byte.nl include:spf.flowmailer.net -all Validated: RRSIG-Owner acm.nl., Algorithm: 13, 2 Labels, original TTL: 200 sec, Signature-expiration: 23.01.2020, 00:00:00 +, Signature-Inception: 02.01.2020, 00:00:00 +, KeyTag 43458, Signer-Name: acm.nl


	RRSIG Type 28 validates the AAAA - Result: 2001:4C10:0005:0623:0000:0000:0000:0110 Validated: RRSIG-Owner acm.nl., Algorithm: 13, 2 Labels, original TTL: 200 sec, Signature-expiration: 23.01.2020, 00:00:00 +, Signature-Inception: 02.01.2020, 00:00:00 +, KeyTag 43458, Signer-Name: acm.nl


	RRSIG Type 47, expiration 2020-01-23 00:00:00 + validates the NSEC RR that proves the not-existence of the CNAME RR. Owner acm.nl, NextOwner: fm1._domainkey.acm.nl. Bitmap: A, NS, SOA, MX, TXT, AAAA, RRSIG, NSEC, DNSKEY


	RRSIG Type 47, expiration 2020-01-23 00:00:00 + validates the NSEC RR that proves the not-existence of the TLSA RR. Owner acm.nl, NextOwner: fm1._domainkey.acm.nl. Bitmap: A, NS, SOA, MX, TXT, AAAA, RRSIG, NSEC, DNSKEY


	RRSIG Type 47, expiration 2020-01-23 00:00:00 + validates the NSEC RR that proves the not-existence of the CAA RR. Owner acm.nl, NextOwner: fm1._domainkey.acm.nl. Bitmap: A, NS, SOA, MX, TXT, AAAA, RRSIG, NSEC, DNSKEY

Zone: www.acm.nl
www.acm.nl	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC RR as result with the domain name between the NSEC-Owner "acm.nl" and the NextOwner "fm1._domainkey.acm.nl". So the parent zone confirmes the non-existence of a DS RR. Bitmap: A, NS, SOA, MX, TXT, AAAA, RRSIG, NSEC, DNSKEY

3. Name Servers

Domain	Nameserver	NS-IP
acm.nl	• auth50.dns.internl.net / auth50.dns.internl.net	82.215.18.179 Nijmegen/Provincie Gelderland/Netherlands (NL) - InterNLnet	•
	•	2a01:3a8:100:3::b3:53 Amsterdam/North Holland/Netherlands (NL) - Tele2 Nederland B.V.	•
	• auth60.dns.internl.net / auth60.dns.internl.net	217.149.201.13 Nijmegen/Provincie Gelderland/Netherlands (NL) - Tele2 Nederland B.V.	•
	•	2a01:3a8:200:2::d:53 Amsterdam/North Holland/Netherlands (NL) - Tele2 Nederland B.V.	•
nl	• ns1.dns.nl / LHR1		•
	• ns2.dns.nl / s2.amx		•
	• ns3.dns.nl / tld-nl-fra2		•
	• sns-pb.isc.org / pb-ams-ns2.sns.isc.org		•

4. SOA-Entries

Domain:	nl
Zone-Name:
Primary:	ns1.dns.nl
Mail:	hostmaster.domain-registry.nl
Serial:	2020011429
Refresh:	3600
Retry:	600
Expire:	2419200
TTL:	600
num Entries:	4

Domain:	acm.nl
Zone-Name:
Primary:	auth50.dns.internl.net
Mail:	hostmaster.internl.net
Serial:	232530
Refresh:	14400
Retry:	7200
Expire:	2419200
TTL:	3600
num Entries:	4

5. Screenshots

Startaddress: https://www.acm.nl/nl, address used: https://www.acm.nl/nl, Screenshot created 2020-01-14 15:05:14 +00:0

Mobil (412px x 732px)

1052 milliseconds

Screenshot mobile - https://www.acm.nl/nl

Mobil + Landscape (732px x 412px)

980 milliseconds

Screenshot mobile landscape - https://www.acm.nl/nl

Screen (1280px x 1680px)

1378 milliseconds

Screenshot Desktop - https://www.acm.nl/nl

Mobile- and other Chrome-Checks

	width	height
visual Viewport	396	732
content Size	396	3642

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

Chrome-Connection: secure. secure connection settings. The connection to this site is encrypted and authenticated using TLS 1.2, ECDHE_RSA with P-256, and AES_256_GCM.

Chrome-Resources : secure. all served securely. All resources on this page are served securely.

6. Url-Checks

show header:

Domainname	Http-Status	redirect	Sec.	G
• http://acm.nl/ 80.95.173.110	301	https://acm.nl/ Html is minified: 100.00 %	0.047	A
Date: Tue, 14 Jan 2020 14:03:42 GMT
Server: Apache
Location: https://acm.nl/
Content-Length: 223
Connection: close
Content-Type: text/html; charset=iso-8859-1

• http://acm.nl/ 2001:4c10:5:623::110	301	https://acm.nl/ Html is minified: 100.00 %	0.046	A
Date: Tue, 14 Jan 2020 14:03:42 GMT
Server: Apache
Location: https://acm.nl/
Content-Length: 223
Connection: close
Content-Type: text/html; charset=iso-8859-1

• http://www.acm.nl/ 80.95.173.110	301	https://www.acm.nl/ Html is minified: 100.00 %	0.047	A
Date: Tue, 14 Jan 2020 14:03:42 GMT
Server: Apache
Location: https://www.acm.nl/
Content-Length: 227
Connection: close
Content-Type: text/html; charset=iso-8859-1

• http://www.acm.nl/ 2001:4c10:5:623::110	301	https://www.acm.nl/ Html is minified: 100.00 %	0.047	A
Date: Tue, 14 Jan 2020 14:03:42 GMT
Server: Apache
Location: https://www.acm.nl/
Content-Length: 227
Connection: close
Content-Type: text/html; charset=iso-8859-1

• https://acm.nl/ 80.95.173.110	301	https://www.acm.nl/ Html is minified: 100.00 %	8.170	A
Date: Tue, 14 Jan 2020 14:03:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Location: https://www.acm.nl/
Content-Length: 227
Connection: close
Content-Type: text/html; charset=iso-8859-1

• https://acm.nl/ 2001:4c10:5:623::110	301	https://www.acm.nl/ Html is minified: 100.00 %	3.297	A
Date: Tue, 14 Jan 2020 14:03:50 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Location: https://www.acm.nl/
Content-Length: 227
Connection: close
Content-Type: text/html; charset=iso-8859-1

• https://www.acm.nl/ 80.95.173.110	301	https://www.acm.nl/nl Html is minified: 120.00 %	3.624	A
Date: Tue, 14 Jan 2020 14:04:04 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff,nosniff
Location: https://www.acm.nl/nl
X-Drupal-Route-Normalizer: 1
X-UA-Compatible: IE=edge
Content-language: nl
X-Frame-Options: SAMEORIGIN
Cache-Control: must-revalidate, no-cache, no-store, private
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Vary:
X-Generator: Drupal 8 (https://www.drupal.org)
X-XSS-Protection: 1; mode=block
X-Permitted-Cross-Domain-Policies: none
Content-Security-Policy: default-src 'self' .siteimproveanalytics.io; script-src 'self' 'unsafe-inline' 'unsafe-eval' siteimproveanalytics.com kcmsurvey.com .acm.nl popper.js.org sdc.mineleni.nl ssl.p.jwpcdn.com cdn.siteimprove.net cdnjs.cloudflare.com cdn.rawgit.com; connect-src 'self' .siteimprove.com .siteimproveanalytics.io; img-src 'self' data: .acm.nl .siteimproveanalytics.io kcmsurvey.com sdc.mineleni.nl jwpltx.com; style-src 'self' 'unsafe-inline' siteimproveanalytics.com cdnjs.cloudflare.com; font-src 'self' data:; media-src 'self' .acm.nl; frame-src 'self' .siteimproveanalytics.io;
Content-Length: 330
Connection: close
Content-Type: text/html; charset=UTF-8

• https://www.acm.nl/ 2001:4c10:5:623::110	301	https://www.acm.nl/nl Html is minified: 120.00 %	9.950	A
Date: Tue, 14 Jan 2020 14:04:00 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff,nosniff
Location: https://www.acm.nl/nl
X-Drupal-Route-Normalizer: 1
X-UA-Compatible: IE=edge
Content-language: nl
X-Frame-Options: SAMEORIGIN
Cache-Control: must-revalidate, no-cache, no-store, private
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Vary:
X-Generator: Drupal 8 (https://www.drupal.org)
X-XSS-Protection: 1; mode=block
X-Permitted-Cross-Domain-Policies: none
Content-Security-Policy: default-src 'self' .siteimproveanalytics.io; script-src 'self' 'unsafe-inline' 'unsafe-eval' siteimproveanalytics.com kcmsurvey.com .acm.nl popper.js.org sdc.mineleni.nl ssl.p.jwpcdn.com cdn.siteimprove.net cdnjs.cloudflare.com cdn.rawgit.com; connect-src 'self' .siteimprove.com .siteimproveanalytics.io; img-src 'self' data: .acm.nl .siteimproveanalytics.io kcmsurvey.com sdc.mineleni.nl jwpltx.com; style-src 'self' 'unsafe-inline' siteimproveanalytics.com cdnjs.cloudflare.com; font-src 'self' data:; media-src 'self' .acm.nl; frame-src 'self' .siteimproveanalytics.io;
Content-Length: 330
Connection: close
Content-Type: text/html; charset=UTF-8

• https://www.acm.nl/nl Inline-JavaScript (∑/total): 1/255 Inline-CSS (∑/total): 5/541	200	Html is minified: 142.97 % Other inline scripts (∑/total): 2/1232	3.810	A
Date: Tue, 14 Jan 2020 14:04:10 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff,nosniff
Cache-Control: must-revalidate, no-cache, no-store, private
Link: <https://www.acm.nl/nl>; rel="shortlink", <https://www.acm.nl/nl>; rel="canonical"
X-UA-Compatible: IE=edge
Content-language: nl
X-Frame-Options: SAMEORIGIN
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Vary: Accept-Encoding
X-Generator: Drupal 8 (https://www.drupal.org)
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Permitted-Cross-Domain-Policies: none
Content-Security-Policy: default-src 'self' .siteimproveanalytics.io; script-src 'self' 'unsafe-inline' 'unsafe-eval' siteimproveanalytics.com kcmsurvey.com .acm.nl popper.js.org sdc.mineleni.nl ssl.p.jwpcdn.com cdn.siteimprove.net cdnjs.cloudflare.com cdn.rawgit.com; connect-src 'self' .siteimprove.com .siteimproveanalytics.io; img-src 'self' data: .acm.nl .siteimproveanalytics.io kcmsurvey.com sdc.mineleni.nl jwpltx.com; style-src 'self' 'unsafe-inline' siteimproveanalytics.com cdnjs.cloudflare.com; font-src 'self' data:; media-src 'self' .acm.nl; frame-src 'self' .siteimproveanalytics.io;
Content-Length: 9579
Connection: close
Content-Type: text/html; charset=UTF-8

• http://acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 80.95.173.110 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 100.00 % Other inline scripts (∑/total): 0/0	0.560	A
Visible Content: Moved Permanently The document has moved here .
Date: Tue, 14 Jan 2020 14:04:09 GMT
Server: Apache
Location: https://acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Content-Length: 292
Connection: close
Content-Type: text/html; charset=iso-8859-1

• http://acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2001:4c10:5:623::110 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 100.00 % Other inline scripts (∑/total): 0/0	0.547	A
Visible Content: Moved Permanently The document has moved here .
Date: Tue, 14 Jan 2020 14:04:09 GMT
Server: Apache
Location: https://acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Content-Length: 292
Connection: close
Content-Type: text/html; charset=iso-8859-1

• http://www.acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 80.95.173.110 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://www.acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 100.00 % Other inline scripts (∑/total): 0/0	0.047	A
Visible Content: Moved Permanently The document has moved here .
Date: Tue, 14 Jan 2020 14:04:10 GMT
Server: Apache
Location: https://www.acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Content-Length: 296
Connection: close
Content-Type: text/html; charset=iso-8859-1

• http://www.acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2001:4c10:5:623::110 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://www.acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 100.00 % Other inline scripts (∑/total): 0/0	0.076	A
Visible Content: Moved Permanently The document has moved here .
Date: Tue, 14 Jan 2020 14:04:10 GMT
Server: Apache
Location: https://www.acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Content-Length: 296
Connection: close
Content-Type: text/html; charset=iso-8859-1

• https://acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://www.acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 100.00 % Other inline scripts (∑/total): 0/0	3.313	A
Visible Content: Moved Permanently The document has moved here .
Date: Tue, 14 Jan 2020 14:04:14 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Location: https://www.acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Content-Length: 296
Connection: close
Content-Type: text/html; charset=iso-8859-1

• https://www.acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Inline-JavaScript (∑/total): 1/255 Inline-CSS (∑/total): 0/0	404	Html is minified: 140.86 % Other inline scripts (∑/total): 2/1371	4.064	A
Not Found
Visible Content: Overslaan en naar de inhoud gaan Open menu Ga naar de voorpagina Nederlands English Papiamentu Zoeken Main menu Nieuws Nieuwsberichten Blijf op de hoogte   Publicaties Besluit Waarschuwing Concentratiemelding Visie & opinie Regelgeving Gerechtelijke uitspraak Onderzoek Zienswijze en consultatie Correspondentie Jaarverslag ACM Brochure en uitgave Presentatie Zoek in alle publicaties   Onderwerpen Informatie voor ondernemers Verkoop aan consumenten Concurrentie & marktwerking Telecommunicatie Energie Post Vervoer Zorg Caribisch Nederland   Organisatie Onze organisatie Missie & strategie Samenwerking Werken bij de ACM   Contact Adresgegevens Tips en meldingen Informatie voor pers Reactieformulier Privacy Een klacht over de ACM Hulp bij zoeken Meld spam bij de ACM   Nederlands   \|   English   \|   Papiamentu Zoek in gehele site Zoek in gehele site Blijf op de hoogte Delen Twitter   Facebook   LinkedIn   Printen RSS Kruimelpad ACM.nl Pagina niet gevonden \| Page not found (404) Pagina niet gevonden \| Page not found (404) De pagina die u wilde bezoeken bestaat niet (meer). Misschien is de pagina verwijderd of verplaatst. Controleer of u het juiste adres in de adresbalk heeft ingevuld. Ga naar de homepage of het door u gewenste menuonderdeel. Of zoek op de website van de ACM . Wilt u een fout aan de ACM melden? Gebruik dan ons contactformulier .   Page not found The page you requested was not found. Check if the correct address is used as URL. Please go to the homepage or search through the ACM website. Do you want to report an error? Please use this form . Zoek in onze website Zoek in publicaties Zoek in publicaties   Uitgebreid zoeken   Search through our website Zoek in publicaties Zoek in publicaties   Advanced search   Delen RSS Blijf op de hoogte Facebook Twitter LinkedIn Markten goed laten werken voor mensen en bedrijven Index Nieuws Nieuwsberichten Blijf op de hoogte Publicaties Besluit Concentratiemelding Visie & opinie Regelgeving Gerechtelijke uitspraak Onderzoek Zienswijze en consultatie Correspondentie Brochure en uitgave Presentatie Zoek in alle publicaties Onderwerpen Informatie voor ondernemers Verkoop aan consumenten Concurrentie & marktwerking Telecommunicatie Energie Post Vervoer Markten in beeld Zorg Caribisch Nederland Organisatie Missie & strategie Samenwerking Onze organisatie Werken bij ACM Contact Adresgegevens Tips en meldingen Informatie voor pers Reactieformulier Privacy Hulp bij zoeken   Volg ACM op:   Twitter LinkedIn Magnet.me © Autoriteit Consument & Markt   \|   Copyright   \|   Privacy   \|   Privacy & solliciteren bij de ACM   \|   Cookies   \|   Toegankelijkheid   \|   Sitemap   Volg ACM op:   Twitter LinkedIn Magnet.me To top Nieuws Nieuwsberichten Blijf op de hoogte Publicaties Besluit Waarschuwing Concentratiemelding Visie & opinie Regelgeving Gerechtelijke uitspraak Onderzoek Zienswijze en consultatie Correspondentie Jaarverslag ACM Brochure en uitgave Presentatie Zoek in alle publicaties Onderwerpen Informatie voor ondernemers Verkoop aan consumenten Concurrentie & marktwerking Telecommunicatie Energie Post Vervoer Zorg Caribisch Nederland Organisatie Onze organisatie Missie & strategie Samenwerking Werken bij de ACM Contact Adresgegevens Tips en meldingen Informatie voor pers Reactieformulier Privacy Een klacht over de ACM Hulp bij zoeken Meld spam bij de ACM
Date: Tue, 14 Jan 2020 14:04:18 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff,nosniff
Cache-Control: must-revalidate, no-cache, no-store, private
Link: <https://www.acm.nl/404>; rel="alternate"; hreflang="und",<https://www.acm.nl/404>; rel="canonical",<https://www.acm.nl/node/16862>; rel="shortlink",<https://www.acm.nl/404>; rel="revision",<https://www.acm.nl/404>; rel="alternate"; hreflang="und",<https://www.acm.nl/404>; rel="canonical",<https://www.acm.nl/node/16862>; rel="shortlink",<https://www.acm.nl/404>; rel="revision"
X-UA-Compatible: IE=edge
Content-language: nl
X-Frame-Options: SAMEORIGIN
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Vary:
X-Generator: Drupal 8 (https://www.drupal.org)
X-XSS-Protection: 1; mode=block
X-Permitted-Cross-Domain-Policies: none
Content-Security-Policy: default-src 'self' .siteimproveanalytics.io; script-src 'self' 'unsafe-inline' 'unsafe-eval' siteimproveanalytics.com kcmsurvey.com .acm.nl popper.js.org sdc.mineleni.nl ssl.p.jwpcdn.com cdn.siteimprove.net cdnjs.cloudflare.com cdn.rawgit.com; connect-src 'self' .siteimprove.com .siteimproveanalytics.io; img-src 'self' data: .acm.nl .siteimproveanalytics.io kcmsurvey.com sdc.mineleni.nl jwpltx.com; style-src 'self' 'unsafe-inline' siteimproveanalytics.com cdnjs.cloudflare.com; font-src 'self' data:; media-src 'self' .acm.nl; frame-src 'self' .siteimproveanalytics.io;
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

7. Comments

	1. General Results, most used to calculate the result
A	name "acm.nl" is domain, public suffix is "nl", top-level-domain-type is "country-code", Country is Netherlands (the), tld-manager is "SIDN (Stichting Internet Domeinregistratie Nederland)"
A	Good: All ip addresses are public addresses
A	Good: No asked Authoritative Name Server had a timeout
A	https://www.acm.nl/ 80.95.173.110	301	https://www.acm.nl/nl	Correct redirect https to https
A	https://www.acm.nl/ 2001:4c10:5:623::110	301	https://www.acm.nl/nl	Correct redirect https to https
A	Good: destination is https
A	Good - only one version with Http-Status 200
A	Good: one preferred version: www is preferred
A	Good: every https has a Strict Transport Security Header
A	Good: HSTS max-age is long enough, 31536000 seconds = 365 days
A	Good: HSTS has includeSubdomains - directive
	HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
A	Good: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
A	http://acm.nl/ 80.95.173.110	301	https://acm.nl/	Correct redirect http - https with the same domain name
A	http://acm.nl/ 2001:4c10:5:623::110	301	https://acm.nl/	Correct redirect http - https with the same domain name
A	http://www.acm.nl/ 80.95.173.110	301	https://www.acm.nl/	Correct redirect http - https with the same domain name
A	http://www.acm.nl/ 2001:4c10:5:623::110	301	https://www.acm.nl/	Correct redirect http - https with the same domain name
	2. Header-Checks
	3. DNS- and NameServer - Checks
A	Good: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: auth50.dns.internl.net,auth60.dns.internl.net
A	Good: Nameserver supports TCP connections: 4 good Nameserver
A	Good: Nameserver supports Echo Capitalization: 4 good Nameserver
A	Good: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 4 good Nameserver
A	Good: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 4 good Nameserver
	Nameserver doesn't pass all EDNS-Checks: sns-pb.isc.org: OP100: ok. FLAGS: ok. V1: ok. V1OP100: ok. V1FLAGS: ok. DNSSEC: ok. V1DNSSEC: ok. NSID: SOA expected, but NOT found, NOERR expectend and NOERR found, Version 0 expectend and found (pb-ams-ns2.sns.isc.org). COOKIE: fatal timeout. CLIENTSUBNET: ok.
A	Good: All SOA have the same Serial Number
	Warning: No CAA entry with issue/issuewild found, every CAA can create a certificate. Read https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization to learn some basics about the idea of CAA. Your name server must support such an entry. Not all dns providers support CAA entries.
	4. Content- and Performance-critical Checks
A	Good: All checks /.well-known/acme-challenge/random-filename without redirects answer with the expected http status 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge should work. If it doesn't work: Check your vHost configuration (apachectl -S, httpd -S, nginx -T). Every combination of port and ServerName / ServerAlias (Apache) or Server (Nginx) must be unique. Merge duplicated entries in one vHost. If you use an IIS, extensionless files must be allowed in the /.well-known/acme-challenge subdirectory. Create a web.config in that directory. Content: <configuration><system.webServer><staticContent><mimeMap fileExtension="." mimeType="text/plain" /></staticContent></system.webServer></configuration>. If you have a redirect http ⇒ https, that's ok, Letsencrypt follows such redirects to port 80 / 443 (same or other server). There must be a certificate. But the certificate may be expired, self signed or with a not matching domain name. Checking the validation file Letsencrypt ignores such certificate errors. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
A	Good: Every https result with status 200 and greater 1024 Bytes is compressed (gzip, deflate, br checked).
	https://www.acm.nl/nl	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://www.acm.nl/nl	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://www.acm.nl/nl	200		Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
	Warning: CSS / JavaScript found without Compression. Compress these ressources, gzip, deflate, br are checked. 2 external CSS / JavaScript files without GZip found - 158 with GZip, 160 complete
A	Good: All CSS / JavaScript files are sent with a long Cache-Control header (minimum 7 days). So the browser can re-use these files, no download is required. 160 external CSS / JavaScript files with long Cache-Control max-age found
A	Good: All images are sent with a long Cache-Control header (minimum 7 days). So the browser can reuse these files, no download is required. 1 image files with long Cache-Control max-age found
A	Good: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
	https://www.acm.nl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	404	4.064 seconds	Warning: 404 needs more then one second
A	Duration: 124486 milliseconds, 124.486 seconds

8. Connections

Domain

Port

Cert.

Protocol

KeyExchange

Strength

Cipher

Strength

HashAlgorithm

OCSP stapling

Domain/KeyExchange

IP/Strength

Port/Cipher

Cert./Strength

Protocol/HashAlgorithm

OCSP stapling

acm.nl

80.95.173.110

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

error checking OCSP stapling

acm.nl

80.95.173.110

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

error checking OCSP stapling

no http/2 via ALPN

Tls.1.2
no Tls.1.1
no Tls.1.0

no http/2 via ALPN

Tls.1.2
no Tls.1.1
no Tls.1.0

Chain - too much certificates, don't send root certificates	1	O=Autoriteit Consument en Markt, L=Den Haag, C=NL, ST=Zuid-Holland
	2	CN=Digidentity BV PKIoverheid Organisatie Server CA - G3, O=Digidentity B.V., C=NL, organizationIdentifier=NTRNL-27322631
	3	CN=Staat der Nederlanden Organisatie Services CA - G3, O=Staat der Nederlanden, C=NL
	4	CN=Staat der Nederlanden Root CA - G3, O=Staat der Nederlanden, C=NL

acm.nl

2001:4c10:5:623::110

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

error checking OCSP stapling

acm.nl

2001:4c10:5:623::110

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

error checking OCSP stapling

no http/2 via ALPN

Tls.1.2
no Tls.1.1
no Tls.1.0

no http/2 via ALPN

Tls.1.2
no Tls.1.1
no Tls.1.0

Chain - too much certificates, don't send root certificates	1	O=Autoriteit Consument en Markt, L=Den Haag, C=NL, ST=Zuid-Holland
	2	CN=Digidentity BV PKIoverheid Organisatie Server CA - G3, O=Digidentity B.V., C=NL, organizationIdentifier=NTRNL-27322631
	3	CN=Staat der Nederlanden Organisatie Services CA - G3, O=Staat der Nederlanden, C=NL
	4	CN=Staat der Nederlanden Root CA - G3, O=Staat der Nederlanden, C=NL

www.acm.nl

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

error checking OCSP stapling

www.acm.nl

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

error checking OCSP stapling

no http/2 via ALPN

Tls.1.2
no Tls.1.1
no Tls.1.0

no http/2 via ALPN

Tls.1.2
no Tls.1.1
no Tls.1.0

Chain - too much certificates, don't send root certificates	1	O=Autoriteit Consument en Markt, L=Den Haag, C=NL, ST=Zuid-Holland
	2	CN=Digidentity BV PKIoverheid Organisatie Server CA - G3, O=Digidentity B.V., C=NL, organizationIdentifier=NTRNL-27322631
	3	CN=Staat der Nederlanden Organisatie Services CA - G3, O=Staat der Nederlanden, C=NL
	4	CN=Staat der Nederlanden Root CA - G3, O=Staat der Nederlanden, C=NL

www.acm.nl

80.95.173.110

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

error checking OCSP stapling

www.acm.nl

80.95.173.110

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

error checking OCSP stapling

no http/2 via ALPN

Tls.1.2
no Tls.1.1
no Tls.1.0

no http/2 via ALPN

Tls.1.2
no Tls.1.1
no Tls.1.0

Chain - too much certificates, don't send root certificates	1	O=Autoriteit Consument en Markt, L=Den Haag, C=NL, ST=Zuid-Holland
	2	CN=Digidentity BV PKIoverheid Organisatie Server CA - G3, O=Digidentity B.V., C=NL, organizationIdentifier=NTRNL-27322631
	3	CN=Staat der Nederlanden Organisatie Services CA - G3, O=Staat der Nederlanden, C=NL
	4	CN=Staat der Nederlanden Root CA - G3, O=Staat der Nederlanden, C=NL

www.acm.nl

2001:4c10:5:623::110

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

error checking OCSP stapling

www.acm.nl

2001:4c10:5:623::110

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

error checking OCSP stapling

no http/2 via ALPN

Tls.1.2
no Tls.1.1
no Tls.1.0

no http/2 via ALPN

Tls.1.2
no Tls.1.1
no Tls.1.0

Chain - too much certificates, don't send root certificates	1	O=Autoriteit Consument en Markt, L=Den Haag, C=NL, ST=Zuid-Holland
	2	CN=Digidentity BV PKIoverheid Organisatie Server CA - G3, O=Digidentity B.V., C=NL, organizationIdentifier=NTRNL-27322631
	3	CN=Staat der Nederlanden Organisatie Services CA - G3, O=Staat der Nederlanden, C=NL
	4	CN=Staat der Nederlanden Root CA - G3, O=Staat der Nederlanden, C=NL

acm.nl

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

error checking OCSP stapling

acm.nl

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

error checking OCSP stapling

no http/2 via ALPN

Tls.1.2
no Tls.1.1
no Tls.1.0

no http/2 via ALPN

Tls.1.2
no Tls.1.1
no Tls.1.0

Chain - too much certificates, don't send root certificates	1	O=Autoriteit Consument en Markt, L=Den Haag, C=NL, ST=Zuid-Holland
	2	CN=Digidentity BV PKIoverheid Organisatie Server CA - G3, O=Digidentity B.V., C=NL, organizationIdentifier=NTRNL-27322631
	3	CN=Staat der Nederlanden Organisatie Services CA - G3, O=Staat der Nederlanden, C=NL
	4	CN=Staat der Nederlanden Root CA - G3, O=Staat der Nederlanden, C=NL

9. Certificates

C=NL, S=Zuid-Holland, L=Den Haag, O=Autoriteit Consument en Markt, SERIALNUMBER=00000004000000152000

19.07.2018

20.07.2020
1762 days expired

acm.nl - 1 entry

C=NL, S=Zuid-Holland, L=Den Haag, O=Autoriteit Consument en Markt, SERIALNUMBER=00000004000000152000

19.07.2018

20.07.2020
1762 days expired

acm.nl - 1 entry

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	19B6FBCF04F959D6D4144E8E537C6EF0
Thumbprint:	E61ED9E1CC623145DB70E25879F8B8658A8D0B38
SHA256 / Certificate:	qoYIU9XOLUQ6STqBxDFzCRd5tCNcexD/znptXprjjDg=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	fedd9bc035705d3eb13345e1531514d787eabe2136c4384c33b5242ffb35e51d
SHA256 hex / Subject Public Key Information (SPKI):	fedd9bc035705d3eb13345e1531514d787eabe2136c4384c33b5242ffb35e51d
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.ca.digidentity.com
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

CN=Digidentity BV PKIoverheid Organisatie Server CA - G3, OID.2.5.4.97=NTRNL-27322631, O=Digidentity B.V., C=NL

17.05.2018

12.11.2028
expires in 1275 days

CN=Digidentity BV PKIoverheid Organisatie Server CA - G3, OID.2.5.4.97=NTRNL-27322631, O=Digidentity B.V., C=NL

17.05.2018

12.11.2028
expires in 1275 days

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	786C7C59FC7CA0C0
Thumbprint:	C96A8B8C101746AC6367BFF598F60DE73AD13F1A
SHA256 / Certificate:	cFYQcjyWE/ZBMYHK33PVEHG9dh/aSRQj4avQAVAbZPM=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	ce6e1eb8d0be2625bee1bcb7c4322fae3340fb8ed54596f7327169cbec551381
SHA256 hex / Subject Public Key Information (SPKI):	ce6e1eb8d0be2625bee1bcb7c4322fae3340fb8ed54596f7327169cbec551381
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://domorganisatieservicesocsp-g3.pkioverheid.nl
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), OCSP-Signatur (1.3.6.1.5.5.7.3.9), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

CN=Staat der Nederlanden Organisatie Services CA - G3, O=Staat der Nederlanden, C=NL

14.11.2013

13.11.2028
expires in 1276 days

CN=Staat der Nederlanden Organisatie Services CA - G3, O=Staat der Nederlanden, C=NL

14.11.2013

13.11.2028
expires in 1276 days

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	0098A23C
Thumbprint:	32EA2E2100D19BDAA8CB9B7724CC861415ABED9D
SHA256 / Certificate:	2VgdvembOe7/bOXIDeFlDaDByKEJcF7ShsU7yV5mVeQ=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	5a804ccff6c860c72d48f6796618defff7a2935dd3781c8748ae335d8604b004
SHA256 hex / Subject Public Key Information (SPKI):	5a804ccff6c860c72d48f6796618defff7a2935dd3781c8748ae335d8604b004
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://rootocsp-g3.pkioverheid.nl
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

CN=Staat der Nederlanden Root CA - G3, O=Staat der Nederlanden, C=NL

14.11.2013

14.11.2028
expires in 1277 days

CN=Staat der Nederlanden Root CA - G3, O=Staat der Nederlanden, C=NL

14.11.2013

14.11.2028
expires in 1277 days

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	0098A239
Thumbprint:	D8EB6B41519259E0F3E78500C03DB68897C9EEFC
SHA256 / Certificate:	PE+wuVq4swAy9DK4b1Nf4XLBhdD9OYZYN882GH+m9Cg=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	4223894003a881c5df6bab163db235c221a18d54bf759945820e670da82e3f39
SHA256 hex / Subject Public Key Information (SPKI):	4223894003a881c5df6bab163db235c221a18d54bf759945820e670da82e3f39
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

C=NL, S=Zuid-Holland, L=Den Haag, O=Autoriteit Consument en Markt, SERIALNUMBER=00000004000000152000

19.07.2018

20.07.2020
1762 days expired

www.acm.nl - 1 entry

C=NL, S=Zuid-Holland, L=Den Haag, O=Autoriteit Consument en Markt, SERIALNUMBER=00000004000000152000

19.07.2018

20.07.2020
1762 days expired

www.acm.nl - 1 entry

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	7FAB738276793A57280352B8D2B5B207
Thumbprint:	8BC228C11DF449FDC6F57904069FCC510F596C9C
SHA256 / Certificate:	ugBDAv1D6U+4y2WR51SwoCo4TaztiDY+D05k190eYpQ=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	fe5d90631fba53ea61d459c0660a8adf3e0c4fbb5da29244d85d3264a5dcceaf
SHA256 hex / Subject Public Key Information (SPKI):	fe5d90631fba53ea61d459c0660a8adf3e0c4fbb5da29244d85d3264a5dcceaf
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.ca.digidentity.com
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

CN=Digidentity BV PKIoverheid Organisatie Server CA - G3, OID.2.5.4.97=NTRNL-27322631, O=Digidentity B.V., C=NL

17.05.2018

12.11.2028
expires in 1275 days

CN=Digidentity BV PKIoverheid Organisatie Server CA - G3, OID.2.5.4.97=NTRNL-27322631, O=Digidentity B.V., C=NL

17.05.2018

12.11.2028
expires in 1275 days

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	786C7C59FC7CA0C0
Thumbprint:	C96A8B8C101746AC6367BFF598F60DE73AD13F1A
SHA256 / Certificate:	cFYQcjyWE/ZBMYHK33PVEHG9dh/aSRQj4avQAVAbZPM=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	ce6e1eb8d0be2625bee1bcb7c4322fae3340fb8ed54596f7327169cbec551381
SHA256 hex / Subject Public Key Information (SPKI):	ce6e1eb8d0be2625bee1bcb7c4322fae3340fb8ed54596f7327169cbec551381
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://domorganisatieservicesocsp-g3.pkioverheid.nl
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), OCSP-Signatur (1.3.6.1.5.5.7.3.9), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

CN=Staat der Nederlanden Organisatie Services CA - G3, O=Staat der Nederlanden, C=NL

14.11.2013

13.11.2028
expires in 1276 days

CN=Staat der Nederlanden Organisatie Services CA - G3, O=Staat der Nederlanden, C=NL

14.11.2013

13.11.2028
expires in 1276 days

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	0098A23C
Thumbprint:	32EA2E2100D19BDAA8CB9B7724CC861415ABED9D
SHA256 / Certificate:	2VgdvembOe7/bOXIDeFlDaDByKEJcF7ShsU7yV5mVeQ=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	5a804ccff6c860c72d48f6796618defff7a2935dd3781c8748ae335d8604b004
SHA256 hex / Subject Public Key Information (SPKI):	5a804ccff6c860c72d48f6796618defff7a2935dd3781c8748ae335d8604b004
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://rootocsp-g3.pkioverheid.nl
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

CN=Staat der Nederlanden Root CA - G3, O=Staat der Nederlanden, C=NL

14.11.2013

14.11.2028
expires in 1277 days

CN=Staat der Nederlanden Root CA - G3, O=Staat der Nederlanden, C=NL

14.11.2013

14.11.2028
expires in 1277 days

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	0098A239
Thumbprint:	D8EB6B41519259E0F3E78500C03DB68897C9EEFC
SHA256 / Certificate:	PE+wuVq4swAy9DK4b1Nf4XLBhdD9OYZYN882GH+m9Cg=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	4223894003a881c5df6bab163db235c221a18d54bf759945820e670da82e3f39
SHA256 hex / Subject Public Key Information (SPKI):	4223894003a881c5df6bab163db235c221a18d54bf759945820e670da82e3f39
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Small Code Update - wait one minute

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

Small Code Update - wait one minute

11. Html-Content - Entries

Summary

No data found or small Code-update

Details (currently limited to 500 rows - some problems with spam users)

Small Code Update - wait one minute

12. Html-Parsing via https://validator.w3.org/nu/

Small Code update, wait one minute

13. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers:

No NameServer - IP address informations found. The feature is new (2020-05-07), so recheck this domain.

14. CAA - Entries

Domainname	flag	Value	∑ Queries
www.acm.nl			1
acm.nl	0	no CAA entry found	1
nl	0	no CAA entry found	1

15. TXT - Entries

Domainname	TXT Entry	Status	∑ Queries
acm.nl	DNSSEC ENABLED	ok	1
acm.nl	v=spf1 a:mail.acm.nl include:spf.acm.nl include:spf.byte.nl include:spf.flowmailer.net -all	ok	1
www.acm.nl	DNSSEC ENABLED	ok	1
www.acm.nl	v=spf1 a:mail.acm.nl include:spf.acm.nl include:spf.byte.nl include:spf.flowmailer.net -all	ok	1
_acme-challenge.acm.nl		Name Error - The domain name does not exist	1
_acme-challenge.www.acm.nl		Name Error - The domain name does not exist	1
_acme-challenge.acm.nl.acm.nl		Name Error - The domain name does not exist	1
_acme-challenge.www.acm.nl.acm.nl		Name Error - The domain name does not exist	1
_acme-challenge.www.acm.nl.www.acm.nl		Name Error - The domain name does not exist	1

16. DomainService - Entries

No DomainServiceEntries entries found

17. Cipher Suites

No Ciphers found

18. Portchecks

No open Ports <> 80 / 443 found, so no additional Ports checked.

Permalink: https://check-your-website.server-daten.de/?i=0a03ec84-33c8-45c7-aa16-a4cba6a67ef7

Last Result: https://check-your-website.server-daten.de/?q=acm.nl - 2020-01-14 15:03:14

Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=acm.nl" target="_blank">Check this Site: acm.nl</a>

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

QR-Code of this page - https://check-your-website.server-daten.de/?d=acm.nl

Check DNS, Urls + Redirects, Certificates and Content of your Website

Older results

1. IP-Addresses

2. DNSSEC

3. Name Servers

4. SOA-Entries

5. Screenshots

Mobile- and other Chrome-Checks

6. Url-Checks

7. Comments

1. General Results, most used to calculate the result

2. Header-Checks

3. DNS- and NameServer - Checks

4. Content- and Performance-critical Checks

8. Connections

9. Certificates

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

11. Html-Content - Entries

Summary

Details (currently limited to 500 rows - some problems with spam users)

12. Html-Parsing via https://validator.w3.org/nu/

13. Nameserver - IP-Adresses

14. CAA - Entries

15. TXT - Entries

16. DomainService - Entries

17. Cipher Suites

18. Portchecks