Check DNS, Urls + Redirects, Certificates and Content of your Website

...

skip EDNS-Check

skip Content-Check

check links

Timeout

Checked:
03.03.2026 15:48:21

Older results

No older results found

1. IP-Addresses

Host	Type	IP-Address	is auth.	∑ Queries	∑ Timeout
bsky.app	A	3.22.13.195 Dublin/Ohio/United States (US) - Amazon.com, Inc. Hostname: ec2-3-22-13-195.us-east-2.compute.amazonaws.com	yes	1	0
	A	3.136.170.194 Dublin/Ohio/United States (US) - Amazon.com, Inc. Hostname: ec2-3-136-170-194.us-east-2.compute.amazonaws.com	yes	1	0
	A	16.58.183.196 Dublin/Ohio/United States (US) - Amazon.com, Inc. Hostname: ec2-16-58-183-196.us-east-2.compute.amazonaws.com	yes	1	0
	AAAA		yes
www.bsky.app		Name Error	yes	1	0
*.bsky.app	A	Name Error	yes
	AAAA	Name Error	yes
	AAAA	Name Error	yes
	CNAME	Name Error	yes

2. DNSSEC

Zone (*)	DNSSEC - Informations

Zone: (root)
(root)	1 DS RR published


	DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=


	• Status: Valid because published


	3 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 21831, Flags 256


	Public Key with Algorithm 8, KeyTag 38696, Flags 257 (SEP = Secure Entry Point)


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 23.03.2026, 00:00:00 +, Signature-Inception: 02.03.2026, 00:00:00 +, KeyTag 20326, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: app
app	1 DS RR in the parent zone found


	DS with Algorithm 8, KeyTag 23684, DigestType 2 and Digest OlzIox4CyUq6ZGGRL6u36fXjSVe7YRSlWoZNlq7DGDY=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner app., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 16.03.2026, 05:00:00 +, Signature-Inception: 03.03.2026, 04:00:00 +, KeyTag 21831, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 21831 used to validate the DS RRSet in the parent zone


	2 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 23684, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 45106, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner app., Algorithm: 8, 1 Labels, original TTL: 300 sec, Signature-expiration: 21.03.2026, 13:47:53 +, Signature-Inception: 27.02.2026, 13:47:53 +, KeyTag 23684, Signer-Name: app


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 23684 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 23684, DigestType 2 and Digest "OlzIox4CyUq6ZGGRL6u36fXjSVe7YRSlWoZNlq7DGDY=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: bsky.app
bsky.app	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "u4l9v8tffunovfg041hij187v73sagbe" between the hashed NSEC3-owner "u4l9v8tffunovfg041hij187v73sagbe" and the hashed NextOwner "u4lc4ah25asom9mo5d2de7ik70d6lbmh". So the parent zone confirmes the not-existence of a DS RR. Bitmap: No Bitmap? Validated: RRSIG-Owner u4l9v8tffunovfg041hij187v73sagbe.app., Algorithm: 8, 2 Labels, original TTL: 900 sec, Signature-expiration: 21.03.2026, 13:47:53 +, Signature-Inception: 27.02.2026, 13:47:53 +, KeyTag 45106, Signer-Name: app


	0 DNSKEY RR found




Zone: www.bsky.app
www.bsky.app	0 DS RR in the parent zone found

3. Name Servers

Domain	Nameserver	NS-IP
www.bsky.app	• ns-2001.awsdns-58.co.uk
bsky.app	• ns-1425.awsdns-50.org / 0fa4a3e1b45f5f12db37dd2ef68d50e5 -	205.251.197.145 Herndon/Virginia/United States (US) - Amazon.com	•
	•	2600:9000:5305:9100::1 Chicago/Illinois/United States (US) - Amazon.com, Inc.	•
	• ns-2001.awsdns-58.co.uk / 562755093988256af8b35ca10fcabfa8 -	205.251.199.209 Ashburn/Virginia/United States (US) - Amazon.com	•
	•	2600:9000:5307:d100::1 Seattle/Washington/United States (US) - Amazon.com, Inc.	•
	• ns-372.awsdns-46.com / 66c199fd4824b5eb23c90234ab51c4c8 -	205.251.193.116 Ashburn/Virginia/United States (US) - Amazon.com	•
	•	2600:9000:5301:7400::1 Seattle/Washington/United States (US) - Amazon.com, Inc.	•
	• ns-757.awsdns-30.net / 8510ce6914ba48e647b3e7a6910088bd -	205.251.194.245 San Jose/California/United States (US) - Amazon.com	•
	•	2600:9000:5302:f500::1 Seattle/Washington/United States (US) - Amazon.com, Inc.	•
app	• ns-tld1.charlestonroadregistry.com		•
	• ns-tld2.charlestonroadregistry.com		•
	• ns-tld3.charlestonroadregistry.com		•
	• ns-tld4.charlestonroadregistry.com		•
	• ns-tld5.charlestonroadregistry.com		•

4. SOA-Entries

Domain:	app
Zone-Name:	app
Primary:	ns-tld1.charlestonroadregistry.com
Mail:	cloud-dns-hostmaster.google.com
Serial:	101427
Refresh:	21600
Retry:	3600
Expire:	259200
TTL:	900
num Entries:	5

Domain:	bsky.app
Zone-Name:	bsky.app
Primary:	ns-2001.awsdns-58.co.uk
Mail:	awsdns-hostmaster.amazon.com
Serial:	1
Refresh:	7200
Retry:	900
Expire:	1209600
TTL:	86400
num Entries:	8

Domain:	www.bsky.app
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:	1

5. Screenshots

Startaddress: https://bsky.app/, address used: https://bsky.app/, Screenshot created 2026-03-03 15:56:04 +00:0

Mobil (412px x 732px)

888 milliseconds

Mobil + Landscape (732px x 412px)

877 milliseconds

Screenshot mobile landscape - https://bsky.app/

Screen (1280px x 1680px)

816 milliseconds

Mobile- and other Chrome-Checks

	width	height
visual Viewport	397	732
content Size	397	17769

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

6. Url-Checks

show header:

Domainname	Http-Status	redirect	Sec.	G
• http://bsky.app/ 3.22.13.195	-14		10.046	T
Timeout - The operation has timed out.

• http://bsky.app/ 3.136.170.194	403	Html is minified: 111.32 %	0.406	M
Forbidden
Server: awselb/2.0
Date: Tue, 03 Mar 2026 14:49:25 GMT
Connection: keep-alive
Content-Type: text/html
Content-Length: 118

• http://bsky.app/ 16.58.183.196	403	Html is minified: 111.32 %	1.030	M
Forbidden
Server: awselb/2.0
Date: Tue, 03 Mar 2026 14:49:24 GMT
Connection: keep-alive
Content-Type: text/html
Content-Length: 118

• https://bsky.app/ 3.22.13.195 gzip used - 2749 / 6945 - 60.42 % Inline-JavaScript (∑/total): 1/137 Inline-CSS (∑/total): 1/3057	200	Html is minified: 196.58 % Other inline scripts (∑/total): 0/0	5.810	B
Date: Tue, 03 Mar 2026 14:50:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: AWSALB=1W0LdSi7d+40gd6Q/AQrLcBMsNPZAlOK4ShrLl8BElHWO2BaNDbl0TvYot3NbbNJITHH1cZ+11pxcahRGDbR38EmP5jIHvQWP0GLbwtFc6zUdMFlxShkZBegK/oc; Expires=Tue, 10 Mar 2026 14:50:16 GMT; Path=/,AWSALBCORS=1W0LdSi7d+40gd6Q/AQrLcBMsNPZAlOK4ShrLl8BElHWO2BaNDbl0TvYot3NbbNJITHH1cZ+11pxcahRGDbR38EmP5jIHvQWP0GLbwtFc6zUdMFlxShkZBegK/oc; Expires=Tue, 10 Mar 2026 14:50:16 GMT; Path=/; SameSite=None; Secure
Strict-Transport-Security: max-age=31536000; includeSubdomains
Vary: Accept-Encoding,Origin
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Content-Length: 2749

• https://bsky.app/ 3.136.170.194 gzip used - 2749 / 6945 - 60.42 % Inline-JavaScript (∑/total): 1/137 Inline-CSS (∑/total): 1/3057	200	Html is minified: 196.58 % Other inline scripts (∑/total): 0/0	19.090	B
Date: Tue, 03 Mar 2026 14:49:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: AWSALB=+cHQFdUveFEZ/G3sPbV0PfQ2DPlXDtyGECC2Z0B5lih9k8BqWJFhzlmpFCsKVMB+WN7itaR8OxYzYX01XUBvo4fQNV6XbRztdn33UjuEkC/xVJucBZFkmkI59F0g; Expires=Tue, 10 Mar 2026 14:49:56 GMT; Path=/,AWSALBCORS=+cHQFdUveFEZ/G3sPbV0PfQ2DPlXDtyGECC2Z0B5lih9k8BqWJFhzlmpFCsKVMB+WN7itaR8OxYzYX01XUBvo4fQNV6XbRztdn33UjuEkC/xVJucBZFkmkI59F0g; Expires=Tue, 10 Mar 2026 14:49:56 GMT; Path=/; SameSite=None; Secure
Strict-Transport-Security: max-age=31536000; includeSubdomains
Vary: Accept-Encoding,Origin
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Content-Length: 2749

• https://bsky.app/ 16.58.183.196 gzip used - 2749 / 6945 - 60.42 % Inline-JavaScript (∑/total): 1/137 Inline-CSS (∑/total): 1/3057	200	Html is minified: 196.58 % Other inline scripts (∑/total): 0/0	18.220	B
Date: Tue, 03 Mar 2026 14:49:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: AWSALB=4axNk4p0WSpiPIF8XtCTNxpTRRFgXh0Rqq9wlq2HFzxJgJJtq8vT3biUtDZoF7E/megwumCz4TrizrI7t0CtvELPa6bQ/TaW7fvGLgJ2QsBS3rJiiNfgDjg5heM3; Expires=Tue, 10 Mar 2026 14:49:36 GMT; Path=/,AWSALBCORS=4axNk4p0WSpiPIF8XtCTNxpTRRFgXh0Rqq9wlq2HFzxJgJJtq8vT3biUtDZoF7E/megwumCz4TrizrI7t0CtvELPa6bQ/TaW7fvGLgJ2QsBS3rJiiNfgDjg5heM3; Expires=Tue, 10 Mar 2026 14:49:36 GMT; Path=/; SameSite=None; Secure
Strict-Transport-Security: max-age=31536000; includeSubdomains
Vary: Accept-Encoding,Origin
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Content-Length: 2749

• http://bsky.app/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 3.22.13.195 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	403	Html is minified: 111.32 % Other inline scripts (∑/total): 0/0	0.330	M
Forbidden
Visible Content:
Server: awselb/2.0
Date: Tue, 03 Mar 2026 14:50:23 GMT
Connection: keep-alive
Content-Type: text/html
Content-Length: 118

• http://bsky.app/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 3.136.170.194 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	403	Html is minified: 111.32 % Other inline scripts (∑/total): 0/0	0.170	M
Forbidden
Visible Content:
Server: awselb/2.0
Date: Tue, 03 Mar 2026 14:50:23 GMT
Connection: keep-alive
Content-Type: text/html
Content-Length: 118

• http://bsky.app/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 16.58.183.196 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	403	Html is minified: 111.32 % Other inline scripts (∑/total): 0/0	0.170	M
Forbidden
Visible Content:
Server: awselb/2.0
Date: Tue, 03 Mar 2026 14:50:23 GMT
Connection: keep-alive
Content-Type: text/html
Content-Length: 118

• https://3.22.13.195/ 3.22.13.195 gzip used - 2749 / 6945 - 60.42 % Inline-JavaScript (∑/total): 1/137 Inline-CSS (∑/total): 1/3057	200	Html is minified: 196.58 % Other inline scripts (∑/total): 0/0	5.844	N
Certificate error: RemoteCertificateNameMismatch
Date: Tue, 03 Mar 2026 14:50:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: AWSALB=bU/+tBcLOAeMu0wQfhfhXTJr16+lJnneUJBNcloSbl9BVFtYSq1BZ/ek+mFDkNHEuOyzYBL1hMF/uDZmvxgCZuDqeiYbVYdENnxteOcjp5fEIy5yuYtAJ/zLSujR; Expires=Tue, 10 Mar 2026 14:50:39 GMT; Path=/,AWSALBCORS=bU/+tBcLOAeMu0wQfhfhXTJr16+lJnneUJBNcloSbl9BVFtYSq1BZ/ek+mFDkNHEuOyzYBL1hMF/uDZmvxgCZuDqeiYbVYdENnxteOcjp5fEIy5yuYtAJ/zLSujR; Expires=Tue, 10 Mar 2026 14:50:39 GMT; Path=/; SameSite=None; Secure
Strict-Transport-Security: max-age=31536000; includeSubdomains
Vary: Accept-Encoding,Origin
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Content-Length: 2749

• https://3.136.170.194/ 3.136.170.194 gzip used - 2749 / 6945 - 60.42 % Inline-JavaScript (∑/total): 1/137 Inline-CSS (∑/total): 1/3057	200	Html is minified: 196.58 % Other inline scripts (∑/total): 0/0	5.827	N
Certificate error: RemoteCertificateNameMismatch
Date: Tue, 03 Mar 2026 14:50:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: AWSALB=KEp56+4zRkn7avtyvhmoMSd6SwmpZiJnRg766UuEia0UM8rYdz24I3e4Eow0c78eIeqqDN6aH4I0QPfPb2DUDF8C9K+dTIAXQIDxD7S/GxNm6awKwezyayowrG5q; Expires=Tue, 10 Mar 2026 14:50:32 GMT; Path=/,AWSALBCORS=KEp56+4zRkn7avtyvhmoMSd6SwmpZiJnRg766UuEia0UM8rYdz24I3e4Eow0c78eIeqqDN6aH4I0QPfPb2DUDF8C9K+dTIAXQIDxD7S/GxNm6awKwezyayowrG5q; Expires=Tue, 10 Mar 2026 14:50:32 GMT; Path=/; SameSite=None; Secure
Strict-Transport-Security: max-age=31536000; includeSubdomains
Vary: Accept-Encoding,Origin
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Content-Length: 2749

• https://16.58.183.196/ 16.58.183.196 gzip used - 2749 / 6945 - 60.42 % Inline-JavaScript (∑/total): 1/137 Inline-CSS (∑/total): 1/3057	200	Html is minified: 196.58 % Other inline scripts (∑/total): 0/0	5.860	N
Certificate error: RemoteCertificateNameMismatch
Date: Tue, 03 Mar 2026 14:50:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: AWSALB=1tpq4KS5d0hGQeqOK95WWfUxAIIX+g+pJ9RmhZYN1pL87RVW0ohoJZ3KOsm1D1eInlXjgEaiAXVXJW8lwLWq6VbxY2sqbp+cngGRgvAXvhTOj3zARt63TXkiP/1V; Expires=Tue, 10 Mar 2026 14:50:24 GMT; Path=/,AWSALBCORS=1tpq4KS5d0hGQeqOK95WWfUxAIIX+g+pJ9RmhZYN1pL87RVW0ohoJZ3KOsm1D1eInlXjgEaiAXVXJW8lwLWq6VbxY2sqbp+cngGRgvAXvhTOj3zARt63TXkiP/1V; Expires=Tue, 10 Mar 2026 14:50:24 GMT; Path=/; SameSite=None; Secure
Strict-Transport-Security: max-age=31536000; includeSubdomains
Vary: Accept-Encoding,Origin
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Content-Length: 2749

7. Comments

	1. General Results, most used to calculate the result
A	name "bsky.app" is domain, public suffix is ".app", top-level-domain is ".app", top-level-domain-type is "generic", tld-manager is "Charleston Road Registry Inc.", num .app-domains preloaded: 47 (complete: 276475)
A	Good: All ip addresses are public addresses
A	Good: Minimal 2 ip addresses per domain name found: bsky.app has 3 different ip addresses (authoritative).
	Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: bsky.app has no ipv6 address.
A	Good: No asked Authoritative Name Server had a timeout
A	DNS: "Name Error" means: No www-dns-entry defined. This isn't a problem
A	Good: destination is https
A	Good - only one version with Http-Status 200
A	Good: one preferred version: non-www is preferred
A	Good: No cookie sent via http.
A	Good: every https has a Strict Transport Security Header
A	Good: HSTS max-age is long enough, 31536000 seconds = 365 days
A	Good: HSTS has includeSubdomains - directive
A	Excellent: Domain is in the Google-Preload-List
A	Excellent: Domain is in the Mozilla/Firefox-Preload-List
A	HSTS-Preload-Status: Preloaded. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
A	Good: Some urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset):6 complete Content-Type - header (11 urls)
	http://bsky.app/ 3.136.170.194			Url with incomplete Content-Type - header - missing charset
	http://bsky.app/ 16.58.183.196			Url with incomplete Content-Type - header - missing charset
	http://bsky.app/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 3.22.13.195			Url with incomplete Content-Type - header - missing charset
	http://bsky.app/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 3.136.170.194			Url with incomplete Content-Type - header - missing charset
	http://bsky.app/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 16.58.183.196			Url with incomplete Content-Type - header - missing charset
B	https://bsky.app/ 3.22.13.195	200	AWSALB=1W0LdSi7d+40gd6Q/AQrLcBMsNPZAlOK4ShrLl8BElHWO2BaNDbl0TvYot3NbbNJITHH1cZ+11pxcahRGDbR38EmP5jIHvQWP0GLbwtFc6zUdMFlxShkZBegK/oc; Expires=Tue, 10 Mar 2026 14:50:16 GMT; Path=/	Cookie sent via https, but not marked as secure
B	https://bsky.app/ 3.136.170.194	200	AWSALB=+cHQFdUveFEZ/G3sPbV0PfQ2DPlXDtyGECC2Z0B5lih9k8BqWJFhzlmpFCsKVMB+WN7itaR8OxYzYX01XUBvo4fQNV6XbRztdn33UjuEkC/xVJucBZFkmkI59F0g; Expires=Tue, 10 Mar 2026 14:49:56 GMT; Path=/	Cookie sent via https, but not marked as secure
B	https://bsky.app/ 16.58.183.196	200	AWSALB=4axNk4p0WSpiPIF8XtCTNxpTRRFgXh0Rqq9wlq2HFzxJgJJtq8vT3biUtDZoF7E/megwumCz4TrizrI7t0CtvELPa6bQ/TaW7fvGLgJ2QsBS3rJiiNfgDjg5heM3; Expires=Tue, 10 Mar 2026 14:49:36 GMT; Path=/	Cookie sent via https, but not marked as secure
B	https://3.22.13.195/ 3.22.13.195	200	AWSALB=bU/+tBcLOAeMu0wQfhfhXTJr16+lJnneUJBNcloSbl9BVFtYSq1BZ/ek+mFDkNHEuOyzYBL1hMF/uDZmvxgCZuDqeiYbVYdENnxteOcjp5fEIy5yuYtAJ/zLSujR; Expires=Tue, 10 Mar 2026 14:50:39 GMT; Path=/	Cookie sent via https, but not marked as secure
B	https://3.136.170.194/ 3.136.170.194	200	AWSALB=KEp56+4zRkn7avtyvhmoMSd6SwmpZiJnRg766UuEia0UM8rYdz24I3e4Eow0c78eIeqqDN6aH4I0QPfPb2DUDF8C9K+dTIAXQIDxD7S/GxNm6awKwezyayowrG5q; Expires=Tue, 10 Mar 2026 14:50:32 GMT; Path=/	Cookie sent via https, but not marked as secure
B	https://16.58.183.196/ 16.58.183.196	200	AWSALB=1tpq4KS5d0hGQeqOK95WWfUxAIIX+g+pJ9RmhZYN1pL87RVW0ohoJZ3KOsm1D1eInlXjgEaiAXVXJW8lwLWq6VbxY2sqbp+cngGRgvAXvhTOj3zARt63TXkiP/1V; Expires=Tue, 10 Mar 2026 14:50:24 GMT; Path=/	Cookie sent via https, but not marked as secure
B	https://bsky.app/ 3.22.13.195	200	AWSALB=1W0LdSi7d+40gd6Q/AQrLcBMsNPZAlOK4ShrLl8BElHWO2BaNDbl0TvYot3NbbNJITHH1cZ+11pxcahRGDbR38EmP5jIHvQWP0GLbwtFc6zUdMFlxShkZBegK/oc; Expires=Tue, 10 Mar 2026 14:50:16 GMT; Path=/	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://bsky.app/ 3.136.170.194	200	AWSALB=+cHQFdUveFEZ/G3sPbV0PfQ2DPlXDtyGECC2Z0B5lih9k8BqWJFhzlmpFCsKVMB+WN7itaR8OxYzYX01XUBvo4fQNV6XbRztdn33UjuEkC/xVJucBZFkmkI59F0g; Expires=Tue, 10 Mar 2026 14:49:56 GMT; Path=/	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://bsky.app/ 16.58.183.196	200	AWSALB=4axNk4p0WSpiPIF8XtCTNxpTRRFgXh0Rqq9wlq2HFzxJgJJtq8vT3biUtDZoF7E/megwumCz4TrizrI7t0CtvELPa6bQ/TaW7fvGLgJ2QsBS3rJiiNfgDjg5heM3; Expires=Tue, 10 Mar 2026 14:49:36 GMT; Path=/	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://3.22.13.195/ 3.22.13.195	200	AWSALB=bU/+tBcLOAeMu0wQfhfhXTJr16+lJnneUJBNcloSbl9BVFtYSq1BZ/ek+mFDkNHEuOyzYBL1hMF/uDZmvxgCZuDqeiYbVYdENnxteOcjp5fEIy5yuYtAJ/zLSujR; Expires=Tue, 10 Mar 2026 14:50:39 GMT; Path=/	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://3.136.170.194/ 3.136.170.194	200	AWSALB=KEp56+4zRkn7avtyvhmoMSd6SwmpZiJnRg766UuEia0UM8rYdz24I3e4Eow0c78eIeqqDN6aH4I0QPfPb2DUDF8C9K+dTIAXQIDxD7S/GxNm6awKwezyayowrG5q; Expires=Tue, 10 Mar 2026 14:50:32 GMT; Path=/	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://16.58.183.196/ 16.58.183.196	200	AWSALB=1tpq4KS5d0hGQeqOK95WWfUxAIIX+g+pJ9RmhZYN1pL87RVW0ohoJZ3KOsm1D1eInlXjgEaiAXVXJW8lwLWq6VbxY2sqbp+cngGRgvAXvhTOj3zARt63TXkiP/1V; Expires=Tue, 10 Mar 2026 14:50:24 GMT; Path=/	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
K	http://bsky.app/ 16.58.183.196, Status 403		http://bsky.app/ 3.22.13.195, Status -14	Configuration problem - different ip addresses with different status
K	http://bsky.app/ 3.136.170.194, Status 403		http://bsky.app/ 3.22.13.195, Status -14	Configuration problem - different ip addresses with different status
M	http://bsky.app/ 3.136.170.194	403		Misconfiguration - main pages should never send http status 400 - 499
M	http://bsky.app/ 16.58.183.196	403		Misconfiguration - main pages should never send http status 400 - 499
N	https://3.22.13.195/ 3.22.13.195	200		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://3.136.170.194/ 3.136.170.194	200		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://16.58.183.196/ 16.58.183.196	200		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
A	Good: More then one ip address per domain name found, checking all ip addresses the same http status and the same certificate found: Domain bsky.app, 3 ip addresses.
	Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are the same. So that domain doesn't require Server Name Indication (SNI), it's the primary certificate of that set of ip addresses.: Domain bsky.app, 3 ip addresses, 1 different http results.
B	No _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Read the result of server-daten.de (Url-Checks, Comments, Connections and DomainServiceRecords) to see a complete definition. Domainname: _mta-sts.bsky.app
	2. Header-Checks
A	bsky.app 3.22.13.195	X-Content-Type-Options		Ok: Header without syntax errors found: nosniff
A		X-Frame-Options		Ok: Header without syntax errors found: SAMEORIGIN
B				Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A	bsky.app 3.136.170.194	X-Content-Type-Options		Ok: Header without syntax errors found: nosniff
A		X-Frame-Options		Ok: Header without syntax errors found: SAMEORIGIN
B				Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A	bsky.app 16.58.183.196	X-Content-Type-Options		Ok: Header without syntax errors found: nosniff
A		X-Frame-Options		Ok: Header without syntax errors found: SAMEORIGIN
B				Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
F	bsky.app 3.22.13.195	Content-Security-Policy		Critical: Missing Header:
F	bsky.app 3.22.13.195	Referrer-Policy		Critical: Missing Header:
F	bsky.app 3.22.13.195	Permissions-Policy		Critical: Missing Header:
B	bsky.app 3.22.13.195	Cross-Origin-Embedder-Policy		Info: Missing Header
B	bsky.app 3.22.13.195	Cross-Origin-Opener-Policy		Info: Missing Header
B	bsky.app 3.22.13.195	Cross-Origin-Resource-Policy		Info: Missing Header
F	bsky.app 3.136.170.194	Content-Security-Policy		Critical: Missing Header:
F	bsky.app 3.136.170.194	Referrer-Policy		Critical: Missing Header:
F	bsky.app 3.136.170.194	Permissions-Policy		Critical: Missing Header:
B	bsky.app 3.136.170.194	Cross-Origin-Embedder-Policy		Info: Missing Header
B	bsky.app 3.136.170.194	Cross-Origin-Opener-Policy		Info: Missing Header
B	bsky.app 3.136.170.194	Cross-Origin-Resource-Policy		Info: Missing Header
F	bsky.app 16.58.183.196	Content-Security-Policy		Critical: Missing Header:
F	bsky.app 16.58.183.196	Referrer-Policy		Critical: Missing Header:
F	bsky.app 16.58.183.196	Permissions-Policy		Critical: Missing Header:
B	bsky.app 16.58.183.196	Cross-Origin-Embedder-Policy		Info: Missing Header
B	bsky.app 16.58.183.196	Cross-Origin-Opener-Policy		Info: Missing Header
B	bsky.app 16.58.183.196	Cross-Origin-Resource-Policy		Info: Missing Header
	3. DNS- and NameServer - Checks
A	Info:: 16 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 4 Name Servers.
A	Info:: 16 Queries complete, 16 with IPv6, 0 with IPv4.
A	Good: All DNS Queries done via IPv6.
	Ok (4 - 8):: An average of 4.0 queries per domain name server required to find all ip addresses of all name servers.
A	Info:: 4 different Name Servers found: ns-1425.awsdns-50.org, ns-2001.awsdns-58.co.uk, ns-372.awsdns-46.com, ns-757.awsdns-30.net, 4 Name Servers included in Delegation: ns-1425.awsdns-50.org, ns-2001.awsdns-58.co.uk, ns-372.awsdns-46.com, ns-757.awsdns-30.net, 4 Name Servers included in 1 Zone definitions: ns-1425.awsdns-50.org, ns-2001.awsdns-58.co.uk, ns-372.awsdns-46.com, ns-757.awsdns-30.net, 1 Name Servers listed in SOA.Primary: ns-2001.awsdns-58.co.uk.
A	Good: Only one SOA.Primary Name Server found.: ns-2001.awsdns-58.co.uk.
A	Good: SOA.Primary Name Server included in the delegation set.: ns-2001.awsdns-58.co.uk.
A	Good: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: ns-1425.awsdns-50.org, ns-2001.awsdns-58.co.uk, ns-372.awsdns-46.com, ns-757.awsdns-30.net
A	Good: All Name Server Domain Names have a Public Suffix.
A	Good: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
A	Good: All Name Server ip addresses are public.
A	Good: Minimal 2 different name servers (public suffix and public ip address) found: 4 different Name Servers found
A	Good: All name servers have ipv4- and ipv6-addresses.: 4 different Name Servers found
A	Good: Name servers with different Top Level Domains / Public Suffix List entries found: 4 Name Servers, 4 Top Level Domains: org, net, com, co.uk
A	Good: Name Servers with different domain names found.: 4 different Domains found
	Warning: All Name Servers from the same Country / IP location.: 4 Name Servers, 1 Countries: US
A	Info: Ipv4-Subnet-list: 4 Name Servers, 1 different subnets (first Byte): 205., 1 different subnets (first two Bytes): 205.251., 4 different subnets (first three Bytes): 205.251.193., 205.251.194., 205.251.197., 205.251.199.
A	Good: Name Server IPv4-addresses from different subnet found:
A	Info: IPv6-Subnet-list: 4 Name Servers with IPv6, 1 different subnets (first block): 2600:, 1 different subnets (first two blocks): 2600:9000:, 4 different subnets (first three blocks): 2600:9000:5301:, 2600:9000:5302:, 2600:9000:5305:, 2600:9000:5307:, 4 different subnets (first four blocks): 2600:9000:5301:7400:, 2600:9000:5302:f500:, 2600:9000:5305:9100:, 2600:9000:5307:d100:
A	Good: Name Server IPv6 addresses from different subnets found.
A	Good: Nameserver supports TCP connections: 8 good Nameserver
A	Good: Nameserver supports Echo Capitalization: 8 good Nameserver
A	Good: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 8 good Nameserver
A	Good: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 8 good Nameserver
	Nameserver doesn't pass all EDNS-Checks: ns-2001.awsdns-58.co.uk: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
A	Good: All SOA have the same Serial Number
	Warning: No CAA entry with issue/issuewild found, every CAA can create a certificate. Read https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization to learn some basics about the idea of CAA. Your name server must support such an entry. Not all dns providers support CAA entries.
	4. Content- and Performance-critical Checks
	http://bsky.app/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 3.22.13.195	403		Fatal: Check of /.well-known/acme-challenge/random-filename has a http status 401 / 403 Not Allowed / Forbidden. A http status 404 - Not Found - is expected. Creating a Letsencrypt certificate via http-01 challenge may not work. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
	http://bsky.app/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 3.136.170.194	403		Fatal: Check of /.well-known/acme-challenge/random-filename has a http status 401 / 403 Not Allowed / Forbidden. A http status 404 - Not Found - is expected. Creating a Letsencrypt certificate via http-01 challenge may not work. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
	http://bsky.app/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 16.58.183.196	403		Fatal: Check of /.well-known/acme-challenge/random-filename has a http status 401 / 403 Not Allowed / Forbidden. A http status 404 - Not Found - is expected. Creating a Letsencrypt certificate via http-01 challenge may not work. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
A	Good: Every https result with status 200 and greater 1024 Bytes is compressed (gzip, deflate, br checked).
	https://bsky.app/ 3.22.13.195	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://bsky.app/ 3.136.170.194	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://bsky.app/ 16.58.183.196	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://3.22.13.195/ 3.22.13.195	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://3.136.170.194/ 3.136.170.194	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://16.58.183.196/ 16.58.183.196	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://bsky.app/ 3.22.13.195	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://bsky.app/ 3.136.170.194	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://bsky.app/ 16.58.183.196	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://3.22.13.195/ 3.22.13.195	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://3.136.170.194/ 3.136.170.194	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://16.58.183.196/ 16.58.183.196	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
A	Good: Every https connection via port 443 supports the http/2 protocol via ALPN.
A	Good: All script Elements (type text/javascript) and src-Attribute have a defer / async - Attribute. So loading and executing these JavaScripts doesn't block parsing and rendering the Html-Output.
A	Good: All CSS / JavaScript files are sent compressed (gzip, deflate, br checked). That reduces the content of the files. 9 external CSS / JavaScript files found
A	Good: All CSS / JavaScript files are sent with a long Cache-Control header (minimum 7 days). So the browser can re-use these files, no download is required. 9 external CSS / JavaScript files with long Cache-Control max-age found
A	Good: All checked attribute values are enclosed in quotation marks (" or ').
A	Info: No img element found, no alt attribute checked
A	Good: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
A	Duration: 468130 milliseconds, 468.130 seconds

8. Connections

Domain

Port

Cert.

Protocol

KeyExchange

Strength

Cipher

Strength

HashAlgorithm

OCSP stapling

Domain/KeyExchange

IP/Strength

Port/Cipher

Cert./Strength

Protocol/HashAlgorithm

OCSP stapling

bsky.app

3.22.13.195

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

bsky.app

3.22.13.195

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=bsky.app
	2	CN=Amazon RSA 2048 M04, O=Amazon, C=US
	3	CN=Amazon Root CA 1, O=Amazon, C=US

bsky.app

3.136.170.194

443

not supported

bsky.app

3.136.170.194

443

not supported

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=bsky.app
	2	CN=Amazon RSA 2048 M04, O=Amazon, C=US
	3	CN=Amazon Root CA 1, O=Amazon, C=US

bsky.app

16.58.183.196

443

not supported

bsky.app

16.58.183.196

443

not supported

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=bsky.app
	2	CN=Amazon RSA 2048 M04, O=Amazon, C=US
	3	CN=Amazon Root CA 1, O=Amazon, C=US

3.22.13.195

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

3.22.13.195

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=bsky.app
	2	CN=Amazon RSA 2048 M04, O=Amazon, C=US
	3	CN=Amazon Root CA 1, O=Amazon, C=US

3.136.170.194

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

3.136.170.194

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=bsky.app
	2	CN=Amazon RSA 2048 M04, O=Amazon, C=US
	3	CN=Amazon Root CA 1, O=Amazon, C=US

16.58.183.196

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

16.58.183.196

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=bsky.app
	2	CN=Amazon RSA 2048 M04, O=Amazon, C=US
	3	CN=Amazon Root CA 1, O=Amazon, C=US

9. Certificates

CN=bsky.app

14.01.2026

13.02.2027
expires in 333 days

bsky.app - 1 entry

CN=bsky.app

14.01.2026

13.02.2027
expires in 333 days

bsky.app - 1 entry

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	0BDD0E2AD4CA3F5C6E12D22CC1EB9157
Thumbprint:	7DF8ACDFAE1EE067BD2D57EB68EF83E2C6604611
SHA256 / Certificate:	V1edmnquxpt6xfekDjMSEXLeuJdVByS4P3sAHMoZGBU=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	979aad261a5ad85468b45f715f268faa531c53ff29223b264b99dc07a4fd9594
SHA256 hex / Subject Public Key Information (SPKI):	979aad261a5ad85468b45f715f268faa531c53ff29223b264b99dc07a4fd9594 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.r2m04.amazontrust.com
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

CN=bsky.app

14.01.2026

13.02.2027
expires in 333 days

bsky.app - 1 entry

CN=bsky.app

14.01.2026

13.02.2027
expires in 333 days

bsky.app - 1 entry

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	0BDD0E2AD4CA3F5C6E12D22CC1EB9157
Thumbprint:	7DF8ACDFAE1EE067BD2D57EB68EF83E2C6604611
SHA256 / Certificate:	V1edmnquxpt6xfekDjMSEXLeuJdVByS4P3sAHMoZGBU=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	979aad261a5ad85468b45f715f268faa531c53ff29223b264b99dc07a4fd9594
SHA256 hex / Subject Public Key Information (SPKI):	979aad261a5ad85468b45f715f268faa531c53ff29223b264b99dc07a4fd9594 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.r2m04.amazontrust.com
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

CN=Amazon RSA 2048 M04, O=Amazon, C=US

24.08.2022

24.08.2030
expires in 1621 days

CN=Amazon RSA 2048 M04, O=Amazon, C=US

24.08.2022

24.08.2030
expires in 1621 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	0773124F2A952E3ED18A58BDB85D1BC0CE5F27
Thumbprint:	E7B8B5A6743CE1B2F17B041DE59558A41472D70C
SHA256 / Certificate:	E4vfbiOslx605iayed1qJvBXUQ8d45QpOl7qKGDeAZs=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	1bd2cd340aa5f3dede818b1a6dab219335024c4264581ce0a04b64f17ffaefc7
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.rootca1.amazontrust.com
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=Amazon RSA 2048 M04, O=Amazon, C=US

24.08.2022

24.08.2030
expires in 1621 days

CN=Amazon RSA 2048 M04, O=Amazon, C=US

24.08.2022

24.08.2030
expires in 1621 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	0773124F2A952E3ED18A58BDB85D1BC0CE5F27
Thumbprint:	E7B8B5A6743CE1B2F17B041DE59558A41472D70C
SHA256 / Certificate:	E4vfbiOslx605iayed1qJvBXUQ8d45QpOl7qKGDeAZs=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	1bd2cd340aa5f3dede818b1a6dab219335024c4264581ce0a04b64f17ffaefc7
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.rootca1.amazontrust.com
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=Amazon Root CA 1, O=Amazon, C=US

25.05.2015

31.12.2037
expires in 4307 days

CN=Amazon Root CA 1, O=Amazon, C=US

25.05.2015

31.12.2037
expires in 4307 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	067F944A2A27CDF3FAC2AE2B01F908EEB9C4C6
Thumbprint:	06B25927C42A721631C1EFD9431E648FA62E1E39
SHA256 / Certificate:	h9zU3HRkCjIs0gVVJQbRvmTxJZYlgJZUSYa0hQvHJwY=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	fbe3018031f9586bcbf41727e417b7d1c45c2f47f93be372a17b96b50757d5a2
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.rootg2.amazontrust.com
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

CN=Amazon Root CA 1, O=Amazon, C=US

25.05.2015

31.12.2037
expires in 4307 days

CN=Amazon Root CA 1, O=Amazon, C=US

25.05.2015

31.12.2037
expires in 4307 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	067F944A2A27CDF3FAC2AE2B01F908EEB9C4C6
Thumbprint:	06B25927C42A721631C1EFD9431E648FA62E1E39
SHA256 / Certificate:	h9zU3HRkCjIs0gVVJQbRvmTxJZYlgJZUSYa0hQvHJwY=
SHA256 hex / Cert (DANE * 0 1):	87dcd4dc74640a322cd205552506d1be64f12596258096544986b4850bc72706
SHA256 hex / PublicKey (DANE * 1 1):	fbe3018031f9586bcbf41727e417b7d1c45c2f47f93be372a17b96b50757d5a2
SHA256 hex / Subject Public Key Information (SPKI):	fbe3018031f9586bcbf41727e417b7d1c45c2f47f93be372a17b96b50757d5a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.rootg2.amazontrust.com
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US

01.09.2009

01.01.2038
expires in 4308 days

CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US

01.09.2009

01.01.2038
expires in 4308 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	00
Thumbprint:	925A8F8D2C6D04E0665F596AFF22D863E8256F3F
SHA256 / Certificate:	Vo1pBaLIhwikswJRkO3P7bGXSmBqE8blKQ/LKuY+2rU=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	2b071c59a0a0ae76b0eadb2bad23bad4580b69c3601b630c2eaf0613afa83f92
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US

02.09.2009

28.06.2034
expires in 3025 days

CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US

02.09.2009

28.06.2034
expires in 3025 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	00A70E4A4C3482B77F
Thumbprint:	9E99A48A9960B14926BB7F3B02E22DA2B0AB7280
SHA256 / Certificate:	KGibMOTDBqq1OwJ7KeNq1t0dz0uVOZRILKhL3B7KyZY=
SHA256 hex / Cert (DANE * 0 1):	28689b30e4c306aab53b027b29e36ad6dd1dcf4b953994482ca84bdc1ecac996
SHA256 hex / PublicKey (DANE * 1 1):	2b071c59a0a0ae76b0eadb2bad23bad4580b69c3601b630c2eaf0613afa83f92
SHA256 hex / Subject Public Key Information (SPKI):	2b071c59a0a0ae76b0eadb2bad23bad4580b69c3601b630c2eaf0613afa83f92
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://o.ss2.us/
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuer				last 7 days	active	num Certs
CN=Amazon RSA 2048 M04, O=Amazon, C=US				0	1	1
CN=Amazon RSA 2048 M03, O=Amazon, C=US				0	0	1

CertSpotter-Id	Issuer	not before	not after	Domain names	LE-Duplicate	next LE
13430968831 leaf cert	CN=Amazon RSA 2048 M04, O=Amazon, C=US	2026-01-14 00:00:00	2027-02-12 23:59:59	bsky.app - 1 entries
9480778574 leaf cert	CN=Amazon RSA 2048 M03, O=Amazon, C=US	2025-02-12 00:00:00	2026-03-14 23:59:59	bsky.app - 1 entries

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

No CRT - CT-Log entries found

11. Html-Content - Entries

Summary

							Subresource Integrity (SRI)
Domainname	HtmlElement	rel/property	∑	∑ size	∑ problems	∑ int.	∑ ext.	∑ Origin poss.	∑ SRI ParseErrors	∑ SRI valid	∑ SRI missing
https://bsky.app/ 3.22.13.195	a		2		0			0	0	0
	link	stylesheet	1	2,515 Bytes	0	1	0	0	0	0
	link	other	9	365,070 Bytes	0	5	0	0	0	0
	meta	og	5	229,625 Bytes	0	2	0	0	0	0
	meta	twitter	5	2,749 Bytes	0	1	0	0	0	0
	meta	other	9		0			0	0	0
	script		2	1,889,333 Bytes	0	2	0	0	0	0
	style		2	740,216 Bytes	0	2	0	0	0	0
https://bsky.app/ 3.136.170.194	a		2		0			0	0	0
	link	stylesheet	1	2,515 Bytes	0	1	0	0	0	0
	link	other	9	365,070 Bytes	0	5	0	0	0	0
	meta	og	5	229,625 Bytes	0	2	0	0	0	0
	meta	twitter	5	2,749 Bytes	0	1	0	0	0	0
	meta	other	9		0			0	0	0
	script		2	1,889,333 Bytes	0	2	0	0	0	0
	style		2	740,216 Bytes	0	2	0	0	0	0
https://bsky.app/ 16.58.183.196	a		2		0			0	0	0
	link	stylesheet	1	2,515 Bytes	0	1	0	0	0	0
	link	other	9	365,070 Bytes	0	5	0	0	0	0
	meta	og	5	229,625 Bytes	0	2	0	0	0	0
	meta	twitter	5	2,749 Bytes	0	1	0	0	0	0
	meta	other	9		0			0	0	0
	script		2	1,889,333 Bytes	0	2	0	0	0	0
	style		2	740,216 Bytes	0	2	0	0	0	0
https://3.22.13.195/ 3.22.13.195	a		2		0			0	0	0
	link	stylesheet	1		0			0	0	0
	link	other	9		0			0	0	0
	meta	og	5		0			0	0	0
	meta	twitter	5		0			0	0	0
	meta	other	9		0			0	0	0
	script		2		0			0	0	0
	style		2		0			0	0	0
https://3.136.170.194/ 3.136.170.194	a		2		0			0	0	0
	link	stylesheet	1		0			0	0	0
	link	other	9		0			0	0	0
	meta	og	5		0			0	0	0
	meta	twitter	5		0			0	0	0
	meta	other	9		0			0	0	0
	script		2		0			0	0	0
	style		2		0			0	0	0
https://16.58.183.196/ 16.58.183.196	a		2		0			0	0	0
	link	stylesheet	1		0			0	0	0
	link	other	9		0			0	0	0
	meta	twitter	5		0			0	0	0
	meta	og	5		0			0	0	0
	meta	other	9		0			0	0	0
	script		2		0			0	0	0
	style		2		0			0	0	0

Details (currently limited to 500 rows - some problems with spam users)

Domainname	Html-Element	name/equiv/ property/rel	href/src/content	HttpStatus	∑
3.22.13.195	a		https://atproto.com			1	ok
							ok


	a		https://bsky.social			1	ok
							ok


	link					1	ok
							ok


	link	apple-touch-icon	https://web-cdn.bsky.app/static/apple-touch-icon.png		200	1	ok
				image/png X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=3600 - max-age too short.			No Compression - 7783 Bytes

	link	canonical	https://bsky.app			1	ok
							ok


	link	icon	https://web-cdn.bsky.app/static/favicon-16x16.png		200	1	ok
				image/png X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=3600 - max-age too short.			No Compression - 1731 Bytes

	link	icon	https://web-cdn.bsky.app/static/favicon-32x32.png		200	1	ok
				image/png X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=3600 - max-age too short.			No Compression - 2240 Bytes

	link	mask-icon	https://web-cdn.bsky.app/static/safari-pinned-tab.svg		200	1	ok
				image/svg+xml X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=3600 - max-age too short.			Compression (br): 1076/1987 Bytes

	link	preconnect	https://bsky.social			1	ok
							ok


	link	preconnect	https://go.bsky.app			1	ok
							ok


	link	preload	https://web-cdn.bsky.app/static/media/InterVariable.c504db5c06caaf7cdfba.woff2		200	1	ok
				font/woff2 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 with long duration found.			No Compression (): 352240/352240 Bytes, font already compressed

	link	stylesheet	https://web-cdn.bsky.app/static/css/main.d41af97c.css		200	1	ok
				text/css; charset=utf-8 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 - with long duration found.			Compression (br): 2515/9687 Bytes
	local SRI possible, possible hash-values: sha256-Z0vZg2lIWxwd2WzvOsT2KGQ4+ptr5mWhDr2oJ5JbrjA= sha384-Rl9p0DL0UCXjEJRkVqpz4iGSKb9Aum+4cFl8Gyz+Poo3SqejK59Hv/r+0pYjulXn sha512-JsRgYKKNb1SkBWJWseDBjkKgYLUvViD6e/t3Osj9bEzndc37YG0dVqINAQH17MC6KOeqkeESv/1Q0jjhz0+JXQ== <link rel="stylesheet" href="https://web-cdn.bsky.app/static/css/main.d41af97c.css" crossorigin="anonymous" integrity="sha256-Z0vZg2lIWxwd2WzvOsT2KGQ4+ptr5mWhDr2oJ5JbrjA=" />

	meta	charset	UTF-8			1	ok
							ok


	meta	og:image	https://bsky.app/static/social-card-default-gradient.png		200	1	ok
				image/png X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=3600 - max-age too short.			No Compression - 226876 Bytes

	meta	og:logo	https://web-cdn.bsky.app/static/favicon.png			1	ok
							ok


	meta	og:site_name	Bluesky Social			1	ok
							ok


	meta	og:title	Bluesky			1	ok
							ok


	meta	og:url	https://bsky.app		200	1	ok
				text/html; charset=UTF-8 X-Content-Type-Options nosniff found			ok
				2749 Bytes

	meta	twitter:image	https://bsky.app/static/social-card-default-gradient.png			1	ok
							ok


	meta	application-name	Bluesky			1	ok
							ok


	meta	description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	generator	bskyweb			1	ok
							ok


	meta	og:description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	referrer	origin-when-cross-origin			1	ok
							ok


	meta	theme-color				1	ok
							ok


	meta	twitter:card	summary_large_image			1	ok
							ok


	meta	twitter:description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	twitter:site	@bluesky			1	ok
							ok


	meta	twitter:title	Bluesky			1	ok
							ok


	meta	twitter:url	https://bsky.app		200	1	ok
				text/html; charset=UTF-8 X-Content-Type-Options nosniff found			ok
				2749 Bytes

	meta	viewport	width=device-width, initial-scale=1, minimum-scale=1, viewport-fit=cover			1	ok
							ok


	script	src	https://web-cdn.bsky.app/static/js/9030.37de9d0d.js		200	1	ok
	defer attribute found			text/javascript; charset=utf-8 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 - with long duration found.			Compression (br): 1107411/4096483 Bytes
	local SRI possible, possible hash-values: sha256-rm8VdiErQdOfPiYZIoHC5NIx3iFroxb+aAOYawQe4rc= sha384-6/DBtYlLaQHcW6DJGkX8NHjQ4wFPQx6mKpz8m4yoMGXmcl2g0NB7tMOabQTrsDZl sha512-Ya1ZByuliH6rRMfBnYAnjbgOy025fnwKMUfzyP+d3zVEfxtC/G8Nf9wEkJoOezcXRmNpnEasUYFey1Dc8ZLW8w== <script src="https://web-cdn.bsky.app/static/js/9030.37de9d0d.js" crossorigin="anonymous" integrity="sha256-rm8VdiErQdOfPiYZIoHC5NIx3iFroxb+aAOYawQe4rc=" />

	script	src	https://web-cdn.bsky.app/static/js/main.14babd70.js		200	1	ok
	defer attribute found			text/javascript; charset=utf-8 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 - with long duration found.			Compression (br): 781922/2931174 Bytes
	local SRI possible, possible hash-values: sha256-euCPPkAc4llPtbxqc04355Fk6HHIKcyRY4cc3Dtk078= sha384-EibNmrJ6HNj2Muf+XSQ6UrSbuSx72SRm4whiHnxOtbP86sRbfsfO69ZI5VOcC+pn sha512-1l1h//o0v2fOjCVUhzjTlSfFKL14z0dKx3zOQ1OISXWJGts7sDl4QjeDlrFspjOmy+mwDgOQ61F5caV1ShswJg== <script src="https://web-cdn.bsky.app/static/js/main.14babd70.js" crossorigin="anonymous" integrity="sha256-euCPPkAc4llPtbxqc04355Fk6HHIKcyRY4cc3Dtk078=" />

	style		https://web-cdn.bsky.app/static/media/InterVariable.c504db5c06caaf7cdfba.woff2		200	1	ok
				font/woff2 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 with long duration found.			No Compression (): 352240/352240 Bytes, font already compressed

	style		https://web-cdn.bsky.app/static/media/InterVariable-Italic.01dcbad1bac635f9c9cd.woff2		200	1	ok
				font/woff2 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 with long duration found.			No Compression (): 387976/387976 Bytes, font already compressed

3.136.170.194	a		https://atproto.com			1	ok
							ok


	a		https://bsky.social			1	ok
							ok


	link					1	ok
							ok


	link	apple-touch-icon	https://web-cdn.bsky.app/static/apple-touch-icon.png		200	1	ok
				image/png X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=3600 - max-age too short.			No Compression - 7783 Bytes

	link	canonical	https://bsky.app			1	ok
							ok


	link	icon	https://web-cdn.bsky.app/static/favicon-16x16.png		200	1	ok
				image/png X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=3600 - max-age too short.			No Compression - 1731 Bytes

	link	icon	https://web-cdn.bsky.app/static/favicon-32x32.png		200	1	ok
				image/png X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=3600 - max-age too short.			No Compression - 2240 Bytes

	link	mask-icon	https://web-cdn.bsky.app/static/safari-pinned-tab.svg		200	1	ok
				image/svg+xml X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=3600 - max-age too short.			Compression (br): 1076/1987 Bytes

	link	preconnect	https://bsky.social			1	ok
							ok


	link	preconnect	https://go.bsky.app			1	ok
							ok


	link	preload	https://web-cdn.bsky.app/static/media/InterVariable.c504db5c06caaf7cdfba.woff2		200	1	ok
				font/woff2 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 with long duration found.			No Compression (): 352240/352240 Bytes, font already compressed

	link	stylesheet	https://web-cdn.bsky.app/static/css/main.d41af97c.css		200	1	ok
				text/css; charset=utf-8 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 - with long duration found.			Compression (br): 2515/9687 Bytes
	local SRI possible, possible hash-values: sha256-Z0vZg2lIWxwd2WzvOsT2KGQ4+ptr5mWhDr2oJ5JbrjA= sha384-Rl9p0DL0UCXjEJRkVqpz4iGSKb9Aum+4cFl8Gyz+Poo3SqejK59Hv/r+0pYjulXn sha512-JsRgYKKNb1SkBWJWseDBjkKgYLUvViD6e/t3Osj9bEzndc37YG0dVqINAQH17MC6KOeqkeESv/1Q0jjhz0+JXQ== <link rel="stylesheet" href="https://web-cdn.bsky.app/static/css/main.d41af97c.css" crossorigin="anonymous" integrity="sha256-Z0vZg2lIWxwd2WzvOsT2KGQ4+ptr5mWhDr2oJ5JbrjA=" />

	meta	charset	UTF-8			1	ok
							ok


	meta	og:image	https://bsky.app/static/social-card-default-gradient.png		200	1	ok
				image/png X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=3600 - max-age too short.			No Compression - 226876 Bytes

	meta	og:logo	https://web-cdn.bsky.app/static/favicon.png			1	ok
							ok


	meta	og:site_name	Bluesky Social			1	ok
							ok


	meta	og:title	Bluesky			1	ok
							ok


	meta	og:url	https://bsky.app		200	1	ok
				text/html; charset=UTF-8 X-Content-Type-Options nosniff found			ok
				2749 Bytes

	meta	twitter:image	https://bsky.app/static/social-card-default-gradient.png			1	ok
							ok


	meta	application-name	Bluesky			1	ok
							ok


	meta	description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	generator	bskyweb			1	ok
							ok


	meta	og:description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	referrer	origin-when-cross-origin			1	ok
							ok


	meta	theme-color				1	ok
							ok


	meta	twitter:card	summary_large_image			1	ok
							ok


	meta	twitter:description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	twitter:site	@bluesky			1	ok
							ok


	meta	twitter:title	Bluesky			1	ok
							ok


	meta	twitter:url	https://bsky.app		200	1	ok
				text/html; charset=UTF-8 X-Content-Type-Options nosniff found			ok
				2749 Bytes

	meta	viewport	width=device-width, initial-scale=1, minimum-scale=1, viewport-fit=cover			1	ok
							ok


	script	src	https://web-cdn.bsky.app/static/js/9030.37de9d0d.js		200	1	ok
	defer attribute found			text/javascript; charset=utf-8 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 - with long duration found.			Compression (br): 1107411/4096483 Bytes
	local SRI possible, possible hash-values: sha256-rm8VdiErQdOfPiYZIoHC5NIx3iFroxb+aAOYawQe4rc= sha384-6/DBtYlLaQHcW6DJGkX8NHjQ4wFPQx6mKpz8m4yoMGXmcl2g0NB7tMOabQTrsDZl sha512-Ya1ZByuliH6rRMfBnYAnjbgOy025fnwKMUfzyP+d3zVEfxtC/G8Nf9wEkJoOezcXRmNpnEasUYFey1Dc8ZLW8w== <script src="https://web-cdn.bsky.app/static/js/9030.37de9d0d.js" crossorigin="anonymous" integrity="sha256-rm8VdiErQdOfPiYZIoHC5NIx3iFroxb+aAOYawQe4rc=" />

	script	src	https://web-cdn.bsky.app/static/js/main.14babd70.js		200	1	ok
	defer attribute found			text/javascript; charset=utf-8 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 - with long duration found.			Compression (br): 781922/2931174 Bytes
	local SRI possible, possible hash-values: sha256-euCPPkAc4llPtbxqc04355Fk6HHIKcyRY4cc3Dtk078= sha384-EibNmrJ6HNj2Muf+XSQ6UrSbuSx72SRm4whiHnxOtbP86sRbfsfO69ZI5VOcC+pn sha512-1l1h//o0v2fOjCVUhzjTlSfFKL14z0dKx3zOQ1OISXWJGts7sDl4QjeDlrFspjOmy+mwDgOQ61F5caV1ShswJg== <script src="https://web-cdn.bsky.app/static/js/main.14babd70.js" crossorigin="anonymous" integrity="sha256-euCPPkAc4llPtbxqc04355Fk6HHIKcyRY4cc3Dtk078=" />

	style		https://web-cdn.bsky.app/static/media/InterVariable.c504db5c06caaf7cdfba.woff2		200	1	ok
				font/woff2 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 with long duration found.			No Compression (): 352240/352240 Bytes, font already compressed

	style		https://web-cdn.bsky.app/static/media/InterVariable-Italic.01dcbad1bac635f9c9cd.woff2		200	1	ok
				font/woff2 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 with long duration found.			No Compression (): 387976/387976 Bytes, font already compressed

https://bsky.app/ 16.58.183.196	a		https://atproto.com			1	ok
							ok


	a		https://bsky.social			1	ok
							ok


	link					1	ok
							ok


	link	apple-touch-icon	https://web-cdn.bsky.app/static/apple-touch-icon.png		200	1	ok
				image/png X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=3600 - max-age too short.			No Compression - 7783 Bytes

	link	canonical	https://bsky.app			1	ok
							ok


	link	icon	https://web-cdn.bsky.app/static/favicon-16x16.png		200	1	ok
				image/png X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=3600 - max-age too short.			No Compression - 1731 Bytes

	link	icon	https://web-cdn.bsky.app/static/favicon-32x32.png		200	1	ok
				image/png X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=3600 - max-age too short.			No Compression - 2240 Bytes

	link	mask-icon	https://web-cdn.bsky.app/static/safari-pinned-tab.svg		200	1	ok
				image/svg+xml X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=3600 - max-age too short.			Compression (br): 1076/1987 Bytes

	link	preconnect	https://bsky.social			1	ok
							ok


	link	preconnect	https://go.bsky.app			1	ok
							ok


	link	preload	https://web-cdn.bsky.app/static/media/InterVariable.c504db5c06caaf7cdfba.woff2		200	1	ok
				font/woff2 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 with long duration found.			No Compression (): 352240/352240 Bytes, font already compressed

	link	stylesheet	https://web-cdn.bsky.app/static/css/main.d41af97c.css		200	1	ok
				text/css; charset=utf-8 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 - with long duration found.			Compression (br): 2515/9687 Bytes
	local SRI possible, possible hash-values: sha256-Z0vZg2lIWxwd2WzvOsT2KGQ4+ptr5mWhDr2oJ5JbrjA= sha384-Rl9p0DL0UCXjEJRkVqpz4iGSKb9Aum+4cFl8Gyz+Poo3SqejK59Hv/r+0pYjulXn sha512-JsRgYKKNb1SkBWJWseDBjkKgYLUvViD6e/t3Osj9bEzndc37YG0dVqINAQH17MC6KOeqkeESv/1Q0jjhz0+JXQ== <link rel="stylesheet" href="https://web-cdn.bsky.app/static/css/main.d41af97c.css" crossorigin="anonymous" integrity="sha256-Z0vZg2lIWxwd2WzvOsT2KGQ4+ptr5mWhDr2oJ5JbrjA=" />

	meta	charset	UTF-8			1	ok
							ok


	meta	og:image	https://bsky.app/static/social-card-default-gradient.png		200	1	ok
				image/png X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=3600 - max-age too short.			No Compression - 226876 Bytes

	meta	og:logo	https://web-cdn.bsky.app/static/favicon.png			1	ok
							ok


	meta	og:site_name	Bluesky Social			1	ok
							ok


	meta	og:title	Bluesky			1	ok
							ok


	meta	og:url	https://bsky.app		200	1	ok
				text/html; charset=UTF-8 X-Content-Type-Options nosniff found			ok
				2749 Bytes

	meta	twitter:image	https://bsky.app/static/social-card-default-gradient.png			1	ok
							ok


	meta	application-name	Bluesky			1	ok
							ok


	meta	description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	generator	bskyweb			1	ok
							ok


	meta	og:description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	referrer	origin-when-cross-origin			1	ok
							ok


	meta	theme-color				1	ok
							ok


	meta	twitter:card	summary_large_image			1	ok
							ok


	meta	twitter:description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	twitter:site	@bluesky			1	ok
							ok


	meta	twitter:title	Bluesky			1	ok
							ok


	meta	twitter:url	https://bsky.app		200	1	ok
				text/html; charset=UTF-8 X-Content-Type-Options nosniff found			ok
				2749 Bytes

	meta	viewport	width=device-width, initial-scale=1, minimum-scale=1, viewport-fit=cover			1	ok
							ok


	script	src	https://web-cdn.bsky.app/static/js/9030.37de9d0d.js		200	1	ok
	defer attribute found			text/javascript; charset=utf-8 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 - with long duration found.			Compression (br): 1107411/4096483 Bytes
	local SRI possible, possible hash-values: sha256-rm8VdiErQdOfPiYZIoHC5NIx3iFroxb+aAOYawQe4rc= sha384-6/DBtYlLaQHcW6DJGkX8NHjQ4wFPQx6mKpz8m4yoMGXmcl2g0NB7tMOabQTrsDZl sha512-Ya1ZByuliH6rRMfBnYAnjbgOy025fnwKMUfzyP+d3zVEfxtC/G8Nf9wEkJoOezcXRmNpnEasUYFey1Dc8ZLW8w== <script src="https://web-cdn.bsky.app/static/js/9030.37de9d0d.js" crossorigin="anonymous" integrity="sha256-rm8VdiErQdOfPiYZIoHC5NIx3iFroxb+aAOYawQe4rc=" />

	script	src	https://web-cdn.bsky.app/static/js/main.14babd70.js		200	1	ok
	defer attribute found			text/javascript; charset=utf-8 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 - with long duration found.			Compression (br): 781922/2931174 Bytes
	local SRI possible, possible hash-values: sha256-euCPPkAc4llPtbxqc04355Fk6HHIKcyRY4cc3Dtk078= sha384-EibNmrJ6HNj2Muf+XSQ6UrSbuSx72SRm4whiHnxOtbP86sRbfsfO69ZI5VOcC+pn sha512-1l1h//o0v2fOjCVUhzjTlSfFKL14z0dKx3zOQ1OISXWJGts7sDl4QjeDlrFspjOmy+mwDgOQ61F5caV1ShswJg== <script src="https://web-cdn.bsky.app/static/js/main.14babd70.js" crossorigin="anonymous" integrity="sha256-euCPPkAc4llPtbxqc04355Fk6HHIKcyRY4cc3Dtk078=" />

	style		https://web-cdn.bsky.app/static/media/InterVariable.c504db5c06caaf7cdfba.woff2		200	1	ok
				font/woff2 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 with long duration found.			No Compression (): 352240/352240 Bytes, font already compressed

	style		https://web-cdn.bsky.app/static/media/InterVariable-Italic.01dcbad1bac635f9c9cd.woff2		200	1	ok
				font/woff2 X-Content-Type-Options nosniff found			ok
	Cache-Control: public, max-age=31536000 with long duration found.			No Compression (): 387976/387976 Bytes, font already compressed

https://3.22.13.195/ 3.22.13.195	a		https://atproto.com			1	ok
							ok


	a		https://bsky.social			1	ok
							ok


	link					1	ok
							ok


	link	apple-touch-icon	https://web-cdn.bsky.app/static/apple-touch-icon.png			1	ok
							ok


	link	canonical	https://bsky.app			1	ok
							ok


	link	icon	https://web-cdn.bsky.app/static/favicon-16x16.png			1	ok
							ok


	link	icon	https://web-cdn.bsky.app/static/favicon-32x32.png			1	ok
							ok


	link	mask-icon	https://web-cdn.bsky.app/static/safari-pinned-tab.svg			1	ok
							ok


	link	preconnect	https://bsky.social			1	ok
							ok


	link	preconnect	https://go.bsky.app			1	ok
							ok


	link	preload	https://web-cdn.bsky.app/static/media/InterVariable.c504db5c06caaf7cdfba.woff2			1	ok
							ok


	link	stylesheet	https://web-cdn.bsky.app/static/css/main.d41af97c.css			1	ok
							ok


	meta	charset	UTF-8			1	ok
							ok


	meta	og:image	https://bsky.app/static/social-card-default-gradient.png			1	ok
							ok


	meta	og:logo	https://web-cdn.bsky.app/static/favicon.png			1	ok
							ok


	meta	og:site_name	Bluesky Social			1	ok
							ok


	meta	og:title	Bluesky			1	ok
							ok


	meta	og:url	https://bsky.app			1	ok
							ok


	meta	twitter:image	https://bsky.app/static/social-card-default-gradient.png			1	ok
							ok


	meta	application-name	Bluesky			1	ok
							ok


	meta	description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	generator	bskyweb			1	ok
							ok


	meta	og:description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	referrer	origin-when-cross-origin			1	ok
							ok


	meta	theme-color				1	ok
							ok


	meta	twitter:card	summary_large_image			1	ok
							ok


	meta	twitter:description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	twitter:site	@bluesky			1	ok
							ok


	meta	twitter:title	Bluesky			1	ok
							ok


	meta	twitter:url	https://bsky.app			1	ok
							ok


	meta	viewport	width=device-width, initial-scale=1, minimum-scale=1, viewport-fit=cover			1	ok
							ok


	script	src	https://web-cdn.bsky.app/static/js/9030.37de9d0d.js			1	ok
	defer attribute found						ok


	script	src	https://web-cdn.bsky.app/static/js/main.14babd70.js			1	ok
	defer attribute found						ok


	style		https://web-cdn.bsky.app/static/media/InterVariable.c504db5c06caaf7cdfba.woff2			1	ok
							ok


	style		https://web-cdn.bsky.app/static/media/InterVariable-Italic.01dcbad1bac635f9c9cd.woff2			1	ok
							ok


https://3.136.170.194/ 3.136.170.194	a		https://atproto.com			1	ok
							ok


	a		https://bsky.social			1	ok
							ok


	link					1	ok
							ok


	link	apple-touch-icon	https://web-cdn.bsky.app/static/apple-touch-icon.png			1	ok
							ok


	link	canonical	https://bsky.app			1	ok
							ok


	link	icon	https://web-cdn.bsky.app/static/favicon-16x16.png			1	ok
							ok


	link	icon	https://web-cdn.bsky.app/static/favicon-32x32.png			1	ok
							ok


	link	mask-icon	https://web-cdn.bsky.app/static/safari-pinned-tab.svg			1	ok
							ok


	link	preconnect	https://bsky.social			1	ok
							ok


	link	preconnect	https://go.bsky.app			1	ok
							ok


	link	preload	https://web-cdn.bsky.app/static/media/InterVariable.c504db5c06caaf7cdfba.woff2			1	ok
							ok


	link	stylesheet	https://web-cdn.bsky.app/static/css/main.d41af97c.css			1	ok
							ok


	meta	charset	UTF-8			1	ok
							ok


	meta	og:image	https://bsky.app/static/social-card-default-gradient.png			1	ok
							ok


	meta	og:logo	https://web-cdn.bsky.app/static/favicon.png			1	ok
							ok


	meta	og:site_name	Bluesky Social			1	ok
							ok


	meta	og:title	Bluesky			1	ok
							ok


	meta	og:url	https://bsky.app			1	ok
							ok


	meta	twitter:image	https://bsky.app/static/social-card-default-gradient.png			1	ok
							ok


	meta	application-name	Bluesky			1	ok
							ok


	meta	description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	generator	bskyweb			1	ok
							ok


	meta	og:description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	referrer	origin-when-cross-origin			1	ok
							ok


	meta	theme-color				1	ok
							ok


	meta	twitter:card	summary_large_image			1	ok
							ok


	meta	twitter:description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	twitter:site	@bluesky			1	ok
							ok


	meta	twitter:title	Bluesky			1	ok
							ok


	meta	twitter:url	https://bsky.app			1	ok
							ok


	meta	viewport	width=device-width, initial-scale=1, minimum-scale=1, viewport-fit=cover			1	ok
							ok


	script	src	https://web-cdn.bsky.app/static/js/9030.37de9d0d.js			1	ok
	defer attribute found						ok


	script	src	https://web-cdn.bsky.app/static/js/main.14babd70.js			1	ok
	defer attribute found						ok


	style		https://web-cdn.bsky.app/static/media/InterVariable.c504db5c06caaf7cdfba.woff2			1	ok
							ok


	style		https://web-cdn.bsky.app/static/media/InterVariable-Italic.01dcbad1bac635f9c9cd.woff2			1	ok
							ok


https://16.58.183.196/ 16.58.183.196	a		https://atproto.com			1	ok
							ok


	a		https://bsky.social			1	ok
							ok


	link					1	ok
							ok


	link	apple-touch-icon	https://web-cdn.bsky.app/static/apple-touch-icon.png			1	ok
							ok


	link	canonical	https://bsky.app			1	ok
							ok


	link	icon	https://web-cdn.bsky.app/static/favicon-16x16.png			1	ok
							ok


	link	icon	https://web-cdn.bsky.app/static/favicon-32x32.png			1	ok
							ok


	link	mask-icon	https://web-cdn.bsky.app/static/safari-pinned-tab.svg			1	ok
							ok


	link	preconnect	https://bsky.social			1	ok
							ok


	link	preconnect	https://go.bsky.app			1	ok
							ok


	link	preload	https://web-cdn.bsky.app/static/media/InterVariable.c504db5c06caaf7cdfba.woff2			1	ok
							ok


	link	stylesheet	https://web-cdn.bsky.app/static/css/main.d41af97c.css			1	ok
							ok


	meta	charset	UTF-8			1	ok
							ok


	meta	og:image	https://bsky.app/static/social-card-default-gradient.png			1	ok
							ok


	meta	og:logo	https://web-cdn.bsky.app/static/favicon.png			1	ok
							ok


	meta	og:site_name	Bluesky Social			1	ok
							ok


	meta	og:title	Bluesky			1	ok
							ok


	meta	og:url	https://bsky.app			1	ok
							ok


	meta	twitter:image	https://bsky.app/static/social-card-default-gradient.png			1	ok
							ok


	meta	application-name	Bluesky			1	ok
							ok


	meta	description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	generator	bskyweb			1	ok
							ok


	meta	og:description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	referrer	origin-when-cross-origin			1	ok
							ok


	meta	theme-color				1	ok
							ok


	meta	twitter:card	summary_large_image			1	ok
							ok


	meta	twitter:description	Social media as it should be. Find your community among millions of users, unleash your creativity, and have some fun again.			1	ok
							ok


	meta	twitter:site	@bluesky			1	ok
							ok


	meta	twitter:title	Bluesky			1	ok
							ok


	meta	twitter:url	https://bsky.app			1	ok
							ok


	meta	viewport	width=device-width, initial-scale=1, minimum-scale=1, viewport-fit=cover			1	ok
							ok


	script	src	https://web-cdn.bsky.app/static/js/9030.37de9d0d.js			1	ok
	defer attribute found						ok


	script	src	https://web-cdn.bsky.app/static/js/main.14babd70.js			1	ok
	defer attribute found						ok


	style		https://web-cdn.bsky.app/static/media/InterVariable.c504db5c06caaf7cdfba.woff2			1	ok
							ok


	style		https://web-cdn.bsky.app/static/media/InterVariable-Italic.01dcbad1bac635f9c9cd.woff2			1	ok
							ok

12. Html-Parsing via https://validator.w3.org/nu/

	Type	Message	num found
Url used (first standard-https-result with http status 200): https://bsky.app/

Summary
	Good: No non-document-errors
	6 errors
	1 warnings
1.	error	Element `meta` is missing one or more of the following attributes: `content`, `property`.	1
2.	error	Bad value for attribute `href` on element `link`: Must be non-empty.	1
3.	error	Element `link` is missing one or more of the following attributes: `itemprop`, `property`, `rel`.	1
4.	error	Unclosed element `noscript`.	1
5.	error	Stray end tag `noscript`.	1
6.	error	End tag for `body` seen, but there were unclosed elements.	1
7.	warning	Consider adding a `lang` attribute to the `html` start tag to declare the language of this document.	1
Details
	Type	Message + Sample
1	error	Element `meta` is missing one or more of the following attributes: `content`, `property`.
		From line 141, column 3 to line 141, column 27
		185fe"> <meta name="theme-color"> <me
2	error	Bad value for attribute `href` on element `link`: Must be non-empty.
		From line 147, column 3 to line 147, column 51
		sky" /> <link type="application/activity+json" href="" /> <m
3	error	Element `link` is missing one or more of the following attributes: `itemprop`, `property`, `rel`.
		From line 147, column 3 to line 147, column 51
		sky" /> <link type="application/activity+json" href="" /> <m
4	error	Unclosed element `noscript`.
		From line 173, column 3 to line 173, column 12
		</div> <noscript> <
5	error	Stray end tag `noscript`.
		From line 180, column 3 to line 180, column 13
		page. </noscript> </bod
6	error	End tag for `body` seen, but there were unclosed elements.
		From line 181, column 1 to line 181, column 7
		noscript> </body> </htm
7	warning	Consider adding a `lang` attribute to the `html` start tag to declare the language of this document.
		From line 1, column 16 to line 2, column 6
		TYPE html> <html> <head

13. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: ns-1425.awsdns-50.org, ns-2001.awsdns-58.co.uk, ns-372.awsdns-46.com, ns-757.awsdns-30.net

QNr.	Domain	Type	NS used
1	org	NS	e.root-servers.net (2001:500:a8::e)
	Answer: a0.org.afilias-nst.info, a2.org.afilias-nst.info, b0.org.afilias-nst.org, b2.org.afilias-nst.org, c0.org.afilias-nst.info, d0.org.afilias-nst.org
2	ns-1425.awsdns-50.org	NS	a0.org.afilias-nst.info (2001:500:e::1)
	Answer: g-ns-1077.awsdns-50.org, g-ns-1650.awsdns-50.org, g-ns-178.awsdns-50.org, g-ns-756.awsdns-50.org
	Answer: g-ns-756.awsdns-50.org 205.251.194.244, 2600:9000:5302:f400::1
	Answer: g-ns-178.awsdns-50.org 205.251.192.178, 2600:9000:5300:b200::1
	Answer: g-ns-1650.awsdns-50.org 205.251.198.114, 2600:9000:5306:7200::1
	Answer: g-ns-1077.awsdns-50.org 205.251.196.53, 2600:9000:5304:3500::1
3	uk	NS	l.root-servers.net (2001:500:9f::42)
	Answer: dns1.nic.uk, dns2.nic.uk, dns3.nic.uk, dns4.nic.uk, nsa.nic.uk, nsb.nic.uk, nsc.nic.uk, nsd.nic.uk
4	ns-2001.awsdns-58.co.uk	NS	dns1.nic.uk (2a01:618:400::1)
	Answer: g-ns-1533.awsdns-58.co.uk, g-ns-1854.awsdns-58.co.uk, g-ns-378.awsdns-58.co.uk, g-ns-954.awsdns-58.co.uk
	Answer: g-ns-954.awsdns-58.co.uk 205.251.195.186, 2600:9000:5303:ba00::1
	Answer: g-ns-378.awsdns-58.co.uk 205.251.193.122, 2600:9000:5301:7a00::1
	Answer: g-ns-1854.awsdns-58.co.uk 205.251.199.62, 2600:9000:5307:3e00::1
	Answer: g-ns-1533.awsdns-58.co.uk 205.251.197.253, 2600:9000:5305:fd00::1
5	com	NS	k.root-servers.net (2001:7fd::1)
	Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
6	ns-372.awsdns-46.com	NS	a.gtld-servers.net (2001:503:a83e::2:30)
	Answer: g-ns-1198.awsdns-46.com, g-ns-1774.awsdns-46.com, g-ns-47.awsdns-46.com, g-ns-622.awsdns-46.com
	Answer: g-ns-622.awsdns-46.com 205.251.194.110, 2600:9000:5302:6e00::1
	Answer: g-ns-47.awsdns-46.com 205.251.192.47, 2600:9000:5300:2f00::1
	Answer: g-ns-1774.awsdns-46.com 205.251.198.238, 2600:9000:5306:ee00::1
	Answer: g-ns-1198.awsdns-46.com 205.251.196.174, 2600:9000:5304:ae00::1
7	net	NS	e.root-servers.net (2001:500:a8::e)
	Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
8	ns-757.awsdns-30.net	NS	a.gtld-servers.net (2001:503:a83e::2:30)
	Answer: g-ns-1374.awsdns-30.net, g-ns-1950.awsdns-30.net, g-ns-479.awsdns-30.net, g-ns-800.awsdns-30.net
	Answer: g-ns-800.awsdns-30.net 205.251.195.32, 2600:9000:5303:2000::1
	Answer: g-ns-479.awsdns-30.net 205.251.193.223, 2600:9000:5301:df00::1
	Answer: g-ns-1950.awsdns-30.net 205.251.199.158, 2600:9000:5307:9e00::1
	Answer: g-ns-1374.awsdns-30.net 205.251.197.94, 2600:9000:5305:5e00::1
9	ns-1425.awsdns-50.org: 205.251.197.145	A	g-ns-1077.awsdns-50.org (2600:9000:5304:3500::1)
10	ns-1425.awsdns-50.org: 2600:9000:5305:9100::1	AAAA	g-ns-1077.awsdns-50.org (2600:9000:5304:3500::1)
11	ns-2001.awsdns-58.co.uk: 205.251.199.209	A	g-ns-1533.awsdns-58.co.uk (2600:9000:5305:fd00::1)
12	ns-2001.awsdns-58.co.uk: 2600:9000:5307:d100::1	AAAA	g-ns-1533.awsdns-58.co.uk (2600:9000:5305:fd00::1)
13	ns-372.awsdns-46.com: 205.251.193.116	A	g-ns-1198.awsdns-46.com (2600:9000:5304:ae00::1)
14	ns-372.awsdns-46.com: 2600:9000:5301:7400::1	AAAA	g-ns-1198.awsdns-46.com (2600:9000:5304:ae00::1)
15	ns-757.awsdns-30.net: 205.251.194.245	A	g-ns-1374.awsdns-30.net (2600:9000:5305:5e00::1)
16	ns-757.awsdns-30.net: 2600:9000:5302:f500::1	AAAA	g-ns-1374.awsdns-30.net (2600:9000:5305:5e00::1)

14. CAA - Entries

Domainname	flag	Name	Value	∑ Queries	∑ Timeout
bsky.app	0		no CAA entry found	1	0
app	0		no CAA entry found	1	0

15. TXT - Entries

Domainname	TXT Entry	Status	∑ Queries
bsky.app	google-site-verification=ppFonct21Z0sM_XgszQxPAJlnwgjeDzx8Qi3xnN3FAI	ok	1
bsky.app	google-site-verification=Y85ssVszowlKMCTQtWZoqCWH4x_2sV7NCCa7BlGJpiw	ok	1
bsky.app	google-site-verification=YglIh7PA59zIzMTb-hrvNHZK8WpGjJLXWbMKof6OhR8	ok	1
bsky.app	v=spf1 mx include:mail.zendesk.com ?all	ok	1
_acme-challenge.bsky.app		Name Error - The domain name does not exist	1
_acme-challenge.bsky.app.bsky.app		Name Error - The domain name does not exist	1

16. DomainService - Entries

Type		Domain	Pref	Value	DNS-error	num Answers	Status
MX		bsky.app	1	aspmx.l.google.com	0	1	ok
	A			192.178.223.27	0	1	ok
	AAAA			2a00:1450:4009:c0f::1a	0	1	ok
	CNAME				0	0	ok
SPF	TXT	bsky.app		v=spf1 mx include:mail.zendesk.com ?all			ok
	MX	bsky.app		aspmx.l.google.com			ok
	MX-A	aspmx.l.google.com		192.178.223.27			ok
	MX-AAAA	aspmx.l.google.com		2a00:1450:4009:c0f::1b			ok
	TXT	mail.zendesk.com		v=spf1 ip4:103.151.192.0/23 ip4:185.12.80.0/22 ip4:188.172.128.0/20 ip4:192.161.144.0/20 ip4:216.198.0.0/18 ~all			ok
_dmarc	TXT	_dmarc.bsky.app		v=DMARC1; p=reject; rua=mailto:admin@bsky.app;			ok

17. Cipher Suites

Summary
Domain	IP	Port	num Ciphers	time	Std.Protocol	Forward Secrecy
bsky.app	3.22.13.195	443	4 Ciphers	87.98 sec		0 without, 4 FS	100.00 %
bsky.app	3.136.170.194	443	4 Ciphers	88.22 sec		0 without, 4 FS	100.00 %
bsky.app	16.58.183.196	443	4 Ciphers	87.98 sec		0 without, 4 FS	100.00 %
Complete		3	12 Ciphers 4.00 Ciphers/Check	264.19 sec	88.06 sec/Check	0 without, 12 FS	100.00 %

Details
Domain	IP	Port	Cipher (OpenSsl / IANA)
bsky.app	3.22.13.195	443	ECDHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x30	FS
4 Ciphers, 87.98 sec			TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
			ECDH		RSA	AESGCM(256)	AEAD
			ECDHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x2F	FS
			TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
			ECDH		RSA	AESGCM(128)	AEAD
			ECDHE-RSA-AES256-SHA384		(Weak)	TLSv1.2	0xC0,0x28	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
			ECDH		RSA	AES(256)	SHA384
			ECDHE-RSA-AES128-SHA256		(Weak)	TLSv1.2	0xC0,0x27	FS
			TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
			ECDH		RSA	AES(128)	SHA256
	3.136.170.194	443	ECDHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x30	FS
4 Ciphers, 88.22 sec			TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
			ECDH		RSA	AESGCM(256)	AEAD
			ECDHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x2F	FS
			TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
			ECDH		RSA	AESGCM(128)	AEAD
			ECDHE-RSA-AES256-SHA384		(Weak)	TLSv1.2	0xC0,0x28	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
			ECDH		RSA	AES(256)	SHA384
			ECDHE-RSA-AES128-SHA256		(Weak)	TLSv1.2	0xC0,0x27	FS
			TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
			ECDH		RSA	AES(128)	SHA256
	16.58.183.196	443	ECDHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x30	FS
4 Ciphers, 87.98 sec			TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
			ECDH		RSA	AESGCM(256)	AEAD
			ECDHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x2F	FS
			TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
			ECDH		RSA	AESGCM(128)	AEAD
			ECDHE-RSA-AES256-SHA384		(Weak)	TLSv1.2	0xC0,0x28	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
			ECDH		RSA	AES(256)	SHA384
			ECDHE-RSA-AES128-SHA256		(Weak)	TLSv1.2	0xC0,0x27	FS
			TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
			ECDH		RSA	AES(128)	SHA256

18. Portchecks

No open Ports <> 80 / 443 found, so no additional Ports checked.

Permalink: https://check-your-website.server-daten.de/?i=084322e8-7a0c-4223-bb96-095d996f7d15

Last Result: https://check-your-website.server-daten.de/?q=bsky.app - 2026-03-03 15:48:21

Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=bsky.app" target="_blank">Check this Site: bsky.app</a>

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

QR-Code of this page - https://check-your-website.server-daten.de/?d=bsky.app

Check DNS, Urls + Redirects, Certificates and Content of your Website

Older results

1. IP-Addresses

2. DNSSEC

3. Name Servers

4. SOA-Entries

5. Screenshots

Mobile- and other Chrome-Checks

6. Url-Checks

7. Comments

1. General Results, most used to calculate the result

2. Header-Checks

3. DNS- and NameServer - Checks

4. Content- and Performance-critical Checks

8. Connections

9. Certificates

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

11. Html-Content - Entries

Summary

Details (currently limited to 500 rows - some problems with spam users)

12. Html-Parsing via https://validator.w3.org/nu/

Summary

Details

13. Nameserver - IP-Adresses

14. CAA - Entries

15. TXT - Entries

16. DomainService - Entries

17. Cipher Suites

18. Portchecks