X

DNS-problem - authoritative Nameserver refused, not defined or timeout

Checked:
11.07.2019 03:56:34


Older results

No older results found


1. IP-Addresses

HostTIP-Addressis auth.∑ Queries∑ Timeout
bffhouse.com
A
178.128.105.43
Singapore//Singapore (SG) - DigitalOcean
No Hostname found
yes
5
4

AAAA

yes


www.bffhouse.com
C
bffhouse.com
yes
1
0

A
178.128.105.43
Singapore//Singapore (SG) - DigitalOcean
No Hostname found
yes



2. DNSSEC

Zone (*)DNSSEC - Informations (beta)
(root)
1 DS RR published

Status: Valid because published

3 DNSKEY RR found

Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)

Public Key with Algorithm 8, KeyTag 25266, Flags 256

Public Key with Algorithm 8, KeyTag 59944, Flags 256

1 RRSIG RR to validate DNSKEY RR found

Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 22.07.2019, 00:00:00, Signature-Inception: 01.07.2019, 00:00:00, KeyTag 20326, Signer-Name: (root)

Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet

Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone
com
1 DS RR in the parent zone found

1 RRSIG RR to validate DS RR found

Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 23.07.2019, 21:00:00, Signature-Inception: 10.07.2019, 20:00:00, KeyTag 59944, Signer-Name: (root)

Status: Good - Algorithmus 8 and DNSKEY with KeyTag 59944 used to validate the DS RRSet in the parent zone

3 DNSKEY RR found

Public Key with Algorithm 8, KeyTag 3800, Flags 256

Public Key with Algorithm 8, KeyTag 17708, Flags 256

Public Key with Algorithm 8, KeyTag 30909, Flags 257 (SEP = Secure Entry Point)

1 RRSIG RR to validate DNSKEY RR found

Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 16.07.2019, 18:25:33, Signature-Inception: 01.07.2019, 18:20:33, KeyTag 30909, Signer-Name: com

Status: Good - Algorithmus 8 and DNSKEY with KeyTag 30909 used to validate the DNSKEY RRSet

Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 30909, DigestType 2 and Digest "4tPJFvbe6scylOgmj7WIUESoM/xUWViPSpGEz8QaV2Y=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone
bffhouse.com
0 DS RR in the parent zone found

DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed domain name between the hashed NSEC3-owner and the hashed NextOwner. So the parent zone confirmes the non-existence of a DS RR.

0 DNSKEY RR found


www.bffhouse.com
0 DS RR in the parent zone found


3. Name Servers

DomainNameserverNS-IP
bffhouse.com
  ns1.zonedns.vn
103.28.36.30
Ho Chi Minh City/Ho Chi Minh/Vietnam (VN) - NHANHOA


T 
2001:df1:3200::15
Ho Chi Minh City/Ho Chi Minh/Vietnam (VN) - NHANHOA


  ns2.zonedns.vn
123.30.50.41
Ho Chi Minh City/Ho Chi Minh/Vietnam (VN) - VietNam Post and Telecom Corporation


U 
2001:ee0:300:7::3
Ho Chi Minh City/Ho Chi Minh/Vietnam (VN) - VNPT


  ns3.zonedns.vn
203.162.79.157
Ho Chi Minh City/Ho Chi Minh/Vietnam (VN) - VietNam Post and Telecom Corporation


U  ns4.zonedns.vn
125.212.225.141
Hanoi/Vietnam (VN) - Viettel Corporation


U 
2401:5f80:2001:5::a
Ho Chi Minh City/Ho Chi Minh/Vietnam (VN) - VTDC

com
  a.gtld-servers.net


  b.gtld-servers.net


  c.gtld-servers.net


  d.gtld-servers.net


  e.gtld-servers.net


  f.gtld-servers.net


  g.gtld-servers.net


  h.gtld-servers.net


  i.gtld-servers.net


  j.gtld-servers.net


  k.gtld-servers.net


  l.gtld-servers.net


  m.gtld-servers.net


4. SOA-Entries


Domain:com
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1562810177
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:7


Domain:com
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1562810192
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:6


Domain:bffhouse.com
Primary:ns1.zonedns.vn
Mail:root.bffhouse.com
Serial:2019071003
Refresh:1200
Retry:600
Expire:1209600
TTL:3600
num Entries:3


5. Url-Checks


show header:
Domainname Http-StatusredirectSec.G
• http://bffhouse.com/
178.128.105.43
301
https://bffhouse.com/
0.547
A
Connection: close
Content-Type: text/html; charset=utf-8
Location: https://bffhouse.com/
Server: Caddy
Date: Thu, 11 Jul 2019 02:00:10 GMT
Content-Length: 56

• http://www.bffhouse.com/
178.128.105.43
404

0.530
M
Not Found
Content-Type: text/plain; charset=utf-8
Server: Caddy
X-Content-Type-Options: nosniff
Date: Thu, 11 Jul 2019 02:00:10 GMT
Content-Length: 58
Connection: close

• https://bffhouse.com/
178.128.105.43
200

2.440
A
small content:
<!doctype html><html lang="en-US"><head><meta charset="utf-8"/><link rel="shortcut icon" href="/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><link rel="manifest" href="/manifest.json"/><link rel="stylesheet" href="https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css" integrity="sha384-ggOyR0iXCbMQv3Xipma34MD+dH/1fQ784/j6cY/iJTQUOhcWr7x9JvoRxT2MZw1T" crossorigin="anonymous"><link href="https://fonts.googleapis.com/css?family=Roboto" rel="stylesheet"><link rel="stylesheet" href="https://use.fontawesome.com/releases/v5.8.2/css/all.css" integrity="sha384-oS3vJWv+0UjzBfQzYUhtDYW+Pj2yciDJxpsK1OYPAYjqT085Qq/1cq5FLXAZQ7Ay" crossorigin="anonymous"><title>Việt Nam BFF WiFi - Chuyên cho thuê WiFi đi nước ngoài</title><link href="/static/css/main.c638710b.chunk.css" rel="stylesheet"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><script src="index.js"></script><div id="root"></div><script src="https://code.jquery.com/jquery-3.3.1.slim.min.js" integrity="sha384-q8i/X+965DzO0rT7abK41JStQIAqVgRVzpbzo5smXKp4YfRvH+8abtTE1Pi6jizo" crossorigin="anonymous"></script><script src="https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js" integrity="sha384-UO2eT0CpHqdSJQ6hJty5KVphtPhzWj9WO1clHTMGa3JDZwrnQq4sF86dIHNDz0W1" crossorigin="anonymous"></script><script src="https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js" integrity="sha384-JjSmVgyd0p3pXB1rRibZUAYoIIy6OrQ6VrjIEaFf/nJGzIxFDsf4x0xIM+B07jRM" crossorigin="anonymous"></script><script type="text/javascript" src="//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit"></script><script>!function(l){function e(e){for(var r,t,n=e[0],o=e[1],u=e[2],f=0,i=[];f<n.length;f++)t=n[f],p[t]&&i.push(p[t][0]),p[t]=0;for(r in o)Object.prototype.hasOwnProperty.call(o,r)&&(l[r]=o[r]);for(s&&s(e);i.length;)i.shift()();return c.push.apply(c,u||[]),a()}function a(){for(var e,r=0;r<c.length;r++){for(var t=c[r],n=!0,o=1;o<t.length;o++){var u=t[o];0!==p[u]&&(n=!1)}n&&(c.splice(r--,1),e=f(f.s=t[0]))}return e}var t={},p={1:0},c=[];function f(e){if(t[e])return t[e].exports;var r=t[e]={i:e,l:!1,exports:{}};return l[e].call(r.exports,r,r.exports,f),r.l=!0,r.exports}f.m=l,f.c=t,f.d=function(e,r,t){f.o(e,r)||Object.defineProperty(e,r,{enumerable:!0,get:t})},f.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},f.t=function(r,e){if(1&e&&(r=f(r)),8&e)return r;if(4&e&&"object"==typeof r&&r&&r.__esModule)return r;var t=Object.create(null);if(f.r(t),Object.defineProperty(t,"default",{enumerable:!0,value:r}),2&e&&"string"!=typeof r)for(var n in r)f.d(t,n,function(e){return r[e]}.bind(null,n));return t},f.n=function(e){var r=e&&e.__esModule?function(){return e.default}:function(){return e};return f.d(r,"a",r),r},f.o=function(e,r){return Object.prototype.hasOwnProperty.call(e,r)},f.p="/";var r=window.webpackJsonp=window.webpackJsonp||[],n=r.push.bind(r);r.push=e,r=r.slice();for(var o=0;o<r.length;o++)e(r[o]);var s=n;a()}([])</script><script src="/static/js/2.170859da.chunk.js"></script><script src="/static/js/main.0ca2df0b.chunk.js"></script></body></html>
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Content-Type: text/html; charset=UTF-8
Date: Thu, 11 Jul 2019 02:00:12 GMT
Etag: W/"cfd-16b7017a48a"
Last-Modified: Wed, 19 Jun 2019 14:15:26 GMT
Server: Caddy
Strict-Transport-Security: max-age=15552000; includeSubDomains
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Connection: close
Transfer-Encoding: chunked

• https://www.bffhouse.com/
178.128.105.43
-10

0.533
P
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

• http://bffhouse.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
178.128.105.43
301
https://bffhouse.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.530
A
Visible Content: Moved Permanently .
Connection: close
Content-Type: text/html; charset=utf-8
Location: https://bffhouse.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: Caddy
Date: Thu, 11 Jul 2019 02:00:15 GMT
Content-Length: 125

• http://www.bffhouse.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
178.128.105.43
404

0.533
A
Not Found
Visible Content: 404 Site www.bffhouse.com is not served on this interface
Content-Type: text/plain; charset=utf-8
Server: Caddy
X-Content-Type-Options: nosniff
Date: Thu, 11 Jul 2019 02:00:15 GMT
Content-Length: 58
Connection: close

• https://bffhouse.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

301
https://bffhouse.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de/
1.904
A
Visible Content: Redirecting to /.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de/
Content-Length: 305
Content-Security-Policy: default-src 'none'
Content-Type: text/html; charset=UTF-8
Date: Thu, 11 Jul 2019 02:00:16 GMT
Location: /.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de/
Server: Caddy
Strict-Transport-Security: max-age=15552000; includeSubDomains
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Connection: close

• https://bffhouse.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de/

200

1.906

Visible Content: You need to enable JavaScript to run this app.
Info: Html-Content with meta and/or script, may be a problem creating a Letsencrypt certificate using http-01 validation
<!doctype html><html lang="en-US"><head><meta charset="utf-8"/><link rel="shortcut icon" href="/favicon.ico"/><meta name="viewport" content="width=device-width,initial-scale=1"/><meta name="theme-color" content="#000000"/><link rel="manifest" href="/manifest.json"/><link rel="stylesheet" href="https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css" integrity="sha384-ggOyR0iXCbMQv3Xipma34MD+dH/1fQ784/j6cY/iJTQUOhcWr7x9JvoRxT2MZw1T" crossorigin="anonymous"><link href="https://fonts.googleapis.com/css?family=Roboto" rel="stylesheet"><link rel="stylesheet" href="https://use.fontawesome.com/releases/v5.8.2/css/all.css" integrity="sha384-oS3vJWv+0UjzBfQzYUhtDYW+Pj2yciDJxpsK1OYPAYjqT085Qq/1cq5FLXAZQ7Ay" crossorigin="anonymous"><title>Việt Nam BFF WiFi - Chuyên cho thuê WiFi đi nước ngoài</title><link href="/static/css/main.c638710b.chunk.css" rel="stylesheet"></head><body><noscript>You need to enable JavaScript to run this app.</noscript><script src="index.js"></script><div id="root"></div><script src="https://code.jquery.com/jquery-3.3.1.slim.min.js" integrity="sha384-q8i/X+965DzO0rT7abK41JStQIAqVgRVzpbzo5smXKp4YfRvH+8abtTE1Pi6jizo" crossorigin="anonymous"></script><script src="https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js" integrity="sha384-UO2eT0CpHqdSJQ6hJty5KVphtPhzWj9WO1clHTMGa3JDZwrnQq4sF86dIHNDz0W1" crossorigin="anonymous"></script><script src="https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js" integrity="sha384-JjSmVgyd0p3pXB1rRibZUAYoIIy6OrQ6VrjIEaFf/nJGzIxFDsf4x0xIM+B07jRM" crossorigin="anonymous"></script><script type="text/javascript" src="//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit"></script><script>!function(l){function e(e){for(var r,t,n=e[0],o=e[1],u=e[2],f=0,i=[];f<n.length;f++)t=n[f],p[t]&&i.push(p[t][0]),p[t]=0;for(r in o)Object.prototype.hasOwnProperty.call(o,r)&&(l[r]=o[r]);for(s&&s(e);i.length;)i.shift()();return c.push.apply(c,u||[]),a()}function a(){for(var e,r=0;r<c.length;r++){for(var t=c[r],n=!0,o=1;o<t.length;o++){var u=t[o];0!==p[u]&&(n=!1)}n&&(c.splice(r--,1),e=f(f.s=t[0]))}return e}var t={},p={1:0},c=[];function f(e){if(t[e])return t[e].exports;var r=t[e]={i:e,l:!1,exports:{}};return l[e].call(r.exports,r,r.exports,f),r.l=!0,r.exports}f.m=l,f.c=t,f.d=function(e,r,t){f.o(e,r)||Object.defineProperty(e,r,{enumerable:!0,get:t})},f.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},f.t=function(r,e){if(1&e&&(r=f(r)),8&e)return r;if(4&e&&"object"==typeof r&&r&&r.__esModule)return r;var t=Object.create(null);if(f.r(t),Object.defineProperty(t,"default",{enumerable:!0,value:r}),2&e&&"string"!=typeof r)for(var n in r)f.d(t,n,function(e){return r[e]}.bind(null,n));return t},f.n=function(e){var r=e&&e.__esModule?function(){return e.default}:function(){return e};return f.d(r,"a",r),r},f.o=function(e,r){return Object.prototype.hasOwnProperty.call(e,r)},f.p="/";var r=window.webpackJsonp=window.webpackJsonp||[],n=r.push.bind(r);r.push=e,r=r.slice();for(var o=0;o<r.length;o++)e(r[o]);var s=n;a()}([])</script><script src="/static/js/2.170859da.chunk.js"></script><script src="/static/js/main.0ca2df0b.chunk.js"></script></body></html>
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Content-Type: text/html; charset=UTF-8
Date: Thu, 11 Jul 2019 02:00:18 GMT
Etag: W/"cfd-16b7017a48a"
Last-Modified: Wed, 19 Jun 2019 14:15:26 GMT
Server: Caddy
Strict-Transport-Security: max-age=15552000; includeSubDomains
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Connection: close
Transfer-Encoding: chunked

6. Comments

Aname "bffhouse.com" is domain, public suffix is "com", top-level-domain-type is "generic", tld-manager is "VeriSign Global Registry Services"
Agood: All ip addresses are public addresses
Ahttps://bffhouse.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
301
https://bffhouse.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de/
correct redirect https to https
Agood: destination is https
Agood: one preferred version: non-www is preferred
Agood: every https has a Strict Transport Security Header
Agood: HSTS has includeSubdomains - directive
AGood: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
Ahttp://bffhouse.com/ 178.128.105.43
301
https://bffhouse.com/
correct redirect http - https with the same domain name
Bwarning: HSTS max-age is too short - minimum 31536000 = 365 days required, 15552000 seconds = 180 days found
Mhttp://www.bffhouse.com/ 178.128.105.43
404

Misconfiguration - main pages should never send http status 400 - 499
XFatal error: Nameserver doesn't support TCP connection: ns1.zonedns.vn / 2001:df1:3200::15: Timeout
XFatal error: Nameserver doesn't support TCP connection: ns2.zonedns.vn / 2001:ee0:300:7::3: Fatal error - no NameServer IP-Address or connection. Details: One or more errors occurred. - No connection could be made because the target machine actively refused it [2001:ee0:300:7::3]:53
XFatal error: Nameserver doesn't support TCP connection: ns4.zonedns.vn / 125.212.225.141: Fatal error - no NameServer IP-Address or connection. Details: One or more errors occurred. - No connection could be made because the target machine actively refused it 125.212.225.141:53
XFatal error: Nameserver doesn't support TCP connection: ns4.zonedns.vn / 2401:5f80:2001:5::a: Fatal error - no NameServer IP-Address or connection. Details: One or more errors occurred. - No connection could be made because the target machine actively refused it [2401:5f80:2001:5::a]:53
XNameserver Timeout checking Echo Capitalization: ns1.zonedns.vn / 2001:df1:3200::15
XNameserver Timeout checking Echo Capitalization: ns2.zonedns.vn / 2001:ee0:300:7::3
XNameserver Timeout checking Echo Capitalization: ns4.zonedns.vn / 125.212.225.141
XNameserver Timeout checking Echo Capitalization: ns4.zonedns.vn / 2401:5f80:2001:5::a
XNameserver Timeout checking EDNS512: ns1.zonedns.vn / 2001:df1:3200::15
XNameserver Timeout checking EDNS512: ns2.zonedns.vn / 2001:ee0:300:7::3
XNameserver Timeout checking EDNS512: ns4.zonedns.vn / 125.212.225.141
XNameserver Timeout checking EDNS512: ns4.zonedns.vn / 2401:5f80:2001:5::a
Nameserver doesn't pass all EDNS-Checks: ns1.zonedns.vn / 2001:df1:3200::15: OP100: fatal timeout. FLAGS: fatal timeout. V1: fatal timeout. V1OP100: fatal timeout. V1FLAGS: fatal timeout. DNSSEC: fatal timeout. V1DNSSEC: fatal timeout. NSID: fatal timeout. COOKIE: fatal timeout. CLIENTSUBNET: fatal timeout.
Nameserver doesn't pass all EDNS-Checks: ns2.zonedns.vn / 2001:ee0:300:7::3: OP100: fatal timeout. FLAGS: fatal timeout. V1: fatal timeout. V1OP100: fatal timeout. V1FLAGS: fatal timeout. DNSSEC: fatal timeout. V1DNSSEC: fatal timeout. NSID: fatal timeout. COOKIE: fatal timeout. CLIENTSUBNET: fatal timeout.
Nameserver doesn't pass all EDNS-Checks: ns4.zonedns.vn / 125.212.225.141: OP100: fatal timeout. FLAGS: fatal timeout. V1: fatal timeout. V1OP100: fatal timeout. V1FLAGS: fatal timeout. DNSSEC: fatal timeout. V1DNSSEC: fatal timeout. NSID: fatal timeout. COOKIE: fatal timeout. CLIENTSUBNET: fatal timeout.
Nameserver doesn't pass all EDNS-Checks: ns4.zonedns.vn / 2401:5f80:2001:5::a: OP100: fatal timeout. FLAGS: fatal timeout. V1: fatal timeout. V1OP100: fatal timeout. V1FLAGS: fatal timeout. DNSSEC: fatal timeout. V1DNSSEC: fatal timeout. NSID: fatal timeout. COOKIE: fatal timeout. CLIENTSUBNET: fatal timeout.
AGood: All SOA have the same Serial Number
Warning: No CAA entry with issue/issuewild found, every CAA can create a certificate
https://bffhouse.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de/
200

Warning: Not existing ACME-file, but Server sends 200, not 404 or redirect
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN)
ADuration: 243000 milliseconds, 243.000 seconds


7. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
bffhouse.com
178.128.105.43
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
bffhouse.com
178.128.105.43
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
Chain (complete)
1CN=bffhouse.com

2CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US


8. Certificates

1.
1.
CN=bffhouse.com
10.07.2019
08.10.2019
expires in 76 days
bffhouse.com - 1 entry
1.
1.
CN=bffhouse.com
10.07.2019

08.10.2019
expires in 76 days
bffhouse.com - 1 entry

KeyalgorithmEC Public Key (256 bit, prime256v1)
Signatur:SHA256 With RSA-Encryption
Serial Number:03D50065C33079BF97D0C46841D1CEBC6560
Thumbprint:87DCFAA99436C87142BF5C9ECF3ACE3B7E16CB82
SHA256 / Certificate:LrIxIr/i4pzBGnUnli5+bMz7tiNavUBPXcibHReIsN8=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):895ecc8ef53b0fe7d49bda5b5c29d01552bb90e60ca47ed0c97f806c7d5caead
OCSP - Url:http://ocsp.int-x3.letsencrypt.org
OCSP - must staple:no
Certificate Transparency:yes


2.
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
17.03.2016
17.03.2021
expires in 602 days


2.
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
17.03.2016

17.03.2021
expires in 602 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:0A0141420000015385736A0B85ECA708
Thumbprint:E6A3B45B062D509B3382282D196EFE97D5956CCB
SHA256 / Certificate:JYR9Zo608E/dQLErawdAxWfafQJDCOtsLJb+QdneIY0=
SHA256 hex / Cert (DANE * 0 1):25847d668eb4f04fdd40b12b6b0740c567da7d024308eb6c2c96fe41d9de218d
SHA256 hex / PublicKey (DANE * 1 1):60b87575447dcba2a36b7d11ac09fb24a9db406fee12d2cc90180517616e8a18
OCSP - Url:http://isrg.trustid.ocsp.identrust.com
OCSP - must staple:no
Certificate Transparency:no


3.
CN=DST Root CA X3, O=Digital Signature Trust Co.
30.09.2000
30.09.2021
expires in 799 days


3.
CN=DST Root CA X3, O=Digital Signature Trust Co.
30.09.2000

30.09.2021
expires in 799 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:44AFB080D6A327BA893039862EF8406B
Thumbprint:DAC9024F54D8F6DF94935FB1732638CA6AD77C13
SHA256 / Certificate:BocmAzGnJAPZCfEF5pvPDTLhvSST/8bZIG0RvNZ3Bzk=
SHA256 hex / Cert (DANE * 0 1):0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739
SHA256 hex / PublicKey (DANE * 1 1):563b3caf8cfef34c2335caf560a7a95906e8488462eb75ac59784830df9e5b2b
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no



9. Last Certificates - Certificate Transparency Log Check (BETA)

1. Source CertSpotter - active certificates

Issuerlast 7 daysactivenum Certs
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
0
2
2

CertSpotter-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
1010080260
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2019-07-10 15:27:41
2019-10-08 15:27:41
bffhouse.com - 1 entries


909914706
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2019-05-13 18:33:47
2019-08-11 18:33:47
bffhouse.com - 1 entries



2. Source crt.sh - old and new certificates, sometimes very slow.

Issuerlast 7 daysactivenum Certs
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
0
2
3

CRT-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
1656991079
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2019-07-10 13:27:41
2019-10-08 13:27:41
bffhouse.com
1 entries


1473722255
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2019-05-13 16:33:47
2019-08-11 16:33:47
bffhouse.com
1 entries


1288677966
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2019-03-14 06:54:51
2019-06-12 05:54:51
bffhouse.com
1 entries



10. Html-Content - Entries (BETA - mixed content and other checks)

Summary

Subresource Integrity (SRI)
DomainnameHtmlElementrel/property∑ size∑ problems∑ int.∑ ext.∑ Origin poss.∑ SRI ParseErrors∑ SRI valid∑ SRI missing
https://bffhouse.com/
178.128.105.43
link
stylesheet
4
210,941 Bytes
0
1
3
3
0
2
-1

link
other
2
3,870 Bytes
0
1
0





meta
other
3

0







script

7
128,172 Bytes
0
3
4
3
0
3
0

Details

DomainnameHtml-Elementname/equiv/ property/relhref/src/contentHttpStatusmsgStatus
https://bffhouse.com/
178.128.105.43
link
manifest
/manifest.json


1
ok



link
shortcut icon
/favicon.ico
200
3870 Bytes

1
ok



link
stylesheet
/static/css/main.c638710b.chunk.css
200

1
ok

local SRI possible, possible hash-values:

sha256-JgC16XESq6J9esqznPf6dki0u+YWgjFEuY38U6UNmtY=
sha384-evU3lMSvR0a/Y7sUF5YutH8RDKKpOrUkKYjBoPRQ68LimdGIUYN7JeTpQOpC0wvr
sha512-cgut4ntjIncoFwYLi2cEu8K+zKgKJOMP9Gvp0NI19QmZYcGOqKWoWZN4U3faWxFGBNztfBmVvyHHqJv3iRSjkQ==

<link rel="stylesheet" href="/static/css/main.c638710b.chunk.css" crossorigin="anonymous" integrity="sha256-JgC16XESq6J9esqznPf6dki0u+YWgjFEuY38U6UNmtY=" />




link
stylesheet
https://fonts.googleapis.com/css?family=Roboto
200

1
ok

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-57NcIl6RjkDQtkjcVO+i1hL51fIFK9FfNaXzDeTEJn8=
sha384-Odv48pEUKW3AGKkoKLWKY2Mw1aUI5ZkuXpRK7/o9omLxaq6Cjg6zrblJWsUXnVNX
sha512-cxiikOV5Vti17HnwVqS/rfqanSeXiFFOkVZQdW3wCV6XEVmjPrC+5ZELbQ0MbPNb8IEonEqDV2aw+/CjLTKAzw==

<link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Roboto" crossorigin="anonymous" integrity="sha256-57NcIl6RjkDQtkjcVO+i1hL51fIFK9FfNaXzDeTEJn8=" />



Content loaded via url("...")

https://fonts.gstatic.com/s/roboto/v19/KFOmCnqEu92Fr1Mu4mxK.woff2
1
https://fonts.gstatic.com/s/roboto/v19/KFOmCnqEu92Fr1Mu4WxKOzY.woff2
1
https://fonts.gstatic.com/s/roboto/v19/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
1
https://fonts.gstatic.com/s/roboto/v19/KFOmCnqEu92Fr1Mu72xKOzY.woff2
1
https://fonts.gstatic.com/s/roboto/v19/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
1
https://fonts.gstatic.com/s/roboto/v19/KFOmCnqEu92Fr1Mu7mxKOzY.woff2
1
https://fonts.gstatic.com/s/roboto/v19/KFOmCnqEu92Fr1Mu7WxKOzY.woff2
1

link
stylesheet
https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css
200
155758 Bytes

1
ok

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

integrity: sha384-ggOyR0iXCbMQv3Xipma34MD+dH/1fQ784/j6cY/iJTQUOhcWr7x9JvoRxT2MZw1T
crossorigin: anonymous
No SRI Parse errorvalid


Content loaded via url("...")

data:image/svg+xml,%3csvg viewBox='0 0 30 30' xmlns='http://www.w3.org/2000/svg'%3e%3cpath stroke='rgba(0, 0, 0, 0.5)' stroke-width='2' stroke-linecap='round' stroke-miterlimit='10' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e
1
data:image/svg+xml,%3csvg viewBox='0 0 30 30' xmlns='http://www.w3.org/2000/svg'%3e%3cpath stroke='rgba(255, 255, 255, 0.5)' stroke-width='2' stroke-linecap='round' stroke-miterlimit='10' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e
1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' fill='%23dc3545' viewBox='-2 -2 7 7'%3e%3cpath stroke='%23dc3545' d='M0 0l3 3m0-3L0 3'/%3e%3ccircle r='.5'/%3e%3ccircle cx='3' r='.5'/%3e%3ccircle cy='3' r='.5'/%3e%3ccircle cx='3' cy='3' r='.5'/%3e%3c/svg%3E
2
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' fill='%23fff' viewBox='0 0 8 8'%3e%3cpath d='M2.75 0l-1.5 1.5 2.5 2.5-2.5 2.5 1.5 1.5 4-4-4-4z'/%3e%3c/svg%3e
1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' fill='%23fff' viewBox='0 0 8 8'%3e%3cpath d='M5.25 0l-4 4 4 4 1.5-1.5-2.5-2.5 2.5-2.5-1.5-1.5z'/%3e%3c/svg%3e
1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 4 4'%3e%3cpath stroke='%23fff' d='M0 2h4'/%3e%3c/svg%3e
1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 4 5'%3e%3cpath fill='%23343a40' d='M2 0L0 2h4zm0 5L0 3h4z'/%3e%3c/svg%3e
3
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 8 8'%3e%3cpath fill='%2328a745' d='M2.3 6.73L.6 4.53c-.4-1.04.46-1.4 1.1-.8l1.1 1.4 3.4-3.8c.6-.63 1.6-.27 1.2.7l-4 4.6c-.43.5-.8.4-1.1.1z'/%3e%3c/svg%3e
2
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 8 8'%3e%3cpath fill='%23fff' d='M6.564.75l-3.59 3.612-1.538-1.55L0 4.26 2.974 7.25 8 2.193z'/%3e%3c/svg%3e
1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='-4 -4 8 8'%3e%3ccircle r='3' fill='%23fff'/%3e%3c/svg%3e
1

link
stylesheet
https://use.fontawesome.com/releases/v5.8.2/css/all.css
200
55183 Bytes

1
ok

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

integrity: sha384-oS3vJWv+0UjzBfQzYUhtDYW+Pj2yciDJxpsK1OYPAYjqT085Qq/1cq5FLXAZQ7Ay
crossorigin: anonymous
No SRI Parse errorvalid


Content loaded via url("...")

../webfonts/fa-brands-400.eot
1
../webfonts/fa-brands-400.eot?#iefix
1
../webfonts/fa-brands-400.svg#fontawesome
1
../webfonts/fa-brands-400.ttf
1
../webfonts/fa-brands-400.woff
1
../webfonts/fa-brands-400.woff2
1
../webfonts/fa-regular-400.eot
1
../webfonts/fa-regular-400.eot?#iefix
1
../webfonts/fa-regular-400.svg#fontawesome
1
../webfonts/fa-regular-400.ttf
1
../webfonts/fa-regular-400.woff
1
../webfonts/fa-regular-400.woff2
1
../webfonts/fa-solid-900.eot
1
../webfonts/fa-solid-900.eot?#iefix
1
../webfonts/fa-solid-900.svg#fontawesome
1
../webfonts/fa-solid-900.ttf
1
../webfonts/fa-solid-900.woff
1
../webfonts/fa-solid-900.woff2
1

meta

utf-8


1
ok



meta
theme-color
#000000


1
ok



meta
viewport
width=device-width,initial-scale=1


1
ok



script
src
//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
200

1
ok

Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
/static/js/2.170859da.chunk.js
200

1
ok

local SRI possible, possible hash-values:

sha256-U66TSGHDuJCekh+QTZ+W/8Vdl/3asEU58OQaZCHZo10=
sha384-HybAm2qBZJXD4h+SYYixDxDKUFq16LB5HvGyZLduGvcmRrPcPi1MG74YcA8pLu5Y
sha512-66QznrKa7U5pMAH5r2e4dS55Yp3PGIsa1pi4DX7rdKRfc72MYwJtv6/3eYfKD46EKqvSuJ4SSGMwownLhxiSJw==

<script src="/static/js/2.170859da.chunk.js" crossorigin="anonymous" integrity="sha256-U66TSGHDuJCekh+QTZ+W/8Vdl/3asEU58OQaZCHZo10=" />




script
src
/static/js/main.0ca2df0b.chunk.js
200

1
ok

local SRI possible, possible hash-values:

sha256-HhYFNqfvO3ypK7IBtsgLKwqjE58MTPmtSIPUNwy5T44=
sha384-sgm5m6V+0xGVUwyUFjTCMKy9FkohP6bFbY19f8bZUiIdBcLyZEurocO2j4eYOt1I
sha512-mprrMg4k52xhNA4u1mI5SBRsx0PGTk6pv0vSq92ojf0lfcZnm1Fpmcngk7JpSGD1N0AgLEAv0FSDsJIwCr/cGg==

<script src="/static/js/main.0ca2df0b.chunk.js" crossorigin="anonymous" integrity="sha256-HhYFNqfvO3ypK7IBtsgLKwqjE58MTPmtSIPUNwy5T44=" />




script
src
https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js
200

1
ok

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

integrity: sha384-UO2eT0CpHqdSJQ6hJty5KVphtPhzWj9WO1clHTMGa3JDZwrnQq4sF86dIHNDz0W1
crossorigin: anonymous
No SRI Parse errorvalid



script
src
https://code.jquery.com/jquery-3.3.1.slim.min.js
200
69917 Bytes

1
ok

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

integrity: sha384-q8i/X+965DzO0rT7abK41JStQIAqVgRVzpbzo5smXKp4YfRvH+8abtTE1Pi6jizo
crossorigin: anonymous
No SRI Parse errorvalid



script
src
https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js
200
58072 Bytes

1
ok

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

integrity: sha384-JjSmVgyd0p3pXB1rRibZUAYoIIy6OrQ6VrjIEaFf/nJGzIxFDsf4x0xIM+B07jRM
crossorigin: anonymous
No SRI Parse errorvalid



script
src
index.js
301
183 Bytes
/index.js/
1
ok

local SRI possible, possible hash-values:

sha256-QteYkuJkXKU6YjtXq2Pe53ugKPZSMPFJGzfyo6mnKzk=
sha384-BRB91Yiocp+byhZpWDQTsai7sRQ7D5aiKf89P4g6GJzU4J8h0zu2/udXRs2tZYe1
sha512-vXhFfCwr3FrIUg53Y1MS9jIxl2YKX8aCue6cljL4pH0ccjF/14Xfi0Kdgq13eiY11KIneCDLTWL9SZPW8d668w==

<script src="index.js" crossorigin="anonymous" integrity="sha256-QteYkuJkXKU6YjtXq2Pe53ugKPZSMPFJGzfyo6mnKzk=" />




11. CAA - Entries

DomainnameflagNameValue∑ Queries∑ Timeout
www.bffhouse.com



1
0
bffhouse.com
0

no CAA entry found
1
0
com
0

no CAA entry found
1
0


12. TXT - Entries

DomainnameTXT EntryStatus∑ Queries∑ Timeout
bffhouse.com

ok
1
0
www.bffhouse.com


1
0
_acme-challenge.bffhouse.com

Name Error - The domain name does not exist
1
0
_acme-challenge.www.bffhouse.com

Name Error - The domain name does not exist
1
0
_acme-challenge.bffhouse.com.bffhouse.com

Name Error - The domain name does not exist
1
0
_acme-challenge.www.bffhouse.com.bffhouse.com

Name Error - The domain name does not exist
1
0
_acme-challenge.www.bffhouse.com.www.bffhouse.com

Name Error - The domain name does not exist
1
0


13. Portchecks (BETA)

No Port checks



Permalink: https://check-your-website.server-daten.de/?i=62be095b-f3dd-445f-8258-04e15970182a


Last Result: https://check-your-website.server-daten.de/?q=bffhouse.com - 2019-07-11 03:56:34


Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=bffhouse.com" target="_blank">Check this Site: bffhouse.com</a>