Check DNS, Urls + Redirects, Certificates and Content of your Website

...

skip EDNS-Check

skip Content-Check

check links

Top config

Checked:
17.10.2022 23:28:22

Older results

A - 16.09.2020 21:22:16

B - 10.05.2020 06:46:55

B - 10.05.2020 02:54:17

N - 21.11.2019 18:39:20

N - 21.11.2019 18:13:48

1. IP-Addresses

Host	Type	IP-Address	is auth.	∑ Queries	∑ Timeout
carolinechapron.com	A	52.215.137.200 Dublin/Leinster/Ireland (IE) - Amazon.com, Inc. Hostname: ec2-52-215-137-200.eu-west-1.compute.amazonaws.com	yes	1	0
	AAAA		yes
www.carolinechapron.com	A	52.215.137.200 Dublin/Leinster/Ireland (IE) - Amazon.com, Inc. Hostname: ec2-52-215-137-200.eu-west-1.compute.amazonaws.com	yes	1	0
	AAAA		yes
*.carolinechapron.com	A	Name Error	yes
	AAAA	Name Error	yes
	CNAME	Name Error	yes

2. DNSSEC

Zone (*)	DNSSEC - Informations

Zone: (root)
(root)	1 DS RR published


	DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=


	• Status: Valid because published


	2 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 18733, Flags 256


	Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 01.11.2022, 00:00:00 +, Signature-Inception: 11.10.2022, 00:00:00 +, KeyTag 20326, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: com
com	1 DS RR in the parent zone found


	DS with Algorithm 8, KeyTag 30909, DigestType 2 and Digest 4tPJFvbe6scylOgmj7WIUESoM/xUWViPSpGEz8QaV2Y=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 30.10.2022, 17:00:00 +, Signature-Inception: 17.10.2022, 16:00:00 +, KeyTag 18733, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 18733 used to validate the DS RRSet in the parent zone


	3 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 30909, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 32298, Flags 256


	Public Key with Algorithm 8, KeyTag 53929, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 27.10.2022, 18:24:21 +, Signature-Inception: 12.10.2022, 18:19:21 +, KeyTag 30909, Signer-Name: com


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 30909 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 30909, DigestType 2 and Digest "4tPJFvbe6scylOgmj7WIUESoM/xUWViPSpGEz8QaV2Y=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: carolinechapron.com
carolinechapron.com	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "3gnrh41fk3f5hc38fcs17ff5mlsniv26" between the hashed NSEC3-owner "3gnravc2k3fqbvtnfg7um25tedomobi0" and the hashed NextOwner "3gnrndjdb611fa8eq6lllrefnga14ih9". So the parent zone confirmes the not-existence of a DS RR. Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner 3gnravc2k3fqbvtnfg7um25tedomobi0.com., Algorithm: 8, 2 Labels, original TTL: 86400 sec, Signature-expiration: 24.10.2022, 04:32:32 +, Signature-Inception: 17.10.2022, 03:22:32 +, KeyTag 53929, Signer-Name: com


	DS-Query in the parent zone sends valid NSEC3 RR with the Hash "ck0pojmg874ljref7efn8430qvit8bsm" as Owner. That's the Hash of "com" with the NextHashedOwnerName "ck0q2d6ni4i7eqh8na30ns61o48ul8g5". So that domain name is the Closest Encloser of "carolinechapron.com". Opt-Out: True. Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner ck0pojmg874ljref7efn8430qvit8bsm.com., Algorithm: 8, 2 Labels, original TTL: 86400 sec, Signature-expiration: 22.10.2022, 04:24:40 +, Signature-Inception: 15.10.2022, 03:14:40 +, KeyTag 32298, Signer-Name: com


	0 DNSKEY RR found




Zone: www.carolinechapron.com
www.carolinechapron.com	0 DS RR in the parent zone found

3. Name Servers

Domain	Nameserver	NS-IP
www.carolinechapron.com	• ns-506.awsdns-63.com / 758989b8a91eaa6347c0e27feb0a1605 -		•
carolinechapron.com	• ns-1080.awsdns-07.org / 4417f7861f4dffe0359d9f569a7a44d1 -	205.251.196.56 London/England/United Kingdom (GB) - Amazon.com	•
	•	2600:9000:5304:3800::1 Seattle/Washington/United States (US) - Amazon.com	•
	• ns-1770.awsdns-29.co.uk / 8e282f0a26716c5855bf07004a39ea8c -	205.251.198.234 Herndon/Virginia/United States (US) - Amazon.com	•
	•	2600:9000:5306:ea00::1 Seattle/Washington/United States (US) - Amazon.com	•
	• ns-506.awsdns-63.com / f21baec7c554e0397f44289ea1baa674 -	205.251.193.250 Roubaix/Hauts-de-France/France (FR) - Amazon.com	•
	•	2600:9000:5301:fa00::1 Seattle/Washington/United States (US) - Amazon.com	•
	• ns-739.awsdns-28.net / 247151882262ffdae0eb85e6de495a64 -	205.251.194.227 Herndon/Virginia/United States (US) - Amazon.com	•
	•	2600:9000:5302:e300::1 Seattle/Washington/United States (US) - Amazon.com	•
com	• a.gtld-servers.net / nnn1-par6		•
	• b.gtld-servers.net / nnn1-eltxl2		•
	• c.gtld-servers.net / nnn1-par6		•
	• d.gtld-servers.net / nnn1-par6		•
	• e.gtld-servers.net / nnn1-par6		•
	• f.gtld-servers.net / nnn1-fra5		•
	• g.gtld-servers.net / nnn1-fra5		•
	• h.gtld-servers.net / nnn1-fra5		•
	• i.gtld-servers.net / nnn1-fra5		•
	• j.gtld-servers.net / nnn1-lon5		•
	• k.gtld-servers.net / nnn1-lon5		•
	• l.gtld-servers.net / nnn1-lon5		•
	• m.gtld-servers.net / nnn1-lon5		•

4. SOA-Entries

Domain:	com
Zone-Name:	com
Primary:	a.gtld-servers.net
Mail:	nstld.verisign-grs.com
Serial:	1666042082
Refresh:	1800
Retry:	900
Expire:	604800
TTL:	86400
num Entries:	12

Domain:	com
Zone-Name:	com
Primary:	a.gtld-servers.net
Mail:	nstld.verisign-grs.com
Serial:	1666042097
Refresh:	1800
Retry:	900
Expire:	604800
TTL:	86400
num Entries:	1

Domain:	carolinechapron.com
Zone-Name:	carolinechapron.com
Primary:	ns-506.awsdns-63.com
Mail:	awsdns-hostmaster.amazon.com
Serial:	1
Refresh:	7200
Retry:	900
Expire:	1209600
TTL:	86400
num Entries:	8

Domain:	www.carolinechapron.com
Zone-Name:	carolinechapron.com
Primary:	ns-506.awsdns-63.com
Mail:	awsdns-hostmaster.amazon.com
Serial:	1
Refresh:	7200
Retry:	900
Expire:	1209600
TTL:	86400
num Entries:	1

5. Screenshots

Startaddress: https://www.carolinechapron.com/, address used: https://www.carolinechapron.com/, Screenshot created 2022-10-17 23:32:23 +00:0

Mobil (412px x 732px)

2061 milliseconds

Screenshot mobile - https://www.carolinechapron.com/

Mobil + Landscape (732px x 412px)

690 milliseconds

Screenshot mobile landscape - https://www.carolinechapron.com/

Screen (1280px x 1680px)

834 milliseconds

Screenshot Desktop - https://www.carolinechapron.com/

Mobile- and other Chrome-Checks

	width	height
visual Viewport	396	732
content Size	396	6815

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

6. Url-Checks

show header:

Domainname	Http-Status	redirect	Sec.	G
• http://carolinechapron.com/ 52.215.137.200	301	https://carolinechapron.com/ Html is minified: 108.70 %	0.077	A
Server: openresty/1.15.8.3
Date: Mon, 17 Oct 2022 21:29:06 GMT
Content-Type: text/html
Content-Length: 175
Connection: close
Location: https://carolinechapron.com/
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload

• http://www.carolinechapron.com/ 52.215.137.200	301	https://www.carolinechapron.com/ Html is minified: 108.70 %	0.083	A
Server: openresty/1.15.8.3
Date: Mon, 17 Oct 2022 21:29:06 GMT
Content-Type: text/html
Content-Length: 175
Connection: close
Location: https://www.carolinechapron.com/
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload

• https://carolinechapron.com/ 52.215.137.200	301	https://www.carolinechapron.com/	3.817	A
Server: openresty/1.15.8.3
Date: Mon, 17 Oct 2022 21:29:07 GMT
Content-Length: 0
Connection: close
Access-Control-Allow-Origin: *
Cache-Control: private
Location: https://www.carolinechapron.com/
X-UA-Compatible: IE=Edge,chrome=1
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload

• https://www.carolinechapron.com/ 52.215.137.200 Inline-JavaScript (∑/total): 10/1592 Inline-CSS (∑/total): 1/1018	200	Html is minified: 132.03 % Other inline scripts (∑/total): 6/1592	3.960	A
Server: openresty/1.15.8.3
Date: Mon, 17 Oct 2022 21:29:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 14094
Connection: close
Access-Control-Allow-Origin: *
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
X-UA-Compatible: IE=Edge,chrome=1
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload

• http://carolinechapron.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 52.215.137.200 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 109.66 % Other inline scripts (∑/total): 0/0	0.073	A
Not Found
Visible Content: 404 Not Found openresty/1.15.8.3
Server: openresty/1.15.8.3
Date: Mon, 17 Oct 2022 21:29:18 GMT
Content-Type: text/html
Content-Length: 159
Connection: close

• http://www.carolinechapron.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 52.215.137.200 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 109.66 % Other inline scripts (∑/total): 0/0	0.066	A
Not Found
Visible Content: 404 Not Found openresty/1.15.8.3
Server: openresty/1.15.8.3
Date: Mon, 17 Oct 2022 21:29:19 GMT
Content-Type: text/html
Content-Length: 159
Connection: close

• https://52.215.137.200/ 52.215.137.200	303	https://fabrik.io/sitenotfound.html	2.480	N
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Server: openresty/1.15.8.3
Date: Mon, 17 Oct 2022 21:29:20 GMT
Content-Length: 0
Connection: close
Access-Control-Allow-Origin: *
Cache-Control: private
Location: https://fabrik.io/sitenotfound.html
X-UA-Compatible: IE=Edge,chrome=1
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload

• https://fabrik.io/sitenotfound.html Inline-JavaScript (∑/total): 2/1208 Inline-CSS (∑/total): 0/0	200	Html is minified: 135.16 % Other inline scripts (∑/total): 1/1208	5.830	B
small visible content (num chars: 368) Fabrik Websites for Creatives Oops, it looks like that URL is not registered with Fabrik If you're the owner of this site it's possible that your subscription has expired or you have not added the domain. Log in to your dashboard to update your subscription or add a domain. Log In Fabrik Fabrik is completely free for 14 days. Show us what you're made of. Get Started
Content-Length: 4253
Connection: close
Content-Type: text/html; charset=utf-8
Date: Mon, 17 Oct 2022 21:29:23 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Encoding: gzip
ETag: "809b4050201dd81:0"
Last-Modified: Tue, 08 Feb 2022 19:16:03 GMT
Vary: Accept-Encoding
X-UA-Compatible: IE=Edge,chrome=1
Arr-Disable-Session-Affinity: true

7. Comments

	1. General Results, most used to calculate the result
A	name "carolinechapron.com" is domain, public suffix is ".com", top-level-domain is ".com", top-level-domain-type is "generic", tld-manager is "VeriSign Global Registry Services", num .com-domains preloaded: 75886 (complete: 199710)
A	Good: All ip addresses are public addresses
	Warning: Only one ip address found: carolinechapron.com has only one ip address.
	Warning: Only one ip address found: www.carolinechapron.com has only one ip address.
	Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: carolinechapron.com has no ipv6 address.
	Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: www.carolinechapron.com has no ipv6 address.
A	Good: No asked Authoritative Name Server had a timeout
A	https://52.215.137.200/ 52.215.137.200	303	https://fabrik.io/sitenotfound.html	Correct redirect https to https
A	Good: destination is https
A	Good - only one version with Http-Status 200
A	Good: one preferred version: www is preferred
A	Good: No cookie sent via http.
A	Good: HSTS has preload directive
	Warning: HSTS preload sent, but not in Preload-List. Never send a preload directive if you don't know what preload means. Check https://hstspreload.org/ to learn the basics about the Google-Preload list. If you send a preload directive, you should immediately add your domain to the HSTS preload list via https://hstspreload.org/ . If Google accepts the domain, so the status is "pending": Note that new entries are hardcoded into the Chrome source code and can take several months before they reach the stable version. So you will see this message some months. If you don't want that or if you don't understand "preload", but if you send a preload directive and if you have correct A-redirects, everybody can add your domain to that list. Then you may have problems, it's not easy to undo that. So if you don't want your domain preloaded, remove the preload directive.
	HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
A	Good: Some urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset):2 complete Content-Type - header (4 urls)
	http://carolinechapron.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 52.215.137.200			Url with incomplete Content-Type - header - missing charset
	http://www.carolinechapron.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 52.215.137.200			Url with incomplete Content-Type - header - missing charset
A	http://carolinechapron.com/ 52.215.137.200	301	https://carolinechapron.com/	Correct redirect http - https with the same domain name
A	http://www.carolinechapron.com/ 52.215.137.200	301	https://www.carolinechapron.com/	Correct redirect http - https with the same domain name
N	https://52.215.137.200/ 52.215.137.200	303	https://fabrik.io/sitenotfound.html	Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
	Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are different. So that domain requires Server Name Indication (SNI), so the server is able to select the correct certificate.: Domain carolinechapron.com, 1 ip addresses.
	Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are different. So that domain requires Server Name Indication (SNI), so the server is able to select the correct certificate.: Domain www.carolinechapron.com, 1 ip addresses.
B	No _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Read the result of server-daten.de (Url-Checks, Comments, Connections and DomainServiceRecords) to see a complete definition. Domainname: _mta-sts.carolinechapron.com
	2. Header-Checks
	3. DNS- and NameServer - Checks
A	Info:: 16 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 4 Name Servers.
A	Info:: 16 Queries complete, 16 with IPv6, 0 with IPv4.
A	Good: All DNS Queries done via IPv6.
	Ok (4 - 8):: An average of 4.0 queries per domain name server required to find all ip addresses of all name servers.
A	Info:: 4 different Name Servers found: ns-1080.awsdns-07.org, ns-1770.awsdns-29.co.uk, ns-506.awsdns-63.com, ns-739.awsdns-28.net, 4 Name Servers included in Delegation: ns-1080.awsdns-07.org, ns-1770.awsdns-29.co.uk, ns-506.awsdns-63.com, ns-739.awsdns-28.net, 4 Name Servers included in 1 Zone definitions: ns-1080.awsdns-07.org, ns-1770.awsdns-29.co.uk, ns-506.awsdns-63.com, ns-739.awsdns-28.net, 1 Name Servers listed in SOA.Primary: ns-506.awsdns-63.com.
A	Good: Only one SOA.Primary Name Server found.: ns-506.awsdns-63.com.
A	Good: SOA.Primary Name Server included in the delegation set.: ns-506.awsdns-63.com.
A	Good: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: ns-1080.awsdns-07.org, ns-1770.awsdns-29.co.uk, ns-506.awsdns-63.com, ns-739.awsdns-28.net
A	Good: All Name Server Domain Names have a Public Suffix.
A	Good: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
A	Good: All Name Server ip addresses are public.
A	Good: Minimal 2 different name servers (public suffix and public ip address) found: 4 different Name Servers found
A	Good: All name servers have ipv4- and ipv6-addresses.: 4 different Name Servers found
A	Good: Name servers with different Top Level Domains / Public Suffix List entries found: 4 Name Servers, 4 Top Level Domains: org, net, com, co.uk
A	Good: Name Servers with different domain names found.: 4 different Domains found
A	Good: Name servers with different Country locations found: 4 Name Servers, 3 Countries: FR, GB, US
A	Info: Ipv4-Subnet-list: 4 Name Servers, 1 different subnets (first Byte): 205., 1 different subnets (first two Bytes): 205.251., 4 different subnets (first three Bytes): 205.251.193., 205.251.194., 205.251.196., 205.251.198.
A	Good: Name Server IPv4-addresses from different subnet found:
A	Info: IPv6-Subnet-list: 4 Name Servers with IPv6, 1 different subnets (first block): 2600:, 1 different subnets (first two blocks): 2600:9000:, 4 different subnets (first three blocks): 2600:9000:5301:, 2600:9000:5302:, 2600:9000:5304:, 2600:9000:5306:, 4 different subnets (first four blocks): 2600:9000:5301:fa00:, 2600:9000:5302:e300:, 2600:9000:5304:3800:, 2600:9000:5306:ea00:
A	Good: Name Server IPv6 addresses from different subnets found.
A	Good: Nameserver supports TCP connections: 8 good Nameserver
A	Good: Nameserver supports Echo Capitalization: 8 good Nameserver
A	Good: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 8 good Nameserver
A	Good: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 8 good Nameserver
A	Good: All SOA have the same Serial Number
	Warning: No CAA entry with issue/issuewild found, every CAA can create a certificate. Read https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization to learn some basics about the idea of CAA. Your name server must support such an entry. Not all dns providers support CAA entries.
	4. Content- and Performance-critical Checks
A	Good: All checks /.well-known/acme-challenge/random-filename without redirects answer with the expected http status 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge should work. If it doesn't work: Check your vHost configuration (apachectl -S, httpd -S, nginx -T). Every combination of port and ServerName / ServerAlias (Apache) or Server (Nginx) must be unique. Merge duplicated entries in one vHost. If you use an IIS, extensionless files must be allowed in the /.well-known/acme-challenge subdirectory. Create a web.config in that directory. Content: <configuration><system.webServer><staticContent><mimeMap fileExtension="." mimeType="text/plain" /></staticContent></system.webServer></configuration>. If you have a redirect http ⇒ https, that's ok, Letsencrypt follows such redirects to port 80 / 443 (same or other server). There must be a certificate. But the certificate may be expired, self signed or with a not matching domain name. Checking the validation file Letsencrypt ignores such certificate errors. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
A	Good: Every https result with status 200 and greater 1024 Bytes is compressed (gzip, deflate, br checked).
	https://www.carolinechapron.com/ 52.215.137.200	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://fabrik.io/sitenotfound.html	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://www.carolinechapron.com/ 52.215.137.200	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://fabrik.io/sitenotfound.html	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://www.carolinechapron.com/ 52.215.137.200	200		Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
	https://fabrik.io/sitenotfound.html	200		Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
A	Good: Some script Elements (type text/javascript) with a src-Attribute have a defer / async - Attribute. So loading and executing these JavaScripts doesn't block parsing and rendering the Html-Output.
	https://www.carolinechapron.com/ 52.215.137.200	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 4 script elements without defer/async.
	https://fabrik.io/sitenotfound.html	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 1 script elements without defer/async.
	Warning: CSS / JavaScript found without Compression. Compress these ressources, gzip, deflate, br are checked. 1 external CSS / JavaScript files without GZip found - 6 with GZip, 7 complete
A	Good: All images with internal compression not compressed. Some Images (.png, .jpg, .jpeg, .webp, .gif) are already compressed, so an additional compression isn't helpful. 1 images (type image/png, image/jpg) found without additional GZip. Not required because these images are already compressed
	Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 2 external CSS / JavaScript files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 1 with Cache-Control max-age too short (minimum 7 days), 6 with Cache-Control long enough, 9 complete.
	Warning: Images with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 40 image files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 1 with Cache-Control max-age too short (minimum 7 days), 20 with Cache-Control long enough, 61 complete.
A	Good: All checked attribute values are enclosed in quotation marks (" or ').
A	Good: Some img-elements have a valid alt-attribute.: 21 img-elements found, 1 img-elements with correct alt-attributes (defined, not an empty value).
	Wrong: img-elements without alt-attribute or empty alt-attribute found. The alt-attribute ("alternative") is required and should describe the img. So Screenreader and search engines are able to use these informations.: 20 img-elements without alt-attribute, 0 img-elements with empty alt-attribute found.
A	Good: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
	http://carolinechapron.com/ 52.215.137.200	301		Warning: HSTS header sent via http has no effect
	http://www.carolinechapron.com/ 52.215.137.200	301		Warning: HSTS header sent via http has no effect
A	Info: Different Server-Headers found
A	Duration: 253714 milliseconds, 253.714 seconds

8. Connections

Domain

Port

Cert.

Protocol

KeyExchange

Strength

Cipher

Strength

HashAlgorithm

OCSP stapling

Domain/KeyExchange

IP/Strength

Port/Cipher

Cert./Strength

Protocol/HashAlgorithm

OCSP stapling

carolinechapron.com

52.215.137.200

443

Tls12

ECDH Ephermal

384

Aes256

256

Sha384

supported

carolinechapron.com

52.215.137.200

443

Tls12

ECDH Ephermal

384

Aes256

256

Sha384

supported

no http/2 via ALPN
SNI required

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
SNI required

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=carolinechapron.com
	2	CN=R3, O=Let's Encrypt, C=US
	3	CN=ISRG Root X1, O=Internet Security Research Group, C=US

www.carolinechapron.com

52.215.137.200

443

Tls12

ECDH Ephermal

384

Aes256

256

Sha384

supported

www.carolinechapron.com

52.215.137.200

443

Tls12

ECDH Ephermal

384

Aes256

256

Sha384

supported

no http/2 via ALPN
SNI required

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
SNI required

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=www.carolinechapron.com
	2	CN=R3, O=Let's Encrypt, C=US
	3	CN=ISRG Root X1, O=Internet Security Research Group, C=US

fabrik.io

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

error checking OCSP stapling

fabrik.io

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

error checking OCSP stapling

no http/2 via ALPN

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

52.215.137.200

443

Certificate/chain invalid and wrong name

Tls12

ECDH Ephermal

384

Aes256

256

Sha384

not supported

52.215.137.200

443

Certificate/chain invalid and wrong name

Tls12

ECDH Ephermal

384

Aes256

256

Sha384

not supported

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

Self signed certificate		1	CN=sni-support-required-for-valid-ssl

9. Certificates

CN=carolinechapron.com

22.09.2022

21.12.2022
817 days expired

carolinechapron.com - 1 entry

CN=carolinechapron.com

22.09.2022

21.12.2022
817 days expired

carolinechapron.com - 1 entry

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	049549B0BA38DC18C3C4E3CF663A56E82A70
Thumbprint:	D9F6D21809D14AA2826CC9BC89256B7BAB547F50
SHA256 / Certificate:	xnB39QlMCnmMWVOPBPvVO9cgTKy9VkZw0jFnU+pBMck=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	70abb38098a6ffed2231c2291982c1cfb826d814892c675971e8c8945a7f4fa3
SHA256 hex / Subject Public Key Information (SPKI):	70abb38098a6ffed2231c2291982c1cfb826d814892c675971e8c8945a7f4fa3 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://r3.o.lencr.org
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=R3, O=Let's Encrypt, C=US

04.09.2020

15.09.2025
expires in 182 days

CN=R3, O=Let's Encrypt, C=US

04.09.2020

15.09.2025
expires in 182 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	00912B084ACF0C18A753F6D62E25A75F5A
Thumbprint:	A053375BFE84E8B748782C7CEE15827A6AF5A405
SHA256 / Certificate:	Z63RFmsCCuYbj1/JaBPATCqliZYHloZVcqPH5zdhPf0=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SHA256 hex / Subject Public Key Information (SPKI):	8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

CN=ISRG Root X1, O=Internet Security Research Group, C=US

04.06.2015

04.06.2035
expires in 3731 days

CN=ISRG Root X1, O=Internet Security Research Group, C=US

04.06.2015

04.06.2035
expires in 3731 days

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	008210CFB0D240E3594463E0BB63828B00
Thumbprint:	CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:	lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):	96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):	0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):	0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

CN=www.carolinechapron.com

26.09.2022

25.12.2022
813 days expired

www.carolinechapron.com - 1 entry

CN=www.carolinechapron.com

26.09.2022

25.12.2022
813 days expired

www.carolinechapron.com - 1 entry

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	04397A3F5848904D8C482EA0CCA456EB3E67
Thumbprint:	0784A7495B7FECA957EB83DDD2575019E98E28C7
SHA256 / Certificate:	uzDx+uHHTIvlx4XDVx5SXJKEk0keHwBqaVPHG5HPC+U=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	1d4fbaf16387c7129cc5805a3290f6cbcf1c950f6c4296869652a290d8c4d1ad
SHA256 hex / Subject Public Key Information (SPKI):	1d4fbaf16387c7129cc5805a3290f6cbcf1c950f6c4296869652a290d8c4d1ad (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://r3.o.lencr.org
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=R3, O=Let's Encrypt, C=US

04.09.2020

15.09.2025
expires in 182 days

CN=R3, O=Let's Encrypt, C=US

04.09.2020

15.09.2025
expires in 182 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	00912B084ACF0C18A753F6D62E25A75F5A
Thumbprint:	A053375BFE84E8B748782C7CEE15827A6AF5A405
SHA256 / Certificate:	Z63RFmsCCuYbj1/JaBPATCqliZYHloZVcqPH5zdhPf0=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SHA256 hex / Subject Public Key Information (SPKI):	8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

CN=ISRG Root X1, O=Internet Security Research Group, C=US

04.06.2015

04.06.2035
expires in 3731 days

CN=ISRG Root X1, O=Internet Security Research Group, C=US

04.06.2015

04.06.2035
expires in 3731 days

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	008210CFB0D240E3594463E0BB63828B00
Thumbprint:	CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:	lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):	96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):	0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):	0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

CN=sni-support-required-for-valid-ssl

10.06.2020

08.06.2030
expires in 1909 days

CN=sni-support-required-for-valid-ssl

10.06.2020

08.06.2030
expires in 1909 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	00A46C4916BDCED541
Thumbprint:	23373A1366E807DA6A626B3D4FA41E38421A6235
SHA256 / Certificate:	M3gucslhdLRooPE8q+JJJ4K0Bem7sIrEDfSi2MsNNsw=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	a523bedd85eecc78fc473e36eb09c0fc6a696a92576d1f17f7e15daa704af921
SHA256 hex / Subject Public Key Information (SPKI):	a523bedd85eecc78fc473e36eb09c0fc6a696a92576d1f17f7e15daa704af921
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

UntrustedRoot: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.

CN=*.fabrik.io

14.02.2022

18.03.2023
730 days expired

*.fabrik.io, fabrik.io - 2 entries

CN=*.fabrik.io

14.02.2022

18.03.2023
730 days expired

*.fabrik.io, fabrik.io - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	0C83FD1C5FB09F253BA94E6F012BF8E2
Thumbprint:	E198739C2C84495C3087E27257730F2CB5873F63
SHA256 / Certificate:	BnneqLcFGvdJUFNKbgVTgqXin/hH4CAjAEpC8dkbqYs=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	bd12ff99cdb215f0b5b7ab267f1335a20166b86f223a0f4d294930be8126a234
SHA256 hex / Subject Public Key Information (SPKI):	bd12ff99cdb215f0b5b7ab267f1335a20166b86f223a0f4d294930be8126a234 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://status.thawte.com
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=*.fabrik.io

14.02.2022

18.03.2023
730 days expired

*.fabrik.io, fabrik.io - 2 entries

CN=*.fabrik.io

14.02.2022

18.03.2023
730 days expired

*.fabrik.io, fabrik.io - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	0C83FD1C5FB09F253BA94E6F012BF8E2
Thumbprint:	E198739C2C84495C3087E27257730F2CB5873F63
SHA256 / Certificate:	BnneqLcFGvdJUFNKbgVTgqXin/hH4CAjAEpC8dkbqYs=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	bd12ff99cdb215f0b5b7ab267f1335a20166b86f223a0f4d294930be8126a234
SHA256 hex / Subject Public Key Information (SPKI):	bd12ff99cdb215f0b5b7ab267f1335a20166b86f223a0f4d294930be8126a234 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://status.thawte.com
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=Thawte RSA CA 2018, OU=www.digicert.com, O=DigiCert Inc, C=US

06.11.2017

06.11.2027
expires in 964 days

CN=Thawte RSA CA 2018, OU=www.digicert.com, O=DigiCert Inc, C=US

06.11.2017

06.11.2027
expires in 964 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	025A8AEF196F7E0D6C2104B21AE6702B
Thumbprint:	4DEEA7060D80BABF1643B4E0F0104C82995075B7
SHA256 / Certificate:	ml7s7px9iYvYHcO/Bm2vau+42xxZZ2IG0r/daCMSxvY=
SHA256 hex / Cert (DANE * 0 1):	9a5eecee9c7d898bd81dc3bf066daf6aefb8db1c59676206d2bfdd682312c6f6
SHA256 hex / PublicKey (DANE * 1 1):	4b49874e6aafd9084911fcb9bf23d51114a7c8c125889cdd0bc45776e3a3840b
SHA256 hex / Subject Public Key Information (SPKI):	4b49874e6aafd9084911fcb9bf23d51114a7c8c125889cdd0bc45776e3a3840b
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.digicert.com
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Server Authentication (1.3.6.1.5.5.7.3.1), Client Authentication (1.3.6.1.5.5.7.3.2)

CN=Thawte RSA CA 2018, OU=www.digicert.com, O=DigiCert Inc, C=US

06.11.2017

06.11.2027
expires in 964 days

CN=Thawte RSA CA 2018, OU=www.digicert.com, O=DigiCert Inc, C=US

06.11.2017

06.11.2027
expires in 964 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	025A8AEF196F7E0D6C2104B21AE6702B
Thumbprint:	4DEEA7060D80BABF1643B4E0F0104C82995075B7
SHA256 / Certificate:	ml7s7px9iYvYHcO/Bm2vau+42xxZZ2IG0r/daCMSxvY=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	4b49874e6aafd9084911fcb9bf23d51114a7c8c125889cdd0bc45776e3a3840b
SHA256 hex / Subject Public Key Information (SPKI):	4b49874e6aafd9084911fcb9bf23d51114a7c8c125889cdd0bc45776e3a3840b
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.digicert.com
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US

10.11.2006

10.11.2031
expires in 2429 days

CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US

10.11.2006

10.11.2031
expires in 2429 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA-1 with RSA Encryption
Serial Number:	083BE056904246B1A1756AC95991C74A
Thumbprint:	A8985D3A65E5E5C4B2D7D66D40C6DD2FB19C5436
SHA256 / Certificate:	Q0ig6URMeMsmXgWNXolEtNhPlmK9Jtslf4k0pEPHAWE=
SHA256 hex / Cert (DANE * 0 1):	4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161
SHA256 hex / PublicKey (DANE * 1 1):	aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SHA256 hex / Subject Public Key Information (SPKI):	aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US

07.12.2016

10.05.2025
expires in 54 days

CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US

07.12.2016

10.05.2025
expires in 54 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	0F5BC3A176CB789E2020C7893C8167B4
Thumbprint:	FB20FA8A6A93B375F054814F9E00273EA51A6138
SHA256 / Certificate:	bay7iUUTex2tQhGwQ2774G8SrONpBJc7Ra4ldAgj02k=
SHA256 hex / Cert (DANE * 0 1):	6dacbb8945137b1dad4211b0436efbe06f12ace36904973b45ae25740823d369
SHA256 hex / PublicKey (DANE * 1 1):	aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SHA256 hex / Subject Public Key Information (SPKI):	aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.digicert.com
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE

12.05.2000

13.05.2025
expires in 57 days

CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE

12.05.2000

13.05.2025
expires in 57 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA-1 with RSA Encryption
Serial Number:	020000B9
Thumbprint:	D4DE20D05E66FC53FE1A50882C78DB2852CAE474
SHA256 / Certificate:	Fq9XqfZ2sKsSYJWqXrre8iqzERnWRKyVzUuT2/Pyaus=
SHA256 hex / Cert (DANE * 0 1):	16af57a9f676b0ab126095aa5ebadef22ab31119d644ac95cd4b93dbf3f26aeb
SHA256 hex / PublicKey (DANE * 1 1):	63d9af9b47b1064d49a10e7b7fd566dbc8caa399459bfc2829c571ad8c6ef34a
SHA256 hex / Subject Public Key Information (SPKI):	63d9af9b47b1064d49a10e7b7fd566dbc8caa399459bfc2829c571ad8c6ef34a
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Small Code Update - wait one minute

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

Small Code Update - wait one minute

11. Html-Content - Entries

Summary

							Subresource Integrity (SRI)
Domainname	HtmlElement	rel/property	∑	∑ size	∑ problems	∑ int.	∑ ext.	∑ Origin poss.	∑ SRI ParseErrors	∑ SRI valid	∑ SRI missing
https://www.carolinechapron.com/ 52.215.137.200	a		50		0			0	0	0
	img		21	2,805,933 Bytes	0	0	21	20	0	0	-20
	link	alternate	1		0			0	0	0
	link	dns-prefetch	4		0			0	0	0
	link	stylesheet	2	61,101 Bytes	0	0	2	2	0	0	-2
	link	other	13	64,436 Bytes	0	0	12	12	0	0	-12
	meta	twitter	2	275,050 Bytes	0	0	1	1	0	0	-1
	meta	og	9	3,111,059 Bytes	0	1	4	4	0	0	-4
	meta	other	11	18,975 Bytes	0	1	2	2	0	0	-2
	script		5	88,209 Bytes	0	0	5	5	0	0	-5
https://fabrik.io/sitenotfound.html	a		10		0			0	0	0
	link	dns-prefetch	2		0			0	0	0
	link	stylesheet	1		0			0	0	0
	link	other	1		0			0	0	0
	meta	other	5		0			0	0	0
	script		1		0			0	0	0

Details (currently limited to 500 rows - some problems with spam users)

Domainname

Html-Element

name/equiv/ property/rel

href/src/content

HttpStatus

msg

∑

Status

https://www.carolinechapron.com/
52.215.137.200

/design

/pages/about

/photographie

/portfolio

/portfolio/aquarium-de-papier

/portfolio/arts-decoratifs-de-paris-choses-et-autres

/portfolio/caravane

/portfolio/clea

/portfolio/clea-1

/portfolio/clea-2

/portfolio/composteur-en-ceramique

/portfolio/creation-en-cours-residence-aux-ateliers-medicis

/portfolio/experimentations-impression-3d-et-moulage

/portfolio/filme-ton-quartier-imbriques

/portfolio/gravure-numerique

/portfolio/italie

/portfolio/le-courage-a-deux-mains

/portfolio/le-dernier-kilometre

/portfolio/le-garage-du-lycee

/portfolio/marguerites

/portfolio/mission-louvre-lens-lampe-de-mineur

/portfolio/odette-infracourts-largent-na-pas-dodeur

/portfolio/paysages-empruntes

/portfolio/posto-8

/portfolio/seraphine-editeur-b21

/portfolio/tremplin-jeune-talent

/portfolio/tricotines

/portfolio/vila-autodromo

https://fabrik.io/?utm_source=sites/55234&utm_campaign=fabrik-tag&utm_medium=Fabrik&utm_content=www.carolinechapron.com

img

src

https://www.facebook.com/tr?id=1622451731359438&ev=PageView&noscript=1

200

alt: facebook

text/plain
missing X-Content-Type-Options nosniff

0 Bytes

Server-Header Access-Control-Allow-Origin: not found

Cross-Origin Resource Sharing (CORS) not supported

img

src

https://static.fabrik.io/16ma/10a9b96d3a20e323.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=0577449a457b3254e468e771d2098495

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 39464 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/1dc6c2f23bd77980.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=54da38e98a4d64df9aa270c9d361f171

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 63581 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/1f91cc27d3385040.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=d26165f9dfd094dcd4c49f63d8d15c8f

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 169087 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/364a731c73110b08.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=d0b8c8ae36c88b9026cd4f45b994c553

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 111869 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/36dea6dc3f61277d.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=247ac7043c73723349ff4b674c2b0ed8

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 67086 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/43fbb1956e28db27.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=8a656513cc3690d5bc67ab595dd32c4e

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 112672 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/492d895317163b3d.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=c7fa0dce7090fca6a233ef2d7ca24a35

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 68034 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/73affb2ec11c9b5a.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=2448318e7648eb57d27114f1371e9f77

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 161528 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/8a8e243d494291d3.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=c100fc1926b705b36140e0e5e5a87e34

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 66320 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/8ab0398eacfd7472.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=4831ea0e95868dda17e1777a586e7d7f

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 92347 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/8e90147db62496af.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=dc6bfda16fff49c257861268af5816c2

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 93217 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/92b51c08e8cde38a.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=f986f7f8ac55637c302b4dd18af44800

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 164514 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/995668f2462516a.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=bc3445a29453688dcd9f71c4113c7e7b

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 149768 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/a4d79dcfc972f688.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=f60e6236e71539775d9c6f25522a143b

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 63870 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/ba08cfc77d3005d3.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=265849e2e3e6e4c92d7d9cec593f1e92

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 166287 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/c73f3d8c723dacf2.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=b5cf415402b9a709e77ccc04ad334f6e

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 119054 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/da41e957910db03.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=236187b423cbbc73b277d168d939a75d

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 40124 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/ddfe22750d5c174a.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=f7f9cd3a14f5d637929374f225fe8c3e

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 131955 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/e0c7a135de50c568.jpg?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=38c14767f217122468fb2e171b7c1105

200

no alt-Attribute

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 113115 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

img

src

https://static.fabrik.io/16ma/f21f2a9d3f49dbf9.png?lossless=1&w=960&ar=16:9&fit=crop&crop=faces,entropy&s=41b30f7684549cecc67985b6a0bbf1c4

200

no alt-Attribute

image/png
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 812041 Bytes

srcset

data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==

link

alternate

/blog/feed

link

apple-touch-icon

https://blob.fabrik.io/public/fabrik/favicons/apple-icon-120x120.png

200

image/png
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 with long duration found.

No Compression - 3706 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-bq1IEbv7FrtFas21bWFX7pHRa/ktdvQ+zdL8ZU2dCDg=
sha384-wKLxOzPokjjwSidZpB/yvj4jBjthxS5nSYa7szDg5Cy58IUWEsZx3xNiZCT3Pjmi
sha512-Lo9M3v9RyCQQq6jyrI2r/89tgU9YGDHGmmYxowhxGlJE2HgCAujk9OH9AcGhCLIdCNmT2GltP7czWkCPxy1kAQ==

link

apple-touch-icon

https://blob.fabrik.io/public/fabrik/favicons/apple-icon-152x152.png

200

image/png
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 with long duration found.

No Compression - 5045 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-7/8SIsHXIA/62kQR/e0uRH06aDDKEVNrsWyJr45/2Uk=
sha384-4v/k5ZYkSQ+EPbH4PgCV/YwRpZjt9tDtup2TdrRo5zLoNcX6ueBQ2nw5IJW16mOC
sha512-7S2RyocauVjRW/T/qKGDqmNdZQJLWtnoU1V8a3oMZN0QLyrnDWW1jzYvVk4SSpwKUdAQxdbWI4yVEYlGHEJZiA==

link

apple-touch-icon

https://blob.fabrik.io/public/fabrik/favicons/apple-icon-180x180.png

200

image/png
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 with long duration found.

No Compression - 6257 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-735UELVTq0aYO5nXwf0L4osdBA8x5HJE01h0RYBw2Lg=
sha384-0zFqS3CJaGm/+DdK08iKc5gLzN2nf8jtKx7MuKUvAmkc8jF1EsmcjAVtKsK0klNx
sha512-cmfNe7QWI/GynRXCJLru6ppqAxuyk3Li1PUF+Pc/AIstlIFUM1A54L2l+6+tsk1ifCFRgynLBjQQeJBNoC2fbA==

link

canonical

https://www.carolinechapron.com

link

dns-prefetch

//ajax.googleapis.com

link

dns-prefetch

//blob.fabrik.io

link

dns-prefetch

//fonts.googleapis.com

link

dns-prefetch

//static.fabrik.io

link

icon

https://blob.fabrik.io/public/fabrik/favicons/android-icon-192x192.png

200

image/png
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 with long duration found.

No Compression - 5205 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-qcUig1XaGfKkoV0tur50CgkiEAvlBnuGZtHo8S74Jd4=
sha384-YjyG697fjTGGIqGNcF6Xv/XHJ/rec/AdRdJKkBqI5awvXbI7WCwMCENAsXzawnHl
sha512-aY5CNX8ofW25ylS2NJSQfvYhFVZKMNccr4qxEJoua5z/ACG2hjeZLrcOt2UGbCD6W9uIzcCJdRizBtchjCuagg==

link

icon

https://blob.fabrik.io/public/fabrik/favicons/favicon.svg

200

image/svg+xml
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 with long duration found.

No Compression - 1311 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-k6ar+YOiz2AkFX2nWITnHnsOaB0zUXKTPAAPGg/Ez60=
sha384-KBLrcrCa1HjJi1QI3sd07rfieuSYERVD6/usGPmQB2AC0YFfOqUfX79RONjo5ZRr
sha512-l9B3/bSlecbARV51L6rbn6PZmN/bbONusAUDZPk/qIqLD0g7jfPY0VDF2591yuW1JzR0WxRpXVsOwA4E2kkHyA==

link

icon

https://blob.fabrik.io/public/fabrik/favicons/favicon-128x128.png

200

image/png
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 with long duration found.

No Compression - 5843 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-WwGs2OCkMXmNar7sr8hupw/sJIuMq2x2LkjnN6pNnG8=
sha384-HB0ACWjQ1vni5a9i8H9UGsROpl7xTSG4JuuUajLzGyVbp3S5ek/uqjvbElP3R6wz
sha512-2bVNPEIsVEzofz2XFajmqSzIC+rTs3Se+V8aET9a/HThOlesGlXKbg9DzYDZJcBdk3b/a2HdBls+YMesm/1vhQ==

link

icon

https://blob.fabrik.io/public/fabrik/favicons/favicon-228x228.png

200

image/png
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 with long duration found.

No Compression - 14755 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-hMoS9q0vndCFj+P7ulUoDwZC67gpwObJwhHLfi8MM4Y=
sha384-4awKnXnbt43dW6WVMIRejpW11vgHLVJBK8LP+k24ZSYDx5FF77gaLVsVmWA7cYTi
sha512-BOKOd83Y3nlmKIlu00lA+bBadQiLDNOyx4463X5Iu095QqRwf39IWL0TPyTM/D6tEyK9bn13cbKL0NTh7Eqfyw==

link

icon

https://blob.fabrik.io/public/fabrik/favicons/favicon-32x32.png

200

image/png
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 with long duration found.

No Compression - 1478 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-1weZYQK8YGOfriOPEVnIUbzqQ8QM4geD68DqkuCM6xk=
sha384-oTwOAz+ULorO/0z3vdIoz9dr1fW4yu9hj5f/qeyRSE2KCCmd0o7X++BnsnXvoNYN
sha512-/e+yLNJBmNFwgZO2aarDCk3Sc4UzsebRHzUNSqJmQzMzB1LsIrLx/UJNYznsPU/i0jsNISaN2wn+g6WAVnhinQ==

link

icon

https://blob.fabrik.io/public/fabrik/favicons/favicon-96x96.png

200

image/png
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 with long duration found.

No Compression - 3072 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-BEg7AR+6YugVYZ76foyqMO3Q2XB/AmXruR+V3ULWaUw=
sha384-nuld0GlJdlMA4yZnSPY+t8aLpoOHFoiwBfO4mL8lETZdCfnyrqPEHrHB+TfuKH37
sha512-DrSkJHg97uQ/rzMUxaO1lPxC6YtM5UP9skL7+UaCloz56LdgUYQ/vV2kn1cB0GO26u7mRxoyR+d9Jkq6jesLLg==

link

preload

https://blob.fabrik.io/themes/canvas/fonts/v1/canvas.woff2

200

font/woff2
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 with long duration found.

No Compression (): 888/888 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-/mDdqebktQIo7T10V+MHCGUZQ19FLTIe1zM3MOwDMO0=
sha384-DxZh/qYszy4b/M2JvIfsD6Rp0JVbcnJ8dnSiWKav3wHD+DIZPF9EKW5+rPvfi+53
sha512-gS/BxmWh1YvjXj6NyhoOlwD791hAu8RK4YQh7RWAPC/O0+DwqQp0g5X2dIlg6B4SKIIO6revQ3XPnKVqwf16Bw==

link

preload

https://blob.fabrik.io/themes/social-icons/round-solid/v8/fonts/round-solid.woff2

200

font/woff2
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 with long duration found.

No Compression (): 5136/5136 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-5rbIdEcPf7AOfD3Hg2Aw4xFtNNdOAzDxpUZb43CJ9fk=
sha384-2uK9cvFIhHJET4Cunoxdta+tPBY5Mws3os2TYAzM6l9r8VdRHtzrE/l5eCYNGszz
sha512-I8vRRyX62DjyjxcY1l3EWg/D5UzMKPiGtwgnA3I7akygHuHZEWqLP0mD3mrYsbEMNKPuoyhOcJXfklodMLaWbg==

link

shortcut icon

https://blob.fabrik.io/public/fabrik/favicons/favicon-196x196.png

200

image/png
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 with long duration found.

No Compression - 11740 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-l2PBk+qDPPt20eBRGJAWqmtfrnRexArNpF5ukbPahak=
sha384-L77iYGAiLhgF6cf+OFhQEKUndgwpe16loXCpbkn4xTvHQVR5mlis9ButxuiGzVwt
sha512-RyEMD6RGRZ6HZo0EQrwhmfO8R+Ijb/N66jxcabeuxlgJ8kvo1ZkACASY47erXxIAb9G+KARGwTY0RqDf9jKgyw==

link

stylesheet

https://blob.fabrik.io/16ma/2d7044c150dad57b.css

200

text/css
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 - with long duration found.

Compression required: 59932 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-yEaoO3RWJkNOvljSm/det4iRDxOZP05yjssMLrt+B20=
sha384-q9OlRSAJlE5juqeW/5ORrBQsxdSc5X5tgeognVR82M0nR4Pq6YAnPM7rrSEktpsZ
sha512-3hKJ6vvoXoyViO3v2beTemPYEktzv/JY/pmt/iW0i6sY+ytHZmB1V9dDzEOuDUjp5eT0fJg3cvsTmucvYfcnTQ==

Content loaded via url("...")

data:font/woff;base64,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

data:font/woff2;base64,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

https://blob.fabrik.io/themes/canvas/fonts/v1/canvas.eot

https://blob.fabrik.io/themes/canvas/fonts/v1/canvas.eot?#iefix

https://blob.fabrik.io/themes/canvas/fonts/v1/canvas.svg#canvas

https://blob.fabrik.io/themes/canvas/fonts/v1/canvas.ttf

https://blob.fabrik.io/themes/canvas/fonts/v1/canvas.woff

https://blob.fabrik.io/themes/canvas/fonts/v1/canvas.woff2

https://blob.fabrik.io/themes/social-icons/round-solid/v1/round-solid.eot

https://blob.fabrik.io/themes/social-icons/round-solid/v1/round-solid.eot?#iefix

https://blob.fabrik.io/themes/social-icons/round-solid/v1/round-solid.svg#round-solid

https://blob.fabrik.io/themes/social-icons/round-solid/v1/round-solid.ttf

https://blob.fabrik.io/themes/social-icons/round-solid/v1/round-solid.woff

https://blob.fabrik.io/themes/social-icons/round-solid/v1/round-solid.woff2

link

stylesheet

https://blob.fabrik.io/themes/dist/1.6/fabrik.min.css

200

text/css
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 - with long duration found.

Compression required: 1169 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-xNPHKK+Jl404dvXjQZ1h3gI/g3yAwGxJPhT6YRv/NT0=
sha384-E9d30SsdHmws3AHdrA5DwJe+QuRV0Vf+fDxT+Xr+xknEVHolRl0kHPHgUecCY0WL
sha512-ZqhMIpuy8gUjrqHtuySaNFK6q8oZ0ehYt0wwrSe4hvVdB/F+TOG/G61XVaS6ZKn0Y5GilXhZ3UuvY2TVQxPO1Q==

meta

charset

UTF-8

meta

fb:app_id

555791817935622

meta

og:description

Designer et artiste diplômée des Arts Décoratifs de Paris

meta

og:image

https://static.fabrik.io/16ma/1f91cc27d3385040.jpg?lossless=1&w=1280&h=1280&fit=max&s=303f2542c698f32d01997c9962d2214b

200

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 375460 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-EPCMSTVbTVglGC+LQnQ9rmlQ0UMGT0TjlBTsMJX1q+s=
sha384-qngOrQDbs1m1pAUONKD2c8E6mOK8sBjLRnWjb1XiBsYDRW+mMhb3wwd/vyZqJQzQ
sha512-3njNALKp82PGyqdIyzOu1lcOrxdQvSbrZUd4mK24h20wxyBqnaV46qT5VaV8X/InA6fVcThGEJxMm1zaIiEM8w==

meta

og:image

https://static.fabrik.io/16ma/995668f2462516a.jpg?lossless=1&w=1280&h=1280&fit=max&s=8844c3b4c2dded20605d1215fedcdee9

200

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 264229 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-DPYMDGi3A8GEHCgUw6exP/7GdYHd+oNPXTRecTX0BV4=
sha384-Uc2bAvSB4eXC97nbzEtRWrZKKA9IEA47vwcpur+rtcQ5UJ4jk6fd/pbisQbtN2RE
sha512-qZV1T4F5pojcTBFc4+5yiCfP/4I1K7pMSYbFkC0n4b5uks4N0VFk6HJ9F0L3/ZQ4rej5+vErAFFr+iCm21dl6A==

meta

og:image

https://static.fabrik.io/16ma/ddfe22750d5c174a.jpg?lossless=1&w=1280&h=1280&fit=max&s=5325d374dfc65c5d28b68db36d73b555

200

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 275050 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-mR0ehZIrmjJF+aCuEglI73Mcuwc0Q6yJwbxej5lMvVk=
sha384-J5LLh5FMKU7/oYv+/h2YpyeBHRG+AlgTV/DWfW5oGwrbcktHbDh5oujRN4nwV9Dw
sha512-paPjlJlenbK3BBG8CkL5qhyUPhT5sXdfdjqowI8ZQ+pUygetSd+p7JAsPxYzOeeKgDVkVK5CZxoL13uV7BWTiw==

meta

og:image

https://static.fabrik.io/16ma/f21f2a9d3f49dbf9.png?lossless=1&w=1280&h=1280&fit=max&s=3c414ae82a4857b4058c6b0a1029c62c

200

image/png
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 2182228 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-2QGWmArlQ7rM1/yuibE5TGOnSANLtBG15r2EMN521Nc=
sha384-47Zk6sDdLhOIF/uvwwUFASMhSx7IVvYgbY2K31q8BsVdbKBr7BI2opO4m+aD8v1v
sha512-ootpMcosb9ejD+zYYm3wkEK3pPcWXEc9XVVoLRy15OIZ6jLYQMSI+wV65cALcWGvBcnuHgHCqEcnbPG/mo3C1A==

meta

og:site_name

caroline chapron designer

meta

og:title

caroline chapron designer

meta

og:type

website

meta

og:url

https://www.carolinechapron.com

200

text/html; charset=utf-8
missing X-Content-Type-Options nosniff

14092 Bytes

meta

Content-type

text/html; charset=UTF-8

meta

X-UA-Compatible

IE=edge

meta

description

Designer et artiste diplômée des Arts Décoratifs de Paris

meta

keywords

caroline, chapron, designer, artiste, photographe, ensad, paris, zero, déchet, développement, durable, résidence, travail, contemporain, prix, talent

meta

msapplication-config

https://blob.fabrik.io/public/fabrik/favicons/ieconfig.xml

200

application/xml
missing X-Content-Type-Options nosniff

186 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-vhY3Odsdn1xQKU17b7Wbs/H9SBIAYe1/CXmTmN6DUY4=
sha384-oF98mEWnvX+dwp5natDUTNx5IUYIKJc/C9WUxNnqj6pD2kdk+H3D/ZhXivDbHsZy
sha512-66O0+qL07d/gFvqtJXgrHvtMCmuwV/61DJxXX8FUrS5dbxpxEQIjBwbGRoOO3QKgRrCm7v9h/2P+8MfZVfFkiQ==

meta

msapplication-TileColor

#FFFFFF

meta

msapplication-TileImage

https://blob.fabrik.io/public/fabrik/favicons/ms-icon-144x144.png

200

image/png
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 with long duration found.

No Compression - 4697 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-Kl0J2Ot1GJo6NKMxI/w+yjJXxFMwx90dmvSxqTCKZ2E=
sha384-se651gll4KUjZ/t/2rgqh6bdANhs/4qig7FRnAxvQEgg3n9GJdLcuVA+TEQSQbFW
sha512-/iJOFYZS/yaz8fycBL5tzi3zkJi/heozrAue8avfE0Weo779H+CL3wg5ncHG1qroUTbhxOLJ6+SxhJqS9F6fcg==

meta

twitter:card

summary_large_image

meta

twitter:image

https://static.fabrik.io/16ma/ddfe22750d5c174a.jpg?lossless=1&w=1280&h=1280&fit=max&s=5325d374dfc65c5d28b68db36d73b555

200

image/jpeg
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000 with long duration found.

No Compression - 275050 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

meta

url

https://www.carolinechapron.com

200

text/html; charset=utf-8
missing X-Content-Type-Options nosniff

14092 Bytes

meta

viewport

initial-scale=1

script

src

//ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js

200

Missing defer / async attribute.

text/javascript; charset=UTF-8
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000 - with long duration found.

Compression required: 33951 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-ZosEbRLbNQzLpnKIkEdrPv7lOy9C27hHQ+Xp8a4MxAQ=
sha384-nvAa0+6Qg9clwYCGGPpDQLVpLNn0fRaROjHqs13t4Ggj3Ez50XnGQqc/r8MhnRDZ
sha512-jGsMH83oKe9asCpkOVkBnUrDDTp8wl+adkB2D+//JtlxO4SrLoJdhbOysIFQJloQFD+C4Fl1rMsQZF76JjV0eQ==

script

src

https://blob.fabrik.io/themes/canvas/js/1.9/canvas.min.js

200

Missing defer / async attribute.

application/javascript
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 - with long duration found.

Compression required: 41452 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-Bs80pjLzrBS1QTRQUQRkKL/TjpQcGxwwCbH/cAlZV2w=
sha384-aWBPnrBS3aJRcNDrWIEZKzSlufbs5JJGMOreeYCPz0qEmVijXJlPaauBrJMdkptt
sha512-LKfmjDPjGWY2Ftqo3MqO2dN0IBHPrQAUZSi+kB0uaaESZCabjnmfF7CB4HArFGWYVZtSMhzLo9Z4B8XwA++6iA==

script

src

https://blob.fabrik.io/themes/dist/1.6/modernizr.min.js

200

Missing defer / async attribute.

application/javascript
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 - with long duration found.

Compression required: 3580 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-YkxbLCRW/znmzURT4rHUJFTW07KNodP+Eqi5xNMwq0o=
sha384-wpGi6BKnha87bKNbRxKK26f8kTp7Goe2WIwpVGMxYaaJXkDj4yNcNv1n+NQT7pUv
sha512-bjJpdMWRfRdL+vAMeBMoBz1nny27bgnxVJdtJXxmfQvbOGhCuTi0iqvRDEA9k7A5PH1+Y6BJYUGrV0YlmW1DhA==

script

src

https://blob.fabrik.io/themes/dist/1.7/fabrik.min.js

200

Missing defer / async attribute.

application/javascript
missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 - with long duration found.

Compression required: 9226 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-CNvxxR9Jw4UQ4/jr1+NuyyEoNIio06a6iScPncRjxTk=
sha384-LCWH4ClO+r3COxesr0Zzgy4PIgpugu9pqaFEkY0jwpNJWHI8lhG9vsqCeB3DkyzO
sha512-N3lyqN9nXTLyH3F6OlHXhNtIFpQAmH7t0BI5fHqOd5rL+pU/NFd//VHa+ghX8P3gn/lHsj2/qT35biet5AF92w==

script

src

https://www.googletagmanager.com/gtag/js?id=UA-52102233-1

200

async attribute found

application/javascript; charset=UTF-8
missing X-Content-Type-Options nosniff

Cache-Control: private, max-age=900 - max-age too short.

Compression required: 41593 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-5PHZtqn6qFxg/qmgcqrQXiqmYBo0AEO9tpIO3+pZZK8=
sha384-2YpOfWCSOsTiL6hJ7J0IfqeWHijMZvia7pasRCiXcSqr/Ii1LSx8wZ7+S3Qbd9mY
sha512-zpG9hDTQwDHzYur6cnW9JkfV6luxhhb7s885Et/jnU2O67Oonn28dtjx4jhGJboQ1qz9Rj4NAM8ZeHqE62pQUA==

https://fabrik.io/sitenotfound.html

/app

/themes

http://vimeo.com/fabrikfilms

https://fabrik.io/contact

https://twitter.com/fabriktweets

https://www.facebook.com/fabrikpage

mailto:info@fabrik.io

link

author

https://fabrik.io/

link

dns-prefetch

//ajax.googleapis.com

link

dns-prefetch

//blob.fabrik.io

link

stylesheet

https://blob.fabrik.io/public/fabrik/dist/1.2/site.min.css

meta

charset

UTF-8

meta

description

Oops, it looks like the requested URL is not registered with Fabrik

meta

generator

Fabrik

meta

rating

general

meta

viewport

width=device-width, height=device-height, initial-scale=1.0, user-scalable=0, minimum-scale=1.0, maximum-scale=1.0

script

src

https://blob.fabrik.io/public/fabrik/dist/1.2/modernizr.min.js

Missing defer / async attribute.

12. Html-Parsing via https://validator.w3.org/nu/

Small Code update, wait one minute

13. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: ns-1080.awsdns-07.org, ns-1770.awsdns-29.co.uk, ns-506.awsdns-63.com, ns-739.awsdns-28.net

QNr.	Domain	Type	NS used
1	org	NS	b.root-servers.net (2001:500:200::b)
	Answer: a0.org.afilias-nst.info, a2.org.afilias-nst.info, b0.org.afilias-nst.org, b2.org.afilias-nst.org, c0.org.afilias-nst.info, d0.org.afilias-nst.org
2	ns-1080.awsdns-07.org	NS	a0.org.afilias-nst.info (2001:500:e::1)
	Answer: g-ns-1034.awsdns-07.org, g-ns-135.awsdns-07.org, g-ns-1607.awsdns-07.org, g-ns-713.awsdns-07.org
	Answer: g-ns-713.awsdns-07.org 205.251.194.201, 2600:9000:5302:c900::1
	Answer: g-ns-1607.awsdns-07.org 205.251.198.71, 2600:9000:5306:4700::1
	Answer: g-ns-135.awsdns-07.org 205.251.192.135, 2600:9000:5300:8700::1
	Answer: g-ns-1034.awsdns-07.org 205.251.196.10, 2600:9000:5304:a00::1
3	uk	NS	e.root-servers.net (2001:500:a8::e)
	Answer: dns1.nic.uk, dns2.nic.uk, dns3.nic.uk, dns4.nic.uk, nsa.nic.uk, nsb.nic.uk, nsc.nic.uk, nsd.nic.uk
4	ns-1770.awsdns-29.co.uk	NS	dns1.nic.uk (2a01:618:400::1)
	Answer: g-ns-1504.awsdns-29.co.uk, g-ns-1825.awsdns-29.co.uk, g-ns-349.awsdns-29.co.uk, g-ns-925.awsdns-29.co.uk
	Answer: g-ns-925.awsdns-29.co.uk 205.251.195.157, 2600:9000:5303:9d00::1
	Answer: g-ns-349.awsdns-29.co.uk 205.251.193.93, 2600:9000:5301:5d00::1
	Answer: g-ns-1825.awsdns-29.co.uk 205.251.199.33, 2600:9000:5307:2100::1
	Answer: g-ns-1504.awsdns-29.co.uk 205.251.197.224, 2600:9000:5305:e000::1
5	com	NS	a.root-servers.net (2001:503:ba3e::2:30)
	Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
6	ns-506.awsdns-63.com	NS	a.gtld-servers.net (2001:503:a83e::2:30)
	Answer: g-ns-1215.awsdns-63.com, g-ns-1984.awsdns-63.com, g-ns-257.awsdns-63.com, g-ns-639.awsdns-63.com
	Answer: g-ns-639.awsdns-63.com 205.251.194.127, 2600:9000:5302:7f00::1
	Answer: g-ns-257.awsdns-63.com 205.251.193.1, 2600:9000:5301:100::1
	Answer: g-ns-1984.awsdns-63.com 205.251.199.192, 2600:9000:5307:c000::1
	Answer: g-ns-1215.awsdns-63.com 205.251.196.191, 2600:9000:5304:bf00::1
7	net	NS	a.root-servers.net (2001:503:ba3e::2:30)
	Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
8	ns-739.awsdns-28.net	NS	b.gtld-servers.net (2001:503:231d::2:30)
	Answer: g-ns-1372.awsdns-28.net, g-ns-1948.awsdns-28.net, g-ns-477.awsdns-28.net, g-ns-798.awsdns-28.net
	Answer: g-ns-798.awsdns-28.net 205.251.195.30, 2600:9000:5303:1e00::1
	Answer: g-ns-477.awsdns-28.net 205.251.193.221, 2600:9000:5301:dd00::1
	Answer: g-ns-1948.awsdns-28.net 205.251.199.156, 2600:9000:5307:9c00::1
	Answer: g-ns-1372.awsdns-28.net 205.251.197.92, 2600:9000:5305:5c00::1
9	ns-1080.awsdns-07.org: 205.251.196.56	A	g-ns-1034.awsdns-07.org (2600:9000:5304:a00::1)
10	ns-1080.awsdns-07.org: 2600:9000:5304:3800::1	AAAA	g-ns-1034.awsdns-07.org (2600:9000:5304:a00::1)
11	ns-1770.awsdns-29.co.uk: 205.251.198.234	A	g-ns-1504.awsdns-29.co.uk (2600:9000:5305:e000::1)
12	ns-1770.awsdns-29.co.uk: 2600:9000:5306:ea00::1	AAAA	g-ns-1504.awsdns-29.co.uk (2600:9000:5305:e000::1)
13	ns-506.awsdns-63.com: 205.251.193.250	A	g-ns-1215.awsdns-63.com (2600:9000:5304:bf00::1)
14	ns-506.awsdns-63.com: 2600:9000:5301:fa00::1	AAAA	g-ns-1215.awsdns-63.com (2600:9000:5304:bf00::1)
15	ns-739.awsdns-28.net: 205.251.194.227	A	g-ns-1372.awsdns-28.net (2600:9000:5305:5c00::1)
16	ns-739.awsdns-28.net: 2600:9000:5302:e300::1	AAAA	g-ns-1372.awsdns-28.net (2600:9000:5305:5c00::1)

14. CAA - Entries

Domainname	Value	∑ Queries
www.carolinechapron.com	no CAA entry found	1
carolinechapron.com	no CAA entry found	1
com	no CAA entry found	1

15. TXT - Entries

Domainname	Status	∑ Queries
carolinechapron.com	ok	1
www.carolinechapron.com	ok	1
_acme-challenge.carolinechapron.com	Name Error - The domain name does not exist	1
_acme-challenge.www.carolinechapron.com	Name Error - The domain name does not exist	1
_acme-challenge.carolinechapron.com.carolinechapron.com	Name Error - The domain name does not exist	1
_acme-challenge.www.carolinechapron.com.carolinechapron.com	Name Error - The domain name does not exist	1
_acme-challenge.www.carolinechapron.com.www.carolinechapron.com	Name Error - The domain name does not exist	1

16. DomainService - Entries

No DomainServiceEntries entries found

17. Cipher Suites

Summary
Domain	IP	Port	num Ciphers	time	Std.Protocol	Forward Secrecy
carolinechapron.com	52.215.137.200	443	10 Ciphers	56.13 sec		0 without, 10 FS	100.00 %
www.carolinechapron.com	52.215.137.200	443	10 Ciphers	55.68 sec		0 without, 10 FS	100.00 %
Complete		2	20 Ciphers 10.00 Ciphers/Check	111.81 sec	55.91 sec/Check	0 without, 20 FS	100.00 %

Details
Domain	IP	Port	Cipher (OpenSsl / IANA)
carolinechapron.com	52.215.137.200	443	ECDHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x30	FS
10 Ciphers, 56.13 sec			TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
			ECDH		RSA	AESGCM(256)	AEAD
			DHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0x00,0x9F	FS
			TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
			DH		RSA	AESGCM(256)	AEAD
			DHE-RSA-AES256-CCM8		(Secure)	TLSv1.2	0xC0,0xA3	FS
			TLS_DHE_RSA_WITH_AES_256_CCM_8
			DH		RSA	AESCCM8(256)	AEAD
			DHE-RSA-AES256-CCM		(Secure)	TLSv1.2	0xC0,0x9F	FS
			TLS_DHE_RSA_WITH_AES_256_CCM
			DH		RSA	AESCCM(256)	AEAD
			ECDHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x2F	FS
			TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
			ECDH		RSA	AESGCM(128)	AEAD
			DHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0x00,0x9E	FS
			TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
			DH		RSA	AESGCM(128)	AEAD
			ECDHE-RSA-AES256-SHA384		(Weak)	TLSv1.2	0xC0,0x28	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
			ECDH		RSA	AES(256)	SHA384
			DHE-RSA-AES256-SHA256		(Weak)	TLSv1.2	0x00,0x6B	FS
			TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
			DH		RSA	AES(256)	SHA256
			ECDHE-RSA-AES256-SHA		(Weak)	TLSv1	0xC0,0x14	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
			ECDH		RSA	AES(256)	SHA1
			DHE-RSA-AES256-SHA		(Weak)	SSLv3	0x00,0x39	FS
			TLS_DHE_RSA_WITH_AES_256_CBC_SHA
			DH		RSA	AES(256)	SHA1
www.carolinechapron.com	52.215.137.200	443	ECDHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x30	FS
10 Ciphers, 55.68 sec			TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
			ECDH		RSA	AESGCM(256)	AEAD
			DHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0x00,0x9F	FS
			TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
			DH		RSA	AESGCM(256)	AEAD
			DHE-RSA-AES256-CCM8		(Secure)	TLSv1.2	0xC0,0xA3	FS
			TLS_DHE_RSA_WITH_AES_256_CCM_8
			DH		RSA	AESCCM8(256)	AEAD
			DHE-RSA-AES256-CCM		(Secure)	TLSv1.2	0xC0,0x9F	FS
			TLS_DHE_RSA_WITH_AES_256_CCM
			DH		RSA	AESCCM(256)	AEAD
			ECDHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x2F	FS
			TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
			ECDH		RSA	AESGCM(128)	AEAD
			DHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0x00,0x9E	FS
			TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
			DH		RSA	AESGCM(128)	AEAD
			ECDHE-RSA-AES256-SHA384		(Weak)	TLSv1.2	0xC0,0x28	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
			ECDH		RSA	AES(256)	SHA384
			DHE-RSA-AES256-SHA256		(Weak)	TLSv1.2	0x00,0x6B	FS
			TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
			DH		RSA	AES(256)	SHA256
			ECDHE-RSA-AES256-SHA		(Weak)	TLSv1	0xC0,0x14	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
			ECDH		RSA	AES(256)	SHA1
			DHE-RSA-AES256-SHA		(Weak)	SSLv3	0x00,0x39	FS
			TLS_DHE_RSA_WITH_AES_256_CBC_SHA
			DH		RSA	AES(256)	SHA1

18. Portchecks

No open Ports <> 80 / 443 found, so no additional Ports checked.

Permalink: https://check-your-website.server-daten.de/?i=583bed5d-1546-4ddf-b00f-c356b7657fc8

Last Result: https://check-your-website.server-daten.de/?q=carolinechapron.com - 2022-10-17 23:28:22

Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=carolinechapron.com" target="_blank">Check this Site: carolinechapron.com</a>

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

QR-Code of this page - https://check-your-website.server-daten.de/?d=carolinechapron.com

Check DNS, Urls + Redirects, Certificates and Content of your Website

Older results

1. IP-Addresses

2. DNSSEC

3. Name Servers

4. SOA-Entries

5. Screenshots

Mobile- and other Chrome-Checks

6. Url-Checks

7. Comments

1. General Results, most used to calculate the result

2. Header-Checks

3. DNS- and NameServer - Checks

4. Content- and Performance-critical Checks

8. Connections

9. Certificates

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

11. Html-Content - Entries

Summary

Details (currently limited to 500 rows - some problems with spam users)

12. Html-Parsing via https://validator.w3.org/nu/

13. Nameserver - IP-Adresses

14. CAA - Entries

15. TXT - Entries

16. DomainService - Entries

17. Cipher Suites

18. Portchecks