Check DNS, Urls + Redirects, Certificates and Content of your Website

...

skip EDNS-Check

skip Content-Check

check links

Content problems - mixed content, missing files etc.

Checked:
19.11.2023 15:20:05

Older results

I - 03.10.2023 23:30:36

I - 26.07.2023 19:18:18

I - 26.07.2023 19:10:15

I - 05.08.2022 21:14:31

I - 30.10.2021 14:16:45

I - 30.09.2020 19:29:54

I - 24.05.2020 20:45:27

I - 29.08.2019 06:00:29

1. IP-Addresses

Host	Type	IP-Address	is auth.	∑ Queries	∑ Timeout
chase.com	A	159.53.42.11 New York/United States (US) - JPMorgan Chase & Co. No Hostname found	yes	1	0
	A	159.53.44.60 New York/United States (US) - JPMorgan Chase & Co. No Hostname found	yes	1	0
	A	159.53.84.126 New York/United States (US) - JPMorgan Chase & Co. No Hostname found	yes	1	0
	A	159.53.85.137 New York/United States (US) - JPMorgan Chase & Co. No Hostname found	yes	1	0
	A	159.53.113.168 New York/United States (US) - JPMorgan Chase & Co. No Hostname found	yes	1	0
	A	159.53.116.62 New York/United States (US) - JPMorgan Chase & Co. No Hostname found	yes	1	0
	A	159.53.224.21 New York/United States (US) - JPMorgan Chase & Co. No Hostname found	yes	1	0
	AAAA		yes
www.chase.com	CNAME	gtm.www.chase.com.akadns.net	yes	1	0
	CNAME	www.chase.com.edgekey.net	yes
www.chase.com	A	88.221.221.88 Berlin/Land Berlin/Germany (DE) - Akamai Technologies No Hostname found	no
	A	88.221.221.115 Berlin/Land Berlin/Germany (DE) - Akamai Technologies No Hostname found	no
*.chase.com	A		yes
	AAAA		yes
	CNAME		yes

2. DNSSEC

Zone (*)	DNSSEC - Informations

Zone: (root)
(root)	1 DS RR published


	DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=


	• Status: Valid because published


	2 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 46780, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 01.12.2023, 00:00:00 +, Signature-Inception: 10.11.2023, 00:00:00 +, KeyTag 20326, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: com
com	1 DS RR in the parent zone found


	DS with Algorithm 8, KeyTag 30909, DigestType 2 and Digest 4tPJFvbe6scylOgmj7WIUESoM/xUWViPSpGEz8QaV2Y=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 02.12.2023, 05:00:00 +, Signature-Inception: 19.11.2023, 04:00:00 +, KeyTag 46780, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 46780 used to validate the DS RRSet in the parent zone


	2 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 30909, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 63246, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 01.12.2023, 17:24:21 +, Signature-Inception: 16.11.2023, 17:19:21 +, KeyTag 30909, Signer-Name: com


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 30909 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 30909, DigestType 2 and Digest "4tPJFvbe6scylOgmj7WIUESoM/xUWViPSpGEz8QaV2Y=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: chase.com
chase.com	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "aio6vo95t5i4gcbf1mi36cggdhs2rdq0" between the hashed NSEC3-owner "aio6t84apj7hoibnfjoun840mm0b0dd3" and the hashed NextOwner "aio743uv99g635ivpkl11vdr7cbpa1k6". So the parent zone confirmes the not-existence of a DS RR. Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner aio6t84apj7hoibnfjoun840mm0b0dd3.com., Algorithm: 8, 2 Labels, original TTL: 86400 sec, Signature-expiration: 24.11.2023, 06:42:32 +, Signature-Inception: 17.11.2023, 05:32:32 +, KeyTag 63246, Signer-Name: com


	DS-Query in the parent zone sends valid NSEC3 RR with the Hash "ck0pojmg874ljref7efn8430qvit8bsm" as Owner. That's the Hash of "com" with the NextHashedOwnerName "ck0q2d6ni4i7eqh8na30ns61o48ul8g5". So that domain name is the Closest Encloser of "chase.com". Opt-Out: True. Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner ck0pojmg874ljref7efn8430qvit8bsm.com., Algorithm: 8, 2 Labels, original TTL: 86400 sec, Signature-expiration: 26.11.2023, 05:26:01 +, Signature-Inception: 19.11.2023, 04:16:01 +, KeyTag 63246, Signer-Name: com


	0 DNSKEY RR found




Zone: www.chase.com
www.chase.com	0 DS RR in the parent zone found

Zone: (root)
(root)	1 DS RR published


	DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=


	• Status: Valid because published


	2 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 46780, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 01.12.2023, 00:00:00 +, Signature-Inception: 10.11.2023, 00:00:00 +, KeyTag 20326, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: net
net	1 DS RR in the parent zone found


	DS with Algorithm 13, KeyTag 37331, DigestType 2 and Digest LwvsLW95370dCP0ho6+S0OOaS57x4/QRH/8oJJDaRTs=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner net., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 02.12.2023, 05:00:00 +, Signature-Inception: 19.11.2023, 04:00:00 +, KeyTag 46780, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 46780 used to validate the DS RRSet in the parent zone


	2 DNSKEY RR found


	Public Key with Algorithm 13, KeyTag 37331, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 13, KeyTag 44222, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner net., Algorithm: 13, 1 Labels, original TTL: 86400 sec, Signature-expiration: 24.11.2023, 15:10:35 +, Signature-Inception: 09.11.2023, 15:05:35 +, KeyTag 37331, Signer-Name: net


	• Status: Good - Algorithmus 13 and DNSKEY with KeyTag 37331 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 37331, DigestType 2 and Digest "LwvsLW95370dCP0ho6+S0OOaS57x4/QRH/8oJJDaRTs=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: akadns.net
akadns.net	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "o7vmn67931abl61dtsv9vl6cmbf3qroe" between the hashed NSEC3-owner "o7vm7jqq7m00i80kldebif0rta8109qg" and the hashed NextOwner "o7vs5of6q6srch5uq2n48i6ng8ta7955". So the parent zone confirmes the not-existence of a DS RR. Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner o7vm7jqq7m00i80kldebif0rta8109qg.net., Algorithm: 13, 2 Labels, original TTL: 86400 sec, Signature-expiration: 25.11.2023, 08:16:18 +, Signature-Inception: 18.11.2023, 07:06:18 +, KeyTag 44222, Signer-Name: net


	DS-Query in the parent zone sends valid NSEC3 RR with the Hash "a1rt98bs5qgc9nfi51s9hci47uljg6jh" as Owner. That's the Hash of "net" with the NextHashedOwnerName "a1rtlnpgulogn7b9a62shje1u3ttp8dr". So that domain name is the Closest Encloser of "akadns.net". Opt-Out: True. Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner a1rt98bs5qgc9nfi51s9hci47uljg6jh.net., Algorithm: 13, 2 Labels, original TTL: 86400 sec, Signature-expiration: 26.11.2023, 08:18:04 +, Signature-Inception: 19.11.2023, 07:08:04 +, KeyTag 44222, Signer-Name: net


	0 DNSKEY RR found




Zone: com.akadns.net
com.akadns.net	0 DS RR in the parent zone found


	0 DNSKEY RR found




Zone: chase.com.akadns.net
chase.com.akadns.net	0 DS RR in the parent zone found


	0 DNSKEY RR found




Zone: www.chase.com.akadns.net
www.chase.com.akadns.net	0 DS RR in the parent zone found


	0 DNSKEY RR found




Zone: gtm.www.chase.com.akadns.net
gtm.www.chase.com.akadns.net	0 DS RR in the parent zone found

3. Name Servers

Domain	Nameserver	NS-IP
chase.com	• ns0119.secondary.cloudflare.com / 67m59	162.159.32.120 Toronto/Ontario/Canada (CA) - Cloudflare, Inc.	•
	•	2606:4700:51::a29f:2078 Montreal/Quebec/Canada (CA) - Cloudflare, Inc.	•
	• ns0140.secondary.cloudflare.com / 67m66	162.159.33.15 Toronto/Ontario/Canada (CA) - Cloudflare, Inc.	•
	•	2606:4700:59::a29f:210f Montreal/Quebec/Canada (CA) - Cloudflare, Inc.	•
	• ns05.jpmorganchase.com	159.53.110.152 New York/United States (US) - JPMorgan Chase & Co.	•
	• ns06.jpmorganchase.com	159.53.110.153 New York/United States (US) - JPMorgan Chase & Co.	•
	• ns1.jpmorganchase.com	159.53.46.53 New York/United States (US) - JPMorgan Chase & Co.	•
	• ns2.jpmorganchase.com	159.53.78.53 New York/United States (US) - JPMorgan Chase & Co.	•
com	• a.gtld-servers.net / nnn1-par6		•
	• b.gtld-servers.net / nnn1-eltxl1		•
	• c.gtld-servers.net / nnn1-par6		•
	• d.gtld-servers.net / nnn1-par6		•
	• e.gtld-servers.net / nnn1-par6		•
	• f.gtld-servers.net / nnn1-defra-4		•
	• g.gtld-servers.net / nnn1-defra-4		•
	• h.gtld-servers.net / nnn1-defra-4		•
	• i.gtld-servers.net / nnn1-defra-4		•
	• j.gtld-servers.net / nnn1-gblon-3		•
	• k.gtld-servers.net / nnn1-gblon-3		•
	• l.gtld-servers.net / nnn1-gblon-3		•
	• m.gtld-servers.net / nnn1-gblon-3		•

www.chase.com.akadns.net	• internal.akadns.net
chase.com.akadns.net	• internal.akadns.net
com.akadns.net	• internal.akadns.net
akadns.net	• a11-129.akadns.net	84.53.139.129 Los Angeles/California/United States (US) - Akamai Technologies	•
	• a1-128.akadns.net	193.108.88.128 Paris/Île-de-France/France (FR) - Akamai International B.V.	•
	• a12-131.akagtm.org	184.26.160.131 Warsaw/Mazovia/Poland (PL) - Akamai International B.V.	•
	• a13-130.akagtm.org	2.22.230.130 Madrid/Spain (ES) - Akamai Technologies	•
	• a18-128.akagtm.org	95.101.36.128 Paris/Île-de-France/France (FR) - Akamai Technologies	•
	• a28-129.akagtm.org	95.100.173.129 Amsterdam/North Holland/Netherlands (NL) - Akamai Technologies	•
	• a3-129.akadns.net	96.7.49.129 Cambridge/Massachusetts/United States (US) - Akamai International B.V.	•
	•	2600:1408:1c::81 Cambridge/Massachusetts/United States (US) - Akamai International B.V.	•
	• a5-130.akagtm.org	95.100.168.130 Frankfurt am Main/Hesse/Germany (DE) - Akamai Technologies	•
	• a7-131.akadns.net	23.61.199.131 Cambridge/Massachusetts/United States (US) - Akamai International B.V.	•
	•	2600:1406:32::83 Learmonth/Western Australia/Australia (AU) - Akamai International B.V.	•
	• a9-128.akadns.net	184.85.248.128 Sacramento/California/United States (US) - Akamai International B.V.	•
	• internal.akadns.net
net	• a.gtld-servers.net / nnn1-par6		•
	• b.gtld-servers.net / nnn1-eltxl1		•
	• c.gtld-servers.net / nnn1-par6		•
	• d.gtld-servers.net / nnn1-par6		•
	• e.gtld-servers.net / nnn1-par6		•
	• f.gtld-servers.net / nnn1-defra-4		•
	• g.gtld-servers.net / nnn1-defra-4		•
	• h.gtld-servers.net / nnn1-defra-4		•
	• i.gtld-servers.net / nnn1-defra-4		•
	• j.gtld-servers.net / nnn1-gblon-3		•
	• k.gtld-servers.net / nnn1-gblon-3		•
	• l.gtld-servers.net / nnn1-gblon-3		•
	• m.gtld-servers.net / nnn1-gblon-3		•

4. SOA-Entries

Domain:	com
Zone-Name:	com
Primary:	a.gtld-servers.net
Mail:	nstld.verisign-grs.com
Serial:	1700403580
Refresh:	1800
Retry:	900
Expire:	604800
TTL:	86400
num Entries:	5

Domain:	com
Zone-Name:	com
Primary:	a.gtld-servers.net
Mail:	nstld.verisign-grs.com
Serial:	1700403595
Refresh:	1800
Retry:	900
Expire:	604800
TTL:	86400
num Entries:	8

Domain:	chase.com
Zone-Name:	chase.com
Primary:	ns1.jpmorganchase.com
Mail:	hostmaster.jpmchase.com
Serial:	656929959
Refresh:	10800
Retry:	1800
Expire:	1209600
TTL:	3600
num Entries:	8


Domain:	net
Zone-Name:	net
Primary:	a.gtld-servers.net
Mail:	nstld.verisign-grs.com
Serial:	1700403610
Refresh:	1800
Retry:	900
Expire:	604800
TTL:	86400
num Entries:	2

Domain:	net
Zone-Name:	net
Primary:	a.gtld-servers.net
Mail:	nstld.verisign-grs.com
Serial:	1700403625
Refresh:	1800
Retry:	900
Expire:	604800
TTL:	86400
num Entries:	11

Domain:	akadns.net
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:	1

Domain:	akadns.net
Zone-Name:	akadns.net
Primary:	internal.akadns.net
Mail:	hostmaster.akamai.com
Serial:	1629813934
Refresh:	90000
Retry:	90000
Expire:	90000
TTL:	180
num Entries:	12

Domain:	com.akadns.net
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:	1

Domain:	chase.com.akadns.net
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:	1

Domain:	www.chase.com.akadns.net
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:	1

5. Screenshots

Startaddress: https://www.chase.com/, address used: https://www.chase.com/, Screenshot created 2023-11-19 15:25:54 +00:0

Mobil (412px x 732px)

440 milliseconds

Screenshot mobile - https://www.chase.com/

Mobil + Landscape (732px x 412px)

421 milliseconds

Screenshot mobile landscape - https://www.chase.com/

Screen (1280px x 1680px)

607 milliseconds

Screenshot Desktop - https://www.chase.com/

Mobile- and other Chrome-Checks

	width	height
visual Viewport	396	732
content Size	396	5375

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

6. Url-Checks

show header:

Domainname	Http-Status	redirect	Sec.	G
• http://chase.com/ 159.53.42.11	301	https://www.chase.com/	0.220	E
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/ 159.53.44.60	301	https://www.chase.com/	0.237	E
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/ 159.53.84.126	301	https://www.chase.com/	0.233	E
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/ 159.53.85.137	301	https://www.chase.com/	0.233	E
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/ 159.53.113.168	301	https://www.chase.com/	0.250	E
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/ 159.53.116.62	301	https://www.chase.com/	0.250	E
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/ 159.53.224.21	301	https://www.chase.com/	0.327	E
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• http://www.chase.com/ 88.221.221.88	301	https://www.chase.com/	0.030	A
Content-Length: 0
Location: https://www.chase.com/
Cache-Control: max-age=0
Date: Sun, 19 Nov 2023 14:23:06 GMT
Connection: close
Server-Timing: cdn-cache; desc=HIT,edge; dur=1,ak_p; desc="1700403786727_1490935124_154409127_11_4850_9_0_-";dur=1
x-amzn-trace-id: 0.54dddd58.1700403786.93418a7

• http://www.chase.com/ 88.221.221.115	301	https://www.chase.com/	0.047	A
Content-Length: 0
Location: https://www.chase.com/
Cache-Control: max-age=0
Date: Sun, 19 Nov 2023 14:23:06 GMT
Connection: close
Server-Timing: cdn-cache; desc=HIT,edge; dur=1,ak_p; desc="1700403786689_1490935151_206674109_12_5018_9_0_-";dur=1
x-amzn-trace-id: 0.6fdddd58.1700403786.c5198bd

• https://chase.com/ 159.53.42.11	301	https://www.chase.com/	4.890	B
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• https://chase.com/ 159.53.44.60	301	https://www.chase.com/	4.890	B
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• https://chase.com/ 159.53.84.126	301	https://www.chase.com/	5.060	B
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• https://chase.com/ 159.53.85.137	301	https://www.chase.com/	5.090	B
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• https://chase.com/ 159.53.113.168	301	https://www.chase.com/	5.170	B
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• https://chase.com/ 159.53.116.62	301	https://www.chase.com/	5.233	B
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• https://chase.com/ 159.53.224.21	301	https://www.chase.com/	6.033	B
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• https://www.chase.com/ 88.221.221.88 GZip used - 17379 / 111478 - 84.41 % Inline-JavaScript (∑/total): 18/13661 Inline-CSS (∑/total): 2/4307	200	Html is minified: 161.30 %	2.590	I
X-Frame-Options: SAMEORIGIN
x-xss-protection: 1; mode=block
Last-Modified: Sat, 18 Nov 2023 09:24:27 GMT
Accept-Ranges: bytes
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Content-Security-Policy: frame-ancestors 'none'
Content-Security-Policy: frame-ancestors 'none'
Accept-CH: Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
Permissions-Policy: ch-ua-full-version-list=("https://.chase.com"),ch-ua-platform-version=("https://.chase.com"),ch-ua-arch=("https://.chase.com"),ch-ua-model=("https://.chase.com"),ch-ua-bitness=("https://.chase.com"),ch-ua-wow64=("https://.chase.com")
ETag: "1700299468:dtagent10267230522124059a2jG"
Content-Type: text/html; charset=UTF-8
X-Akamai-Transformed: 9 - 0 pmb=mRUM,2
Content-Encoding: gzip
Cache-Control: max-age=2176, s-maxage=3600
Date: Sun, 19 Nov 2023 14:23:55 GMT
Content-Length: 17379
Connection: close
Server-Timing: cdn-cache; desc=HIT,edge; dur=1,dtSInfo;desc="0", dtRpid;desc="-754759205",ak_p; desc="1700403835438_1490935124_154434283_743_5242_9_12_-";dur=1
Strict-Transport-Security: max-age=31536000
x-amzn-trace-id: 0.54dddd58.1700403835.9347aeb

• https://www.chase.com/ 88.221.221.115 GZip used - 17381 / 111480 - 84.41 % Inline-JavaScript (∑/total): 18/13663 Inline-CSS (∑/total): 2/4307	200	Html is minified: 161.30 %	2.670	I
X-Frame-Options: SAMEORIGIN
x-xss-protection: 1; mode=block
Last-Modified: Sat, 18 Nov 2023 09:24:27 GMT
Accept-Ranges: bytes
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Content-Security-Policy: frame-ancestors 'none'
Content-Security-Policy: frame-ancestors 'none'
Accept-CH: Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
Permissions-Policy: ch-ua-full-version-list=("https://.chase.com"),ch-ua-platform-version=("https://.chase.com"),ch-ua-arch=("https://.chase.com"),ch-ua-model=("https://.chase.com"),ch-ua-bitness=("https://.chase.com"),ch-ua-wow64=("https://.chase.com")
ETag: "1700299468:dtagent10267230522124059a2jG"
Content-Type: text/html; charset=UTF-8
X-Akamai-Transformed: 9 - 0 pmb=mRUM,2
Content-Encoding: gzip
Cache-Control: max-age=2217, s-maxage=3600
Date: Sun, 19 Nov 2023 14:23:51 GMT
Content-Length: 17381
Connection: close
Server-Timing: cdn-cache; desc=HIT,edge; dur=1,dtSInfo;desc="0", dtRpid;desc="-754759205",ak_p; desc="1700403831104_1490935151_206719166_19_4208_14_15_-";dur=1
Strict-Transport-Security: max-age=31536000
x-amzn-trace-id: 0.6fdddd58.1700403831.c5248be

• http://chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 159.53.42.11	301	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	0.200	E
Visible Content:
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 159.53.44.60	301	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	0.220	E
Visible Content:
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 159.53.84.126	301	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	0.237	E
Visible Content:
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 159.53.85.137	301	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	0.236	E
Visible Content:
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 159.53.113.168	301	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	0.233	E
Visible Content:
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 159.53.116.62	301	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	0.250	E
Visible Content:
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 159.53.224.21	301	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	0.327	E
Visible Content:
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: BigIP
Connection: close
Content-Length: 0

• http://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 88.221.221.88	301	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	0.453	A
Visible Content:
Content-Length: 0
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Cache-Control: max-age=0
Date: Sun, 19 Nov 2023 14:24:06 GMT
Connection: close
Server-Timing: cdn-cache; desc=HIT,edge; dur=1,ak_p; desc="1700403846199_1490935124_154439583_13_425871_9_0_-";dur=1
x-amzn-trace-id: 0.54dddd58.1700403846.9348f9f

• http://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 88.221.221.115	301	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	0.717	A
Visible Content:
Content-Length: 0
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Cache-Control: max-age=0
Date: Sun, 19 Nov 2023 14:24:05 GMT
Connection: close
Server-Timing: cdn-cache; desc=HIT,edge; dur=1,ak_p; desc="1700403845012_1490935151_206733994_12_681793_9_0_-";dur=1
x-amzn-trace-id: 0.6fdddd58.1700403845.c5282aa

• https://www.chase.com/resources/404.html	301	https://www.chase.com/digital/resources/oops.html	2.627	A
Visible Content:
X-Frame-Options: SAMEORIGIN
x-xss-protection: 1; mode=block
Location: https://www.chase.com/digital/resources/oops.html
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Access-Control-Allow-Origin: *
X-Content-Security-Policy: frame-ancestors 'none'
Content-Security-Policy: frame-ancestors 'none'
Accept-CH: Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
Permissions-Policy: ch-ua-full-version-list=("https://.chase.com"),ch-ua-platform-version=("https://.chase.com"),ch-ua-arch=("https://.chase.com"),ch-ua-model=("https://.chase.com"),ch-ua-bitness=("https://.chase.com"),ch-ua-wow64=("https://.chase.com")
Content-Length: 0
Content-Type: text/html;charset=utf-8
Cache-Control: max-age=39, s-maxage=900
Date: Sun, 19 Nov 2023 14:25:04 GMT
Connection: close
Server-Timing: cdn-cache; desc=HIT,edge; dur=23,origin; dur=0,dtSInfo;desc="0", dtRpid;desc="-1510013120",ak_p; desc="1700403904056_1490935151_206804856_2402_4720_10_13_-";dur=1
Strict-Transport-Security: max-age=31536000
x-amzn-trace-id: 0.6fdddd58.1700403904.c539778

• https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	https://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	3.234	B
Visible Content:
X-Frame-Options: SAMEORIGIN
x-xss-protection: 1; mode=block
Location: https://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Access-Control-Allow-Origin: *
X-Content-Security-Policy: frame-ancestors 'none'
Content-Security-Policy: frame-ancestors 'none'
Content-Length: 0
Cache-Control: max-age=299, s-maxage=300
Date: Sun, 19 Nov 2023 14:24:56 GMT
Connection: close
Set-Cookie: dtCookie=v_4_srv_22_sn_6D173D2B19CCA38241A60E529BF56557_perc_100000_ol_0_mul_1_app-3Ac0834ad25a3fd2c3_1_rcs-3Acss_0; Path=/; Domain=.chase.com,TS01afb5d0=01bde6ad2134647f12f8b966fd30a5d2e5b163bbd604765be8c400d91da658613316fe6c8d442173b1d8befd5762b3c2690289de1a; Path=/,TS01ddf986=01bde6ad2134647f12f8b966fd30a5d2e5b163bbd604765be8c400d91da658613316fe6c8d442173b1d8befd5762b3c2690289de1a; path=/; domain=.chase.com,ppnet_2777=!v2AelPUe9t7kZNAbYnpPQ+Rncf+wAE5FR4sgqedgK7ttPN41Vyx25N0NwbdTKxkbKrrUIeusCQJHYg==; path=/; Httponly; Secure
Server-Timing: cdn-cache; desc=MISS,edge; dur=41,origin; dur=133,dtSInfo;desc="0", dtRpid;desc="-20432761",ak_p; desc="1700403895760_1490935151_206792391_17399_427956_9_18_-";dur=1
Strict-Transport-Security: max-age=31536000
x-amzn-trace-id: 0.6fdddd58.1700403895.c5366c7

• https://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	https://www.chase.com/resources/404.html	2.733	B
Visible Content:
X-Frame-Options: SAMEORIGIN
x-xss-protection: 1; mode=block
Location: https://www.chase.com/resources/404.html
Content-Length: 0
Access-Control-Allow-Origin: *
X-Content-Security-Policy: frame-ancestors 'none'
Content-Security-Policy: frame-ancestors 'none'
Cache-Control: max-age=300, s-maxage=300
Date: Sun, 19 Nov 2023 14:25:00 GMT
Connection: close
Set-Cookie: dtCookie=v_4_srv_16_sn_2483FFD2E57D4EA0DE1660FBC806E1E2_perc_100000_ol_0_mul_1_app-3Ac0834ad25a3fd2c3_1_rcs-3Acss_0; Path=/; Domain=.chase.com,TS01afb5d0=01bde6ad21af0e10291f6f6009e51cdd169632612459e24338b1f9b4a2a7612a7fc03fcfb372d50cccd4bf1028f9e950837b88024c; Path=/,TS01ddf986=01bde6ad21af0e10291f6f6009e51cdd169632612459e24338b1f9b4a2a7612a7fc03fcfb372d50cccd4bf1028f9e950837b88024c; path=/; domain=.chase.com,ppnet_2777=!khcGtF8/DEoiYZ/ObZkJL7s51djrjgoue5VclViDEF+Gv3CnP7pJsiODghJLjOF0ssP9mxNWLfy8Jw==; path=/; Httponly; Secure
Server-Timing: cdn-cache; desc=MISS,edge; dur=22,origin; dur=123,dtSInfo;desc="0", dtRpid;desc="1627795157",ak_p; desc="1700403900150_1490935151_206799418_14661_6767_10_23_-";dur=1
Strict-Transport-Security: max-age=31536000
x-amzn-trace-id: 0.6fdddd58.1700403900.c53823a

• https://www.chase.com/digital/resources/oops.html GZip used - 31828 / 189078 - 83.17 % Inline-JavaScript (∑/total): 13/79651 Inline-CSS (∑/total): 2/45492	200	Html is minified: 301.22 %	3.170
Visible Content: Please turn on JavaScript in your browser It appears your web browser is not using JavaScript. Without it, some pages won't work properly. Please adjust the settings in your browser to make sure JavaScript is turned on. Skip to main content Personal , current product Business Commercial Schedule a meeting Customer service See help options Make a payment Find ATM or branch Español Search Open side menu Chase logo, links to Chase home Sign in Checking Choose a checking account Debit card for kids Savings & CDs Choose a savings account CDs Credit cards Explore credit cards Personal credit cards Business credit cards Sign in for offers Home loans Buy a home Refinance your mortgage Apply for a mortgage Access calculators and tools See current rates Manage account Homebuying 101 Auto Finance a car Shop for a car Manage your car Prequalify for financing Explore auto options Investing by J.P. Morgan Explore investing Work with our advisors Invest on your own Wealth Plan Plan your retirement Education planning Top stories Education & goals Education center Free credit score Financial goals Page not found...   Try one of these options: Return to homepage Customer help Other helpful links: Consumer links Personal checking or savings accounts Credit cards Home lending Auto Planning and investments Other Chase links Business banking Commercial banking Sitemap "Chase Private Client" is the brand name for a banking and investment product and service offering, requiring a Chase Private Client Checking℠ account. Investing in securities involves risks, and there is always the potential of losing money when you invest in securities. Past performance is not a guarantee of future results. J.P. Morgan Wealth Management is a business of JPMorgan Chase & Co., which offers investment products and services through J.P. Morgan Securities LLC (JPMS), a registered broker-dealer and investment adviser, member FINRA and SIPC . Insurance products are made available through Chase Insurance Agency, Inc. (CIA), a licensed insurance agency, doing business as Chase Insurance Agency Services, Inc. in Florida. Certain custody and other services are provided by JPMorgan Chase Bank, N.A. (JPMCB). JPMS, CIA and JPMCB are affiliated companies under the common control of JPMorgan Chase & Co. Products not available in all states. INVESTMENT AND INSURANCE PRODUCTS ARE: NOT FDIC INSURED NOT INSURED BY ANY FEDERAL GOVERNMENT AGENCY NOT A DEPOSIT OR OTHER OBLIGATION OF, OR GUARANTEED BY, JPMORGAN CHASE BANK, N.A. OR ANY OF ITS AFFILIATES SUBJECT TO INVESTMENT RISKS, INCLUDING POSSIBLE LOSS OF THE PRINCIPAL AMOUNT INVESTED Checking Accounts Choose the checking account that works best for you. See our Chase Total Checking ®  offer for new customers. Make purchases with your debit card, and bank from almost anywhere by phone, tablet or computer and more than 15,000 ATMs and more than 4,700 branches. Savings Accounts & CDs It’s never too early to begin saving. Open a savings account or open a Certificate of Deposit ( see interest rates ) and start saving your money. Credit Cards Chase credit cards  can help you buy the things you need. Many of our cards  offer rewards that can be redeemed for cash back  or travel-related perks. With so many options, it can be easy to find a card that matches your lifestyle. Plus, with Credit Journey you can get a  free credit score ! Mortgages Apply for a mortgage or refinance your mortgage with Chase. View today’s mortgage rates or calculate what you can afford with our mortgage calculator . Visit our Education Center for homebuying tips and more. Auto Chase Auto is here to help you get the right car. Apply for auto financing for a new or used car with Chase. Use the payment calculator to estimate monthly payments. Check out the Chase Auto Education Center to get car guidance from a trusted source. Chase for Business With Chase for Business you’ll receive guidance from a team of business professionals who specialize in helping improve cash flow, providing credit solutions, and managing payroll. Choose from business checking , business credit cards , merchant services or visit our business resource center . Investing by J.P. Morgan Whether you choose to work with a financial advisor  and develop a financial strategy or invest online , J.P. Morgan offers investment education , expertise and a range of tools to help you reach your goals. Visit a J.P. Morgan Wealth Management Branch or check out our latest online investing offers, promotions, and coupons . Chase Private Client Get more from a personalized relationship offering no everyday banking fees , priority service from a dedicated team and special perks and benefits . Connect with a Chase Private Client Banker at your nearest Chase branch to learn about eligibility requirements and all available benefits. About Chase Chase serves millions of people with a broad range of products. Chase online lets you manage your Chase accounts, view statements, monitor activity, pay bills or transfer funds securely from one central place. To learn more, visit the Banking Education Center . For questions or concerns, please contact Chase customer service or let us know about Chase complaints and feedback . Sports & Entertainment Chase gives you access to unique sports, entertainment and culinary events through Chase Experiences and our exclusive partnerships such as the US Open , Madison Square Garden and Chase Center . Chase Security Center Our suite of security features can help you protect your info, money and give you peace of mind. See how we're dedicated to helping protect you , your accounts and your loved ones from financial abuse . Also, learn about the common tricks scammers are using to help you stay one step ahead of them.  If you see unauthorized charges or believe your account was compromised contact us right away to report fraud . Other Products & Services: Deposit Account Agreements Mobile Banking Online Banking Student Center Zelle® Facebook, Opens overlay Instagram, Opens overlay Twitter, Opens overlay YouTube, Opens overlay LinkedIn, Opens overlay Pinterest, Opens overlay "Chase," "JPMorgan," "JPMorgan Chase," the JPMorgan Chase logo and the Octagon Symbol are trademarks of JPMorgan Chase Bank, N.A.  JPMorgan Chase Bank, N.A. is a wholly-owned subsidiary of JPMorgan Chase & Co.   Bank deposit accounts, such as checking and savings, may be subject to approval. Deposit products and related services are offered by JPMorgan Chase Bank, N.A. Member FDIC. About Chase J.P. Morgan JPMorgan Chase & Co. Media Center Careers Site Map Privacy & Security Terms of Use Accessibility AdChoices , Opens overlay Give feedback Member FDIC Equal Housing Opportunity © 2023 JPMorgan Chase & Co.
X-Frame-Options: SAMEORIGIN
x-xss-protection: 1; mode=block
Last-Modified: Sun, 19 Nov 2023 13:03:40 GMT
Accept-Ranges: bytes
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Content-Security-Policy: frame-ancestors 'none'
Content-Security-Policy: frame-ancestors 'none'
Accept-CH: Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
Permissions-Policy: ch-ua-full-version-list=("https://.chase.com"),ch-ua-platform-version=("https://.chase.com"),ch-ua-arch=("https://.chase.com"),ch-ua-model=("https://.chase.com"),ch-ua-bitness=("https://.chase.com"),ch-ua-wow64=("https://.chase.com")
ETag: "1700399021:dtagent10267230522124059a2jG"
Content-Type: text/html; charset=UTF-8
X-Akamai-Transformed: 9 - 0 pmb=mRUM,2
Content-Encoding: gzip
Cache-Control: max-age=98, s-maxage=900
Date: Sun, 19 Nov 2023 14:25:07 GMT
Content-Length: 31828
Connection: close
Server-Timing: cdn-cache; desc=HIT,edge; dur=23,origin; dur=0,dtSInfo;desc="0", dtRpid;desc="-260257659",ak_p; desc="1700403907911_1490935151_206810590_2290_5265_10_13_-";dur=1
Strict-Transport-Security: max-age=31536000
x-amzn-trace-id: 0.6fdddd58.1700403907.c53adde

• https://159.53.42.11/ 159.53.42.11	-3		5.124	W
ReceiveFailure - The underlying connection was closed: An unexpected error occurred on a receive.
Certificate error: RemoteCertificateNameMismatch

• https://159.53.44.60/ 159.53.44.60	-3		5.110	W
ReceiveFailure - The underlying connection was closed: An unexpected error occurred on a receive.
Certificate error: RemoteCertificateNameMismatch

• https://88.221.221.88/ 88.221.221.88	-10		0.030	P
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

• https://159.53.84.126/ 159.53.84.126	-3		5.296	W
ReceiveFailure - The underlying connection was closed: An unexpected error occurred on a receive.
Certificate error: RemoteCertificateNameMismatch

• https://159.53.85.137/ 159.53.85.137	-3		5.297	W
ReceiveFailure - The underlying connection was closed: An unexpected error occurred on a receive.
Certificate error: RemoteCertificateNameMismatch

• https://159.53.116.62/ 159.53.116.62	-3		5.407	W
ReceiveFailure - The underlying connection was closed: An unexpected error occurred on a receive.
Certificate error: RemoteCertificateNameMismatch

• https://159.53.224.21/ 159.53.224.21	-3		6.466	W
ReceiveFailure - The underlying connection was closed: An unexpected error occurred on a receive.
Certificate error: RemoteCertificateNameMismatch

• https://88.221.221.115/ 88.221.221.115	-10		0.033	P
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

• https://159.53.113.168/ 159.53.113.168	-3		5.420	W
ReceiveFailure - The underlying connection was closed: An unexpected error occurred on a receive.
Certificate error: RemoteCertificateNameMismatch

7. Comments

	1. General Results, most used to calculate the result
A	name "chase.com" is domain, public suffix is ".com", top-level-domain is ".com", top-level-domain-type is "generic", tld-manager is "VeriSign Global Registry Services", num .com-domains preloaded: 89449 (complete: 231048)
A	Good: All ip addresses are public addresses
A	Good: Minimal 2 ip addresses per domain name found: chase.com has 7 different ip addresses (authoritative).
	Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: chase.com has no ipv6 address.
A	Good: No asked Authoritative Name Server had a timeout
A	https://www.chase.com/resources/404.html	301	https://www.chase.com/digital/resources/oops.html	Correct redirect https to https
A	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	https://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	Correct redirect https to https
A	https://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	https://www.chase.com/resources/404.html	Correct redirect https to https
A	Good: destination is https
A	Good - only one version with Http-Status 200
A	Good: one preferred version: www is preferred
A	Good: No cookie sent via http.
	HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
A	Good: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
A	http://www.chase.com/ 88.221.221.88	301	https://www.chase.com/	Correct redirect http - https with the same domain name
A	http://www.chase.com/ 88.221.221.115	301	https://www.chase.com/	Correct redirect http - https with the same domain name
B	https://chase.com/ 159.53.42.11	301		Missing HSTS-Header
B	https://chase.com/ 159.53.44.60	301		Missing HSTS-Header
B	https://chase.com/ 159.53.84.126	301		Missing HSTS-Header
B	https://chase.com/ 159.53.85.137	301		Missing HSTS-Header
B	https://chase.com/ 159.53.113.168	301		Missing HSTS-Header
B	https://chase.com/ 159.53.116.62	301		Missing HSTS-Header
B	https://chase.com/ 159.53.224.21	301		Missing HSTS-Header
B	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	dtCookie=v_4_srv_22_sn_6D173D2B19CCA38241A60E529BF56557_perc_100000_ol_0_mul_1_app-3Ac0834ad25a3fd2c3_1_rcs-3Acss_0; Path=/; Domain=.chase.com	Cookie sent via https, but not marked as secure
B	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	TS01afb5d0=01bde6ad2134647f12f8b966fd30a5d2e5b163bbd604765be8c400d91da658613316fe6c8d442173b1d8befd5762b3c2690289de1a; Path=/	Cookie sent via https, but not marked as secure
B	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	TS01ddf986=01bde6ad2134647f12f8b966fd30a5d2e5b163bbd604765be8c400d91da658613316fe6c8d442173b1d8befd5762b3c2690289de1a; path=/; domain=.chase.com	Cookie sent via https, but not marked as secure
B	https://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	dtCookie=v_4_srv_16_sn_2483FFD2E57D4EA0DE1660FBC806E1E2_perc_100000_ol_0_mul_1_app-3Ac0834ad25a3fd2c3_1_rcs-3Acss_0; Path=/; Domain=.chase.com	Cookie sent via https, but not marked as secure
B	https://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	TS01afb5d0=01bde6ad21af0e10291f6f6009e51cdd169632612459e24338b1f9b4a2a7612a7fc03fcfb372d50cccd4bf1028f9e950837b88024c; Path=/	Cookie sent via https, but not marked as secure
B	https://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	TS01ddf986=01bde6ad21af0e10291f6f6009e51cdd169632612459e24338b1f9b4a2a7612a7fc03fcfb372d50cccd4bf1028f9e950837b88024c; path=/; domain=.chase.com	Cookie sent via https, but not marked as secure
B	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	dtCookie=v_4_srv_22_sn_6D173D2B19CCA38241A60E529BF56557_perc_100000_ol_0_mul_1_app-3Ac0834ad25a3fd2c3_1_rcs-3Acss_0; Path=/; Domain=.chase.com	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	TS01afb5d0=01bde6ad2134647f12f8b966fd30a5d2e5b163bbd604765be8c400d91da658613316fe6c8d442173b1d8befd5762b3c2690289de1a; Path=/	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	TS01ddf986=01bde6ad2134647f12f8b966fd30a5d2e5b163bbd604765be8c400d91da658613316fe6c8d442173b1d8befd5762b3c2690289de1a; path=/; domain=.chase.com	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	ppnet_2777=!v2AelPUe9t7kZNAbYnpPQ+Rncf+wAE5FR4sgqedgK7ttPN41Vyx25N0NwbdTKxkbKrrUIeusCQJHYg==; path=/; Httponly; Secure	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	dtCookie=v_4_srv_16_sn_2483FFD2E57D4EA0DE1660FBC806E1E2_perc_100000_ol_0_mul_1_app-3Ac0834ad25a3fd2c3_1_rcs-3Acss_0; Path=/; Domain=.chase.com	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	TS01afb5d0=01bde6ad21af0e10291f6f6009e51cdd169632612459e24338b1f9b4a2a7612a7fc03fcfb372d50cccd4bf1028f9e950837b88024c; Path=/	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	TS01ddf986=01bde6ad21af0e10291f6f6009e51cdd169632612459e24338b1f9b4a2a7612a7fc03fcfb372d50cccd4bf1028f9e950837b88024c; path=/; domain=.chase.com	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	302	ppnet_2777=!khcGtF8/DEoiYZ/ObZkJL7s51djrjgoue5VclViDEF+Gv3CnP7pJsiODghJLjOF0ssP9mxNWLfy8Jw==; path=/; Httponly; Secure	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
E	http://chase.com/ 159.53.42.11	301	https://www.chase.com/	Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
E	http://chase.com/ 159.53.44.60	301	https://www.chase.com/	Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
E	http://chase.com/ 159.53.84.126	301	https://www.chase.com/	Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
E	http://chase.com/ 159.53.85.137	301	https://www.chase.com/	Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
E	http://chase.com/ 159.53.113.168	301	https://www.chase.com/	Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
E	http://chase.com/ 159.53.116.62	301	https://www.chase.com/	Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
E	http://chase.com/ 159.53.224.21	301	https://www.chase.com/	Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
I	https://www.chase.com/ 88.221.221.115	200		Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
I	https://www.chase.com/ 88.221.221.88	200		Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
N	https://159.53.42.11/ 159.53.42.11	-3		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://159.53.44.60/ 159.53.44.60	-3		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://159.53.84.126/ 159.53.84.126	-3		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://159.53.85.137/ 159.53.85.137	-3		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://159.53.113.168/ 159.53.113.168	-3		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://159.53.116.62/ 159.53.116.62	-3		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://159.53.224.21/ 159.53.224.21	-3		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
P	https://88.221.221.88/ 88.221.221.88	-10		Error creating a TLS-Connection: No more details available.
P	https://88.221.221.115/ 88.221.221.115	-10		Error creating a TLS-Connection: No more details available.
A	Good: More then one ip address per domain name found, checking all ip addresses the same http status and the same certificate found: Domain chase.com, 7 ip addresses.
	Warning: More then one ip address per domain name found, checking all ip addresses the same http status, but different certificates found: Domain chase.com, 7 ip addresses, 7 certificates.
	Info: Checking the ip addresses of that domain name not exact one certificate found. So it's impossible to check if that domain requires Server Name Indication (SNI).: Domain chase.com, 7 ip addresses.
A	Good: _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Domainname: _mta-sts.chase.com
B	Bad: _mta-sts TXT found, but invalid
	2. Header-Checks
A	www.chase.com 88.221.221.88	Content-Security-Policy		Ok: Header without syntax errors found: frame-ancestors 'none'
F				Bad: Missing default-src directive. A default-src directive is used if one of the specialized fetch directives (child-src, connect-src, font-src, frame-src, img-src, manifest-src, media-src, object-src, prefetch-src, script-src, style-src, worker-src) isn't defined. Missing default-src, all sources are allowed, that's bad. A default-src with 'none' or 'self' blocks that.
E				Bad: No form-action directive found. Use one to limit the form - action - destinations. form-action is a navigation-directive, so default-src isn't used.
A				Good: frame-ancestors directive found. That limits pages who are allowed to use this page in a frame / iframe / object / embed / applet. frame-ancestors is a navigation-directive, so default-src isn't used.
E				Bad: No base-uri directive found. Use one to limit the URLs which can be used in a document's <base> element. Because it's a document directive, default-src isn't used, so an own directive is required.
F				Critical: No object-src and no default-src as fallback defined. So object / embed / applet can load every resource. That's fatal.
F				Critical: No script-src and no default-src as fallback defined. So scripts are unlimited. That's fatal.
A		Permissions-Policy		Ok: Header without syntax errors found: ch-ua-full-version-list=("https://.chase.com"),ch-ua-platform-version=("https://.chase.com"),ch-ua-arch=("https://.chase.com"),ch-ua-model=("https://.chase.com"),ch-ua-bitness=("https://.chase.com"),ch-ua-wow64=("https://.chase.com")
A		X-Frame-Options		Ok: Header without syntax errors found: SAMEORIGIN
B				Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A		X-Xss-Protection		Ok: Header without syntax errors found: 1; mode=block
B				Info: Header is deprecated. May not longer work in modern browsers. 1; mode=block
A	www.chase.com 88.221.221.115	Content-Security-Policy		Ok: Header without syntax errors found: frame-ancestors 'none'
F				Bad: Missing default-src directive. A default-src directive is used if one of the specialized fetch directives (child-src, connect-src, font-src, frame-src, img-src, manifest-src, media-src, object-src, prefetch-src, script-src, style-src, worker-src) isn't defined. Missing default-src, all sources are allowed, that's bad. A default-src with 'none' or 'self' blocks that.
E				Bad: No form-action directive found. Use one to limit the form - action - destinations. form-action is a navigation-directive, so default-src isn't used.
A				Good: frame-ancestors directive found. That limits pages who are allowed to use this page in a frame / iframe / object / embed / applet. frame-ancestors is a navigation-directive, so default-src isn't used.
E				Bad: No base-uri directive found. Use one to limit the URLs which can be used in a document's <base> element. Because it's a document directive, default-src isn't used, so an own directive is required.
F				Critical: No object-src and no default-src as fallback defined. So object / embed / applet can load every resource. That's fatal.
F				Critical: No script-src and no default-src as fallback defined. So scripts are unlimited. That's fatal.
A		Permissions-Policy		Ok: Header without syntax errors found: ch-ua-full-version-list=("https://.chase.com"),ch-ua-platform-version=("https://.chase.com"),ch-ua-arch=("https://.chase.com"),ch-ua-model=("https://.chase.com"),ch-ua-bitness=("https://.chase.com"),ch-ua-wow64=("https://.chase.com")
A		X-Frame-Options		Ok: Header without syntax errors found: SAMEORIGIN
B				Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A		X-Xss-Protection		Ok: Header without syntax errors found: 1; mode=block
B				Info: Header is deprecated. May not longer work in modern browsers. 1; mode=block
F	www.chase.com 88.221.221.88	X-Content-Type-Options		Critical: Missing Header:
F	www.chase.com 88.221.221.88	Referrer-Policy		Critical: Missing Header:
F	www.chase.com 88.221.221.115	X-Content-Type-Options		Critical: Missing Header:
F	www.chase.com 88.221.221.115	Referrer-Policy		Critical: Missing Header:
	3. DNS- and NameServer - Checks
A	Info:: 8 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 6 Name Servers.
A	Info:: 8 Queries complete, 8 with IPv6, 0 with IPv4.
A	Good: All DNS Queries done via IPv6.
A	Good: Some ip addresses of name servers found with the minimum of two DNS Queries. One to find the TLD-Zone, one to ask the TLD-Zone.ns05.jpmorganchase.com (159.53.110.152), ns06.jpmorganchase.com (159.53.110.153), ns1.jpmorganchase.com (159.53.46.53), ns2.jpmorganchase.com (159.53.78.53)
A	Good (1 - 3.0):: An average of 1.3 queries per domain name server required to find all ip addresses of all name servers.
A	Info:: 6 different Name Servers found: ns0119.secondary.cloudflare.com, ns0140.secondary.cloudflare.com, ns05.jpmorganchase.com, ns06.jpmorganchase.com, ns1.jpmorganchase.com, ns2.jpmorganchase.com, 6 Name Servers included in Delegation: ns0119.secondary.cloudflare.com, ns0140.secondary.cloudflare.com, ns05.jpmorganchase.com, ns06.jpmorganchase.com, ns1.jpmorganchase.com, ns2.jpmorganchase.com, 6 Name Servers included in 1 Zone definitions: ns0119.secondary.cloudflare.com, ns0140.secondary.cloudflare.com, ns05.jpmorganchase.com, ns06.jpmorganchase.com, ns1.jpmorganchase.com, ns2.jpmorganchase.com, 1 Name Servers listed in SOA.Primary: ns1.jpmorganchase.com.
A	Good: Only one SOA.Primary Name Server found.: ns1.jpmorganchase.com.
A	Good: SOA.Primary Name Server included in the delegation set.: ns1.jpmorganchase.com.
A	Good: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: ns0119.secondary.cloudflare.com, ns0140.secondary.cloudflare.com, ns05.jpmorganchase.com, ns06.jpmorganchase.com, ns1.jpmorganchase.com, ns2.jpmorganchase.com
A	Good: All Name Server Domain Names have a Public Suffix.
A	Good: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
A	Good: All Name Server ip addresses are public.
A	Good: Minimal 2 different name servers (public suffix and public ip address) found: 6 different Name Servers found
A	Good: Some Name Servers have IPv6 addresses: 2 Name Servers with IPv6 found (4 Name Servers without IPv6)
	Warning: All Name Servers have the same Top Level Domain / Public Suffix. If there is a problem with that Top Level Domain, your domain may be affected. Better: Use Name Servers with different top level domains.: 6 Name Servers, 1 Top Level Domain: com
A	Good: Name Servers with different domain names found.: 2 different Domains found
A	Good: Name servers with different Country locations found: 6 Name Servers, 2 Countries: CA, US
A	Info: Ipv4-Subnet-list: 6 Name Servers, 2 different subnets (first Byte): 159., 162., 2 different subnets (first two Bytes): 159.53., 162.159., 5 different subnets (first three Bytes): 159.53.110., 159.53.46., 159.53.78., 162.159.32., 162.159.33.
A	Good: Name Server IPv4-addresses from different subnet found:
A	Info: IPv6-Subnet-list: 2 Name Servers with IPv6, 1 different subnets (first block): 2606:, 1 different subnets (first two blocks): 2606:4700:, 2 different subnets (first three blocks): 2606:4700:0051:, 2606:4700:0059:, 2 different subnets (first four blocks): 2606:4700:0051:0000:, 2606:4700:0059:0000:
A	Good: Name Server IPv6 addresses from different subnets found.
A	Info: Nameserver mit different domain names found. May be a problem with DNS-Updates
A	Good: Nameserver supports TCP connections: 8 good Nameserver
A	Good: Nameserver supports Echo Capitalization: 8 good Nameserver
A	Good: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 8 good Nameserver
A	Good: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 8 good Nameserver
	Nameserver doesn't pass all EDNS-Checks: internal.akadns.net: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
	Nameserver doesn't pass all EDNS-Checks: internal.akadns.net: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
	Nameserver doesn't pass all EDNS-Checks: internal.akadns.net: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
	Nameserver doesn't pass all EDNS-Checks: internal.akadns.net: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
A	Good: All SOA have the same Serial Number
A	Good: CAA entries found, creating certificate is limited: digicert.com is allowed to create certificates
A	Good: CAA entries found, creating certificate is limited: entrust.net is allowed to create certificates
	4. Content- and Performance-critical Checks
	https://www.chase.com/digital/resources/oops.html	200		Warning: Not existing ACME-file, but Server sends 200, not 404 or redirect. May be a problem creating a Letsencrypt certificate. Checking /.well-known/acme-challenge/random-filename - a http status 404 - Not Found - is expected. If your server sends content and a http status 200, the validation file (87 bytes, token, dot and the hash of the public part of the account key) may be invisible, so Letsencrypt can't validate your domain. If it is an application that sends this content, perhaps create an exception, so /.well-known/acme-challenge sends raw files. Or create a redirect to another domain and / or port 443, but your Letsencrypt client must support such a solution. Certbot: Use webroot as authenticator - https://certbot.eff.org/docs/using.html Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
A	Good: Every https result with status 200 supports GZip.
	https://www.chase.com/ 88.221.221.88	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://www.chase.com/ 88.221.221.115	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://www.chase.com/digital/resources/oops.html	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://www.chase.com/ 88.221.221.88	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://www.chase.com/ 88.221.221.115	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://www.chase.com/digital/resources/oops.html	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
A	Good: Every https connection via port 443 supports the http/2 protocol via ALPN.
	https://www.chase.com/ 88.221.221.88	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 5 script elements without defer/async.
	https://www.chase.com/ 88.221.221.115	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 5 script elements without defer/async.
	https://www.chase.com/digital/resources/oops.html	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 6 script elements without defer/async.
A	Good: All CSS / JavaScript files are sent with GZip. That reduces the content of the files. 19 external CSS / JavaScript files found
	Warning: Images with internal compression and GZip found. Images (.png, .jpg) are already compressed, so an additional GZip isn't helpful. Don't send these images with GZip. 2 images (type image/png, image/jpg) found with additional GZip. GZip is not required, these images are already compressed. 0 images (type image/png, image/jpg) without GZip found. 2 images (type image/png, image/jpg) complete.
	Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 0 external CSS / JavaScript files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 6 with Cache-Control max-age too short (minimum 7 days), 13 with Cache-Control long enough, 19 complete.
	Warning: Images with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 0 image files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 8 with Cache-Control max-age too short (minimum 7 days), 2 with Cache-Control long enough, 10 complete.
A	Good: All checked attribute values are enclosed in quotation marks (" or ').
A	Good: Some img-elements have a valid alt-attribute.: 10 img-elements found, 3 img-elements with correct alt-attributes (defined, not an empty value).
	Wrong: img-elements without alt-attribute or empty alt-attribute found. The alt-attribute ("alternative") is required and should describe the img. So Screenreader and search engines are able to use these informations.: 7 img-elements without alt-attribute, 0 img-elements with empty alt-attribute found.
A	Good: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
A	Duration: 358003 milliseconds, 358.003 seconds

8. Connections

Domain

Port

Cert.

Protocol

KeyExchange

Strength

Cipher

Strength

HashAlgorithm

OCSP stapling

Domain/KeyExchange

IP/Strength

Port/Cipher

Cert./Strength

Protocol/HashAlgorithm

OCSP stapling

chase.com

159.53.42.11

443

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

chase.com

159.53.42.11

443

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
	3	CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

chase.com

159.53.44.60

443

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

chase.com

159.53.44.60

443

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
	3	CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

chase.com

159.53.84.126

443

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

chase.com

159.53.84.126

443

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
	3	CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

chase.com

159.53.85.137

443

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

chase.com

159.53.85.137

443

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
	3	CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

chase.com

159.53.113.168

443

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

chase.com

159.53.113.168

443

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
	3	CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

chase.com

159.53.116.62

443

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

chase.com

159.53.116.62

443

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
	3	CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

chase.com

159.53.224.21

443

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

chase.com

159.53.224.21

443

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
	3	CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

www.chase.com

88.221.221.88

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

supported

www.chase.com

88.221.221.88

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - incomplete	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

www.chase.com

88.221.221.115

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

supported

www.chase.com

88.221.221.115

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - incomplete	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

www.chase.com

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

supported

www.chase.com

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - incomplete	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

159.53.42.11

443

name does not match

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

159.53.42.11

443

name does not match

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
	3	CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

159.53.44.60

443

name does not match

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

159.53.44.60

443

name does not match

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
	3	CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

159.53.84.126

443

name does not match

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

159.53.84.126

443

name does not match

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
	3	CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

159.53.85.137

443

name does not match

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

159.53.85.137

443

name does not match

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
	3	CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

159.53.116.62

443

name does not match

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

159.53.116.62

443

name does not match

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
	3	CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

159.53.224.21

443

name does not match

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

159.53.224.21

443

name does not match

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
	3	CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

159.53.113.168

443

name does not match

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

159.53.113.168

443

name does not match

Tls12

ECDH Ephermal

256

Aes128

128

Sha256

not supported

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011
	2	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
	3	CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

9. Certificates

CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	0A8EE4F934B214138FB4B4FE5A6F7609
Thumbprint:	D26B69A41D55335550D349D7C3A3E17BC98C7DEE
SHA256 / Certificate:	hBJlXoYjRiSzrZRlbAIqJyIXK371QOz/tOG/J5Sy+0U=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	0114981bd559066bc266a00b9174df8bb8abe7f2eaed51e3e7d9d6ef638231ad
SHA256 hex / Subject Public Key Information (SPKI):	0114981bd559066bc266a00b9174df8bb8abe7f2eaed51e3e7d9d6ef638231ad (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	0A8EE4F934B214138FB4B4FE5A6F7609
Thumbprint:	D26B69A41D55335550D349D7C3A3E17BC98C7DEE
SHA256 / Certificate:	hBJlXoYjRiSzrZRlbAIqJyIXK371QOz/tOG/J5Sy+0U=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	0114981bd559066bc266a00b9174df8bb8abe7f2eaed51e3e7d9d6ef638231ad
SHA256 hex / Subject Public Key Information (SPKI):	0114981bd559066bc266a00b9174df8bb8abe7f2eaed51e3e7d9d6ef638231ad (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

15.12.2014

15.10.2030
expires in 2509 days

15.12.2014

15.10.2030
expires in 2509 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	61A1E7D20000000051D366A6
Thumbprint:	CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:	dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

15.12.2014

15.10.2030
expires in 2509 days

15.12.2014

15.10.2030
expires in 2509 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	61A1E7D20000000051D366A6
Thumbprint:	CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:	dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):	75c5b3f01fd1f51a2c447ab7c785d72e69fa9c472c08571e7eadf3b8eabae70c
SHA256 hex / PublicKey (DANE * 1 1):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1)

07.07.2009

07.12.2030
expires in 2562 days

07.07.2009

07.12.2030
expires in 2562 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	4A538C28
Thumbprint:	8CF427FD790C3AD166068DE81E57EFBB932272D4
SHA256 / Certificate:	Q99XdLA+f+9f5A2TGnvt8bsua0JzjE5tOEEQPTqn8zk=
SHA256 hex / Cert (DANE * 0 1):	43df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f339
SHA256 hex / PublicKey (DANE * 1 1):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

22.09.2014

23.09.2024
expires in 296 days

22.09.2014

23.09.2024
expires in 296 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	51D34044
Thumbprint:	9E1A0C35E714B69792D090B2CC4BBA45833C3015
SHA256 / Certificate:	axQ8IAXVU5zCLqtfdy2yqf6HRn/v+gf88Kn30oJ0yno=
SHA256 hex / Cert (DANE * 0 1):	6b143c2005d5539cc22eab5f772db2a9fe87467feffa07fcf0a9f7d28274ca7a
SHA256 hex / PublicKey (DANE * 1 1):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

27.11.2006

27.11.2026
expires in 1091 days

27.11.2006

27.11.2026
expires in 1091 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA-1 with RSA Encryption
Serial Number:	456B5054
Thumbprint:	B31EB1B740E36C8402DADC37D44DF5D4674952F9
SHA256 / Certificate:	c8F2Q08bxtWt9FsOducnKHyN5XYWwebmFBorLLx9jkw=
SHA256 hex / Cert (DANE * 0 1):	73c176434f1bc6d5adf45b0e76e727287c8de57616c1e6e6141a2b2cbc7d8e4c
SHA256 hex / PublicKey (DANE * 1 1):	6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SHA256 hex / Subject Public Key Information (SPKI):	6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	2952C91D1B6ECA2B04BD645DB2078DEA
Thumbprint:	58A33D3DD7ADE66B524355D37F94AEE1B731A19B
SHA256 / Certificate:	URH+BtQqhANq/0pidwaB4qOFS1CV+/IexZRFkYKgASg=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	48840c61c16ae7cf7fc3009b2357239b9422178e106545fadc229c151908c67a
SHA256 hex / Subject Public Key Information (SPKI):	48840c61c16ae7cf7fc3009b2357239b9422178e106545fadc229c151908c67a (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	2952C91D1B6ECA2B04BD645DB2078DEA
Thumbprint:	58A33D3DD7ADE66B524355D37F94AEE1B731A19B
SHA256 / Certificate:	URH+BtQqhANq/0pidwaB4qOFS1CV+/IexZRFkYKgASg=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	48840c61c16ae7cf7fc3009b2357239b9422178e106545fadc229c151908c67a
SHA256 hex / Subject Public Key Information (SPKI):	48840c61c16ae7cf7fc3009b2357239b9422178e106545fadc229c151908c67a (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

15.12.2014

15.10.2030
expires in 2509 days

15.12.2014

15.10.2030
expires in 2509 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	61A1E7D20000000051D366A6
Thumbprint:	CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:	dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

15.12.2014

15.10.2030
expires in 2509 days

15.12.2014

15.10.2030
expires in 2509 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	61A1E7D20000000051D366A6
Thumbprint:	CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:	dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):	75c5b3f01fd1f51a2c447ab7c785d72e69fa9c472c08571e7eadf3b8eabae70c
SHA256 hex / PublicKey (DANE * 1 1):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1)

07.07.2009

07.12.2030
expires in 2562 days

07.07.2009

07.12.2030
expires in 2562 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	4A538C28
Thumbprint:	8CF427FD790C3AD166068DE81E57EFBB932272D4
SHA256 / Certificate:	Q99XdLA+f+9f5A2TGnvt8bsua0JzjE5tOEEQPTqn8zk=
SHA256 hex / Cert (DANE * 0 1):	43df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f339
SHA256 hex / PublicKey (DANE * 1 1):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

22.09.2014

23.09.2024
expires in 296 days

22.09.2014

23.09.2024
expires in 296 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	51D34044
Thumbprint:	9E1A0C35E714B69792D090B2CC4BBA45833C3015
SHA256 / Certificate:	axQ8IAXVU5zCLqtfdy2yqf6HRn/v+gf88Kn30oJ0yno=
SHA256 hex / Cert (DANE * 0 1):	6b143c2005d5539cc22eab5f772db2a9fe87467feffa07fcf0a9f7d28274ca7a
SHA256 hex / PublicKey (DANE * 1 1):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

27.11.2006

27.11.2026
expires in 1091 days

27.11.2006

27.11.2026
expires in 1091 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA-1 with RSA Encryption
Serial Number:	456B5054
Thumbprint:	B31EB1B740E36C8402DADC37D44DF5D4674952F9
SHA256 / Certificate:	c8F2Q08bxtWt9FsOducnKHyN5XYWwebmFBorLLx9jkw=
SHA256 hex / Cert (DANE * 0 1):	73c176434f1bc6d5adf45b0e76e727287c8de57616c1e6e6141a2b2cbc7d8e4c
SHA256 hex / PublicKey (DANE * 1 1):	6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SHA256 hex / Subject Public Key Information (SPKI):	6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	319514A1F5CA2DB160771DE4201EA8C6
Thumbprint:	C8E571EAD1501F7A0308F0D9D8D4B6B19E0ECECE
SHA256 / Certificate:	lTJRGnZx6RBYFpIoHwi5XKosWQD7zDUHsB78YVyRAnU=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	5ba0be2d3e479eaacb94812b78c070bdbf479bdababa19a0497789f6bb118fc1
SHA256 hex / Subject Public Key Information (SPKI):	5ba0be2d3e479eaacb94812b78c070bdbf479bdababa19a0497789f6bb118fc1 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	319514A1F5CA2DB160771DE4201EA8C6
Thumbprint:	C8E571EAD1501F7A0308F0D9D8D4B6B19E0ECECE
SHA256 / Certificate:	lTJRGnZx6RBYFpIoHwi5XKosWQD7zDUHsB78YVyRAnU=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	5ba0be2d3e479eaacb94812b78c070bdbf479bdababa19a0497789f6bb118fc1
SHA256 hex / Subject Public Key Information (SPKI):	5ba0be2d3e479eaacb94812b78c070bdbf479bdababa19a0497789f6bb118fc1 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

15.12.2014

15.10.2030
expires in 2509 days

15.12.2014

15.10.2030
expires in 2509 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	61A1E7D20000000051D366A6
Thumbprint:	CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:	dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

15.12.2014

15.10.2030
expires in 2509 days

15.12.2014

15.10.2030
expires in 2509 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	61A1E7D20000000051D366A6
Thumbprint:	CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:	dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):	75c5b3f01fd1f51a2c447ab7c785d72e69fa9c472c08571e7eadf3b8eabae70c
SHA256 hex / PublicKey (DANE * 1 1):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1)

07.07.2009

07.12.2030
expires in 2562 days

07.07.2009

07.12.2030
expires in 2562 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	4A538C28
Thumbprint:	8CF427FD790C3AD166068DE81E57EFBB932272D4
SHA256 / Certificate:	Q99XdLA+f+9f5A2TGnvt8bsua0JzjE5tOEEQPTqn8zk=
SHA256 hex / Cert (DANE * 0 1):	43df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f339
SHA256 hex / PublicKey (DANE * 1 1):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

22.09.2014

23.09.2024
expires in 296 days

22.09.2014

23.09.2024
expires in 296 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	51D34044
Thumbprint:	9E1A0C35E714B69792D090B2CC4BBA45833C3015
SHA256 / Certificate:	axQ8IAXVU5zCLqtfdy2yqf6HRn/v+gf88Kn30oJ0yno=
SHA256 hex / Cert (DANE * 0 1):	6b143c2005d5539cc22eab5f772db2a9fe87467feffa07fcf0a9f7d28274ca7a
SHA256 hex / PublicKey (DANE * 1 1):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

27.11.2006

27.11.2026
expires in 1091 days

27.11.2006

27.11.2026
expires in 1091 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA-1 with RSA Encryption
Serial Number:	456B5054
Thumbprint:	B31EB1B740E36C8402DADC37D44DF5D4674952F9
SHA256 / Certificate:	c8F2Q08bxtWt9FsOducnKHyN5XYWwebmFBorLLx9jkw=
SHA256 hex / Cert (DANE * 0 1):	73c176434f1bc6d5adf45b0e76e727287c8de57616c1e6e6141a2b2cbc7d8e4c
SHA256 hex / PublicKey (DANE * 1 1):	6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SHA256 hex / Subject Public Key Information (SPKI):	6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	6901B9AAC27E845071B99F1EA84DBC6E
Thumbprint:	46B7540115864ECA068868609C4875262D26CF88
SHA256 / Certificate:	SAQU6ghu5lDVmES3S3vIM174/SRvdMGvsgGY9VTyq2M=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	a16bbeca6832f7e354bdc84af8cf6e9e8e9ba9cd1685a14fc57e53e2b21f8feb
SHA256 hex / Subject Public Key Information (SPKI):	a16bbeca6832f7e354bdc84af8cf6e9e8e9ba9cd1685a14fc57e53e2b21f8feb (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	6901B9AAC27E845071B99F1EA84DBC6E
Thumbprint:	46B7540115864ECA068868609C4875262D26CF88
SHA256 / Certificate:	SAQU6ghu5lDVmES3S3vIM174/SRvdMGvsgGY9VTyq2M=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	a16bbeca6832f7e354bdc84af8cf6e9e8e9ba9cd1685a14fc57e53e2b21f8feb
SHA256 hex / Subject Public Key Information (SPKI):	a16bbeca6832f7e354bdc84af8cf6e9e8e9ba9cd1685a14fc57e53e2b21f8feb (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

15.12.2014

15.10.2030
expires in 2509 days

15.12.2014

15.10.2030
expires in 2509 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	61A1E7D20000000051D366A6
Thumbprint:	CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:	dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

15.12.2014

15.10.2030
expires in 2509 days

15.12.2014

15.10.2030
expires in 2509 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	61A1E7D20000000051D366A6
Thumbprint:	CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:	dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):	75c5b3f01fd1f51a2c447ab7c785d72e69fa9c472c08571e7eadf3b8eabae70c
SHA256 hex / PublicKey (DANE * 1 1):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1)

07.07.2009

07.12.2030
expires in 2562 days

07.07.2009

07.12.2030
expires in 2562 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	4A538C28
Thumbprint:	8CF427FD790C3AD166068DE81E57EFBB932272D4
SHA256 / Certificate:	Q99XdLA+f+9f5A2TGnvt8bsua0JzjE5tOEEQPTqn8zk=
SHA256 hex / Cert (DANE * 0 1):	43df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f339
SHA256 hex / PublicKey (DANE * 1 1):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

22.09.2014

23.09.2024
expires in 296 days

22.09.2014

23.09.2024
expires in 296 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	51D34044
Thumbprint:	9E1A0C35E714B69792D090B2CC4BBA45833C3015
SHA256 / Certificate:	axQ8IAXVU5zCLqtfdy2yqf6HRn/v+gf88Kn30oJ0yno=
SHA256 hex / Cert (DANE * 0 1):	6b143c2005d5539cc22eab5f772db2a9fe87467feffa07fcf0a9f7d28274ca7a
SHA256 hex / PublicKey (DANE * 1 1):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

27.11.2006

27.11.2026
expires in 1091 days

27.11.2006

27.11.2026
expires in 1091 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA-1 with RSA Encryption
Serial Number:	456B5054
Thumbprint:	B31EB1B740E36C8402DADC37D44DF5D4674952F9
SHA256 / Certificate:	c8F2Q08bxtWt9FsOducnKHyN5XYWwebmFBorLLx9jkw=
SHA256 hex / Cert (DANE * 0 1):	73c176434f1bc6d5adf45b0e76e727287c8de57616c1e6e6141a2b2cbc7d8e4c
SHA256 hex / PublicKey (DANE * 1 1):	6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SHA256 hex / Subject Public Key Information (SPKI):	6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	4D9C49EF36653681F51BA721E8F84D77
Thumbprint:	4D435A2CED1E5ADFBDFDE57D428CEB73F7B572A4
SHA256 / Certificate:	fcQahfBULygOvQFpYE8o3hnhoS1UBmbACIRO3KWzPqo=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	81388dc7acd0e81a1054ad283fa29ce99d391d7bbe3ad4296b04025c19fcfae5
SHA256 hex / Subject Public Key Information (SPKI):	81388dc7acd0e81a1054ad283fa29ce99d391d7bbe3ad4296b04025c19fcfae5 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	4D9C49EF36653681F51BA721E8F84D77
Thumbprint:	4D435A2CED1E5ADFBDFDE57D428CEB73F7B572A4
SHA256 / Certificate:	fcQahfBULygOvQFpYE8o3hnhoS1UBmbACIRO3KWzPqo=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	81388dc7acd0e81a1054ad283fa29ce99d391d7bbe3ad4296b04025c19fcfae5
SHA256 hex / Subject Public Key Information (SPKI):	81388dc7acd0e81a1054ad283fa29ce99d391d7bbe3ad4296b04025c19fcfae5 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

15.12.2014

15.10.2030
expires in 2509 days

15.12.2014

15.10.2030
expires in 2509 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	61A1E7D20000000051D366A6
Thumbprint:	CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:	dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

15.12.2014

15.10.2030
expires in 2509 days

15.12.2014

15.10.2030
expires in 2509 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	61A1E7D20000000051D366A6
Thumbprint:	CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:	dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):	75c5b3f01fd1f51a2c447ab7c785d72e69fa9c472c08571e7eadf3b8eabae70c
SHA256 hex / PublicKey (DANE * 1 1):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1)

07.07.2009

07.12.2030
expires in 2562 days

07.07.2009

07.12.2030
expires in 2562 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	4A538C28
Thumbprint:	8CF427FD790C3AD166068DE81E57EFBB932272D4
SHA256 / Certificate:	Q99XdLA+f+9f5A2TGnvt8bsua0JzjE5tOEEQPTqn8zk=
SHA256 hex / Cert (DANE * 0 1):	43df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f339
SHA256 hex / PublicKey (DANE * 1 1):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

22.09.2014

23.09.2024
expires in 296 days

22.09.2014

23.09.2024
expires in 296 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	51D34044
Thumbprint:	9E1A0C35E714B69792D090B2CC4BBA45833C3015
SHA256 / Certificate:	axQ8IAXVU5zCLqtfdy2yqf6HRn/v+gf88Kn30oJ0yno=
SHA256 hex / Cert (DANE * 0 1):	6b143c2005d5539cc22eab5f772db2a9fe87467feffa07fcf0a9f7d28274ca7a
SHA256 hex / PublicKey (DANE * 1 1):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

27.11.2006

27.11.2026
expires in 1091 days

27.11.2006

27.11.2026
expires in 1091 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA-1 with RSA Encryption
Serial Number:	456B5054
Thumbprint:	B31EB1B740E36C8402DADC37D44DF5D4674952F9
SHA256 / Certificate:	c8F2Q08bxtWt9FsOducnKHyN5XYWwebmFBorLLx9jkw=
SHA256 hex / Cert (DANE * 0 1):	73c176434f1bc6d5adf45b0e76e727287c8de57616c1e6e6141a2b2cbc7d8e4c
SHA256 hex / PublicKey (DANE * 1 1):	6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SHA256 hex / Subject Public Key Information (SPKI):	6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	79091E9F2AAF2622D712C54BCBFCB6A0
Thumbprint:	3B686652A3ED9CD65879A0F156AFCDD974957F5F
SHA256 / Certificate:	vcJGtQ/rRZuQmCTCMsAW+hKz93L8sML4sGqnVii9B28=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	c317d6d22f72fc5e68b467676cc732c0dbd4f1edacb675741dbe390911a22e0c
SHA256 hex / Subject Public Key Information (SPKI):	c317d6d22f72fc5e68b467676cc732c0dbd4f1edacb675741dbe390911a22e0c (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	79091E9F2AAF2622D712C54BCBFCB6A0
Thumbprint:	3B686652A3ED9CD65879A0F156AFCDD974957F5F
SHA256 / Certificate:	vcJGtQ/rRZuQmCTCMsAW+hKz93L8sML4sGqnVii9B28=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	c317d6d22f72fc5e68b467676cc732c0dbd4f1edacb675741dbe390911a22e0c
SHA256 hex / Subject Public Key Information (SPKI):	c317d6d22f72fc5e68b467676cc732c0dbd4f1edacb675741dbe390911a22e0c (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

15.12.2014

15.10.2030
expires in 2509 days

15.12.2014

15.10.2030
expires in 2509 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	61A1E7D20000000051D366A6
Thumbprint:	CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:	dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

15.12.2014

15.10.2030
expires in 2509 days

15.12.2014

15.10.2030
expires in 2509 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	61A1E7D20000000051D366A6
Thumbprint:	CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:	dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):	75c5b3f01fd1f51a2c447ab7c785d72e69fa9c472c08571e7eadf3b8eabae70c
SHA256 hex / PublicKey (DANE * 1 1):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1)

22.09.2014

23.09.2024
expires in 296 days

22.09.2014

23.09.2024
expires in 296 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	51D34044
Thumbprint:	9E1A0C35E714B69792D090B2CC4BBA45833C3015
SHA256 / Certificate:	axQ8IAXVU5zCLqtfdy2yqf6HRn/v+gf88Kn30oJ0yno=
SHA256 hex / Cert (DANE * 0 1):	6b143c2005d5539cc22eab5f772db2a9fe87467feffa07fcf0a9f7d28274ca7a
SHA256 hex / PublicKey (DANE * 1 1):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

07.07.2009

07.12.2030
expires in 2562 days

07.07.2009

07.12.2030
expires in 2562 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	4A538C28
Thumbprint:	8CF427FD790C3AD166068DE81E57EFBB932272D4
SHA256 / Certificate:	Q99XdLA+f+9f5A2TGnvt8bsua0JzjE5tOEEQPTqn8zk=
SHA256 hex / Cert (DANE * 0 1):	43df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f339
SHA256 hex / PublicKey (DANE * 1 1):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

27.11.2006

27.11.2026
expires in 1091 days

27.11.2006

27.11.2026
expires in 1091 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA-1 with RSA Encryption
Serial Number:	456B5054
Thumbprint:	B31EB1B740E36C8402DADC37D44DF5D4674952F9
SHA256 / Certificate:	c8F2Q08bxtWt9FsOducnKHyN5XYWwebmFBorLLx9jkw=
SHA256 hex / Cert (DANE * 0 1):	73c176434f1bc6d5adf45b0e76e727287c8de57616c1e6e6141a2b2cbc7d8e4c
SHA256 hex / PublicKey (DANE * 1 1):	6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SHA256 hex / Subject Public Key Information (SPKI):	6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	508E51C205EA6D8F71F4DA86D8F96135
Thumbprint:	F4C6A293ED9A3A96FC199F44A1735CD05D846301
SHA256 / Certificate:	DxEH+CSvaKj4d9n6d/4Q2WjXMZSIUUAleSY2wBZJSZ8=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	7e1fe66f5438921f1bae5eba83e8c06fd1354836280707ef22168ca4810007b1
SHA256 hex / Subject Public Key Information (SPKI):	7e1fe66f5438921f1bae5eba83e8c06fd1354836280707ef22168ca4810007b1 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

18.11.2023

18.11.2024
expires in 352 days

www.chase.com, chase.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	508E51C205EA6D8F71F4DA86D8F96135
Thumbprint:	F4C6A293ED9A3A96FC199F44A1735CD05D846301
SHA256 / Certificate:	DxEH+CSvaKj4d9n6d/4Q2WjXMZSIUUAleSY2wBZJSZ8=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	7e1fe66f5438921f1bae5eba83e8c06fd1354836280707ef22168ca4810007b1
SHA256 hex / Subject Public Key Information (SPKI):	7e1fe66f5438921f1bae5eba83e8c06fd1354836280707ef22168ca4810007b1 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

15.12.2014

15.10.2030
expires in 2509 days

15.12.2014

15.10.2030
expires in 2509 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	61A1E7D20000000051D366A6
Thumbprint:	CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:	dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

15.12.2014

15.10.2030
expires in 2509 days

15.12.2014

15.10.2030
expires in 2509 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	61A1E7D20000000051D366A6
Thumbprint:	CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:	dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):	75c5b3f01fd1f51a2c447ab7c785d72e69fa9c472c08571e7eadf3b8eabae70c
SHA256 hex / PublicKey (DANE * 1 1):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1)

07.07.2009

07.12.2030
expires in 2562 days

07.07.2009

07.12.2030
expires in 2562 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	4A538C28
Thumbprint:	8CF427FD790C3AD166068DE81E57EFBB932272D4
SHA256 / Certificate:	Q99XdLA+f+9f5A2TGnvt8bsua0JzjE5tOEEQPTqn8zk=
SHA256 hex / Cert (DANE * 0 1):	43df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f339
SHA256 hex / PublicKey (DANE * 1 1):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

22.09.2014

23.09.2024
expires in 296 days

22.09.2014

23.09.2024
expires in 296 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	51D34044
Thumbprint:	9E1A0C35E714B69792D090B2CC4BBA45833C3015
SHA256 / Certificate:	axQ8IAXVU5zCLqtfdy2yqf6HRn/v+gf88Kn30oJ0yno=
SHA256 hex / Cert (DANE * 0 1):	6b143c2005d5539cc22eab5f772db2a9fe87467feffa07fcf0a9f7d28274ca7a
SHA256 hex / PublicKey (DANE * 1 1):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

27.11.2006

27.11.2026
expires in 1091 days

27.11.2006

27.11.2026
expires in 1091 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA-1 with RSA Encryption
Serial Number:	456B5054
Thumbprint:	B31EB1B740E36C8402DADC37D44DF5D4674952F9
SHA256 / Certificate:	c8F2Q08bxtWt9FsOducnKHyN5XYWwebmFBorLLx9jkw=
SHA256 hex / Cert (DANE * 0 1):	73c176434f1bc6d5adf45b0e76e727287c8de57616c1e6e6141a2b2cbc7d8e4c
SHA256 hex / PublicKey (DANE * 1 1):	6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SHA256 hex / Subject Public Key Information (SPKI):	6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

27.04.2023

26.04.2024
expires in 146 days

www.chase.com, beta.chase.com - 2 entries

27.04.2023

26.04.2024
expires in 146 days

www.chase.com, beta.chase.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	1524B1355353544A35BA9821F898655F
Thumbprint:	5B76D8A0A7CDA02C29F0F8F319C74D111CF7D5FE
SHA256 / Certificate:	Jz6I4fwYfp1SuLveO/oR6TtclT1KFqRYyXYg+vRTh10=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	44ba2748a0cd21bdfc4d2bf2e96a599733424a5068f4b510ab94cc51593cb125
SHA256 hex / Subject Public Key Information (SPKI):	44ba2748a0cd21bdfc4d2bf2e96a599733424a5068f4b510ab94cc51593cb125 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

27.04.2023

26.04.2024
expires in 146 days

www.chase.com, beta.chase.com - 2 entries

27.04.2023

26.04.2024
expires in 146 days

www.chase.com, beta.chase.com - 2 entries

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	1524B1355353544A35BA9821F898655F
Thumbprint:	5B76D8A0A7CDA02C29F0F8F319C74D111CF7D5FE
SHA256 / Certificate:	Jz6I4fwYfp1SuLveO/oR6TtclT1KFqRYyXYg+vRTh10=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	44ba2748a0cd21bdfc4d2bf2e96a599733424a5068f4b510ab94cc51593cb125
SHA256 hex / Subject Public Key Information (SPKI):	44ba2748a0cd21bdfc4d2bf2e96a599733424a5068f4b510ab94cc51593cb125 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

15.12.2014

15.10.2030
expires in 2509 days

15.12.2014

15.10.2030
expires in 2509 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	61A1E7D20000000051D366A6
Thumbprint:	CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:	dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

15.12.2014

15.10.2030
expires in 2509 days

15.12.2014

15.10.2030
expires in 2509 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	61A1E7D20000000051D366A6
Thumbprint:	CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:	dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):	75c5b3f01fd1f51a2c447ab7c785d72e69fa9c472c08571e7eadf3b8eabae70c
SHA256 hex / PublicKey (DANE * 1 1):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):	5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1)

07.07.2009

07.12.2030
expires in 2562 days

07.07.2009

07.12.2030
expires in 2562 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	4A538C28
Thumbprint:	8CF427FD790C3AD166068DE81E57EFBB932272D4
SHA256 / Certificate:	Q99XdLA+f+9f5A2TGnvt8bsua0JzjE5tOEEQPTqn8zk=
SHA256 hex / Cert (DANE * 0 1):	43df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f339
SHA256 hex / PublicKey (DANE * 1 1):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

22.09.2014

23.09.2024
expires in 296 days

22.09.2014

23.09.2024
expires in 296 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	51D34044
Thumbprint:	9E1A0C35E714B69792D090B2CC4BBA45833C3015
SHA256 / Certificate:	axQ8IAXVU5zCLqtfdy2yqf6HRn/v+gf88Kn30oJ0yno=
SHA256 hex / Cert (DANE * 0 1):	6b143c2005d5539cc22eab5f772db2a9fe87467feffa07fcf0a9f7d28274ca7a
SHA256 hex / PublicKey (DANE * 1 1):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):	76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.entrust.net
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

27.11.2006

27.11.2026
expires in 1091 days

27.11.2006

27.11.2026
expires in 1091 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA-1 with RSA Encryption
Serial Number:	456B5054
Thumbprint:	B31EB1B740E36C8402DADC37D44DF5D4674952F9
SHA256 / Certificate:	c8F2Q08bxtWt9FsOducnKHyN5XYWwebmFBorLLx9jkw=
SHA256 hex / Cert (DANE * 0 1):	73c176434f1bc6d5adf45b0e76e727287c8de57616c1e6e6141a2b2cbc7d8e4c
SHA256 hex / PublicKey (DANE * 1 1):	6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SHA256 hex / Subject Public Key Information (SPKI):	6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuer				last 7 days	active	num Certs
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US				0	1	1

CertSpotter-Id	Issuer	not before	not after	Domain names	LE-Duplicate	next LE
4506150978 precert	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US	2022-12-04 10:18:52	2023-12-04 10:18:51	chase.com, www.chase.com - 2 entries

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

Issuer				last 7 days	active	num Certs
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US				0	1	1

CRT-Id	Issuer	not before	not after	Domain names	LE-Duplicate	next LE
8119002290 precert	CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US	2022-12-04 09:18:52	2023-12-04 09:18:51	chase.com, www.chase.com 2 entries

11. Html-Content - Entries

Summary

							Subresource Integrity (SRI)
Domainname	HtmlElement	rel/property	∑	∑ size	∑ problems	∑ int.	∑ ext.	∑ Origin poss.	∑ SRI ParseErrors	∑ SRI valid	∑ SRI missing
https://www.chase.com/ 88.221.221.88	a		172		0			0	0	0
	iframe		1		0			0	0	0
	img		3	2,594 Bytes	0	3	0	0	0	0
	link	alternate	2		0			0	0	0
	link	stylesheet	1	42,688 Bytes	0	1	0	0	0	0
	link	other	17	128,951 Bytes	0	7	4	4	0	0	-4
	meta	apple	1		0			0	0	0
	meta	other	5	3,562 Bytes	0	1	0	0	0	0
	script		5	408,688 Bytes	0	5	0	0	0	0
	style		30	543,078 Bytes	1	9	21	21	0	0	-21
https://www.chase.com/ 88.221.221.115	a		172		0			0	0	0
	iframe		1		0			0	0	0
	img		3	2,594 Bytes	0	3	0	0	0	0
	link	alternate	2		0			0	0	0
	link	stylesheet	1	42,688 Bytes	0	1	0	0	0	0
	link	other	17	128,951 Bytes	0	7	4	4	0	0	-4
	meta	apple	1		0			0	0	0
	meta	other	5	3,562 Bytes	0	1	0	0	0	0
	script		5	408,688 Bytes	0	5	0	0	0	0
	style		30	543,078 Bytes	1	9	21	21	0	0	-21

Details

Domainname

Html-Element

name/equiv/ property/rel

href/src/content

HttpStatus

msg

∑

Status

88.221.221.88

#main

/business/banking/checking

/business/banking/loans

/business/knowledge-center

/business/payments

/digital/customer-service

/digital/mobile-banking

/digital/online-banking

/digital/resources/about-chase

/digital/resources/accessibility

/digital/resources/complaints-feedback

/digital/resources/privacy-security

/digital/resources/privacy-security/financial-abuse

/digital/resources/privacy-security/security/how-to-spot-scams

/digital/resources/privacy-security/security/how-we-protect-you

/digital/resources/privacy-security/security/how-you-can-protect

/digital/resources/privacy-security/security/report-fraud

/digital/resources/privacy-security/security/system-requirements

/digital/resources/sitemap

/digital/resources/terms-of-use

/personal/auto/education?offercode=WDXDPXXX02

/personal/banking/education

/personal/branch-disclosures

/personal/checking/private-client#personalized-financial-relationship

/personal/checking/private-client/perks

/personal/checking/private-client/team

/personal/credit-cards/free-credit-score

/personal/education

/personal/events/chase-center

/personal/events/experiences

/personal/events/us-open

/personal/financial-goals

/personal/financial-goals/life-moments

/personal/investments/advisor-services

/personal/investments/learning-and-insights

/personal/investments/online-investing

/personal/mortgage

/personal/mortgage/calculators-resources/mortgage-calculator

/personal/mortgage/education

/personal/mortgage/mortgage-rates

/personal/mortgage/mortgage-refinance

/personal/savings/bank-cd

/personal/zelle

http://www.aboutads.info/choices/

http://www.finra.org/

https://account.chase.com/consumer/banking/seo

https://account.chase.com/consumer/investing/self-directedoffer

https://account.chase.com/personalbanking

https://autofinance.chase.com/?offercode=WDXDPXXX02

https://autofinance.chase.com/auto-finance/auto-loans?offercode=WDXDPXXX02

https://autofinance.chase.com/auto-finance/auto-loans?offercode=WDXDPXXX09

https://autofinance.chase.com/auto-finance/auto-loans?offercode=WDXDPXXX12

https://autofinance.chase.com/auto-finance/home?offercode=WDXDPXXX05

https://autofinance.chase.com/auto-finance/manage?offercode=WDXDPXXX06

https://autopreferred.chase.com/

https://autopreferred.chase.com/garage/auto-loan-calculator?offercode=WDXDPXXX02

https://careers.jpmorgan.com/US/en/chase

https://creditcards.chase.com/

https://creditcards.chase.com/?jp_ltg=chsecate_featured&CELL=6TKV

https://creditcards.chase.com/all-credit-cards?CELL=6TKV

https://creditcards.chase.com/business-credit-cards

https://creditcards.chase.com/business-credit-cards?jp_ltg=chsecate_smlbiz&CELL=6TKV

https://creditcards.chase.com/cash-back-credit-cards

https://creditcards.chase.com/credit-cards/home/?CELL=6TKV

https://creditcards.chase.com/rewards-credit-cards

https://creditcards.chase.com/travel-credit-cards

https://instagram.com/chase

https://jpmorganwealthmanagement.chase.com/advisor

https://locator.chase.com/?locale=en_US

https://media.chase.com

https://personal.chase.com/personal/checking

https://personal.chase.com/personal/first-banking

https://personal.chase.com/personal/savings

https://secure.chase.com/web/auth/dashboard

https://secure.chase.com/web/auth/enrollment#/enroll/onlineEnrollment/gettingStarted/index?LOB=COLLogon

https://secure.chase.com/web/oao/application/retail#/origination;cfgCode=502002;AcctRef=Credit/index/index

https://survey.experience.chase.com/jfe/form/SV_0kY6b0kOTJsWvUW

https://survey.experience.chase.com/jfe/form/SV_0rBuvmGXX6OhYEJ

https://twitter.com/Chase

https://www.chase.co.uk/gb/en/?utm_source=jpmc&utm_medium=usbanner&utm_campaign=us_website_banner_redirect_homepage&pid=jpmc&af_channel=usbanner&c=us_website_banner_redirect_homepage

https://www.chase.com

https://www.chase.com/

https://www.chase.com/auto/prequalified?offercode=WDXDPXXX11

https://www.chase.com/business

https://www.chase.com/digital/customer-service

https://www.chase.com/digital/resources/search-results.html

https://www.chase.com/espanol

https://www.chase.com/meeting-scheduler/getstarted

https://www.chase.com/personal/investments

https://www.chase.com/personal/investments/advisor-services

https://www.chase.com/personal/investments/education

https://www.chase.com/personal/investments/learning-and-insights

https://www.chase.com/personal/investments/online-investing/self-directed

https://www.chase.com/personal/investments/retirement

https://www.chase.com/personal/investments/wealth-plan

https://www.chase.com/personal/mobile-online-banking/make-payment

https://www.chase.com/personal/mortgage

https://www.chase.com/personal/mortgage/calculators-resources

https://www.chase.com/personal/mortgage/education

https://www.chase.com/personal/mortgage/manage-account

https://www.chase.com/personal/mortgage/mortgage-purchase

https://www.chase.com/personal/mortgage/mortgage-rates

https://www.chase.com/personal/mortgage/mortgage-refinance

https://www.chase.com/personal/offers/secureshopping?CELL=6TKV

https://www.facebook.com/chase

https://www.jpmorgan.com/commercial-banking

https://www.jpmorgan.com/global

https://www.jpmorganchase.com

https://www.linkedin.com/company/chase?trk=company_logo

https://www.msg.com/

https://www.pinterest.com/chase/

https://www.sipc.org/

https://www.youtube.com/chase

javascript:void(0)

iframe

img

src

/etc/designs/chase-ux/css/img/ie_alert.png

200

alt: Alert Message

image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=1053517, s-maxage=2592000 with long duration found.

Wrong GZip: 564/532 Bytes

img

src

/etc/designs/chase-ux/css/img/newheaderlogo.svg

200

no alt-Attribute

image/svg+xml, missing X-Content-Type-Options nosniff

Cache-Control: max-age=1, s-maxage=300 - max-age too short.

GZip: 1015/1592 Bytes

link

alternate

https://www.chase.com

link

alternate

https://www.chase.com/espanol

link

apple-touch-icon

/etc/designs/chase-ux/favicon-120.png

200

image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=239, s-maxage=1800 - max-age too short.

Wrong GZip: 3140/3359 Bytes

link

apple-touch-icon

/etc/designs/chase-ux/favicon-152.png

200

image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=1527, s-maxage=1800 - max-age too short.

Wrong GZip: 3827/4040 Bytes

link

apple-touch-icon

/etc/designs/chase-ux/favicon-57.png

200

image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=69, s-maxage=1800 - max-age too short.

GZip: 1927/2182 Bytes

link

apple-touch-icon

/etc/designs/chase-ux/favicon-76.png

200

image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=176, s-maxage=1800 - max-age too short.

GZip: 2235/2489 Bytes

link

canonical

https://www.chase.com

link

icon

/etc/designs/chase-ux/favicon.ico

200

image/x-icon, missing X-Content-Type-Options nosniff

Cache-Control: max-age=219, s-maxage=300 - max-age too short.

GZip: 3713/15086 Bytes

link

preconnect

https://dpm.demdex.net

link

preconnect

https://midas.chase.com

link

preconnect

https://secure.chase.com

link

preconnect

https://sites.chase.com

link

preconnect

https://static.chasecdn.com

link

preload

/c/111823/etc/designs/chase-ux/css/home.min.css

200

text/css, missing X-Content-Type-Options nosniff

42688 Bytes

link

preload

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 15116/15116 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-hs+e3SdOmeOzqEKzzrAuj3Xbx1FS7ASJZvbxjoa14KQ=
sha384-+uvxOVy8Ir7SKFW6SxpJSfHKEWwn5thcLjierLqXvpsOREEoOnZ+NkYOuz67oV92
sha512-KAU8wmIH0kfsrMsivd8dS2hiIoizgjhxmx1UgR3N2E+1AY1kNN+4seGIXOdw2ez10hKMnwVY2k0/p0ivFRjHIw==

link

preload

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 15324/15324 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-RzsgaNk67ZnQBgzoBExp9IAyzjekHzsdElGmdY55eXs=
sha384-RuKhqTerjw5Oe+o6YIcAti/pFrEjrdz/DxzOaxfbh8qbU51BNimgo7msi/2IQ/HH
sha512-GhjBEqAkZX5mFVud32WuyRbMC1gDxBXwu8soxJoiKalHqhMQzPwoqXtZgX0bqF0W02hutfNCfLpM73lNc+fstQ==

link

preload

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 18264/18264 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-qEMHSnl6ANwqXRBCNIKO1X1fCeFi2yi0RvFNOJF9Q2o=
sha384-gv7zoePm6l5XxBpflFhevWk6kiMuTRkH36Ptmha1cdXursl5g58MfHTqhxFAw6VH
sha512-IvcfYsQdpNzWNFePsTmy7vytVIOp8+2t2dAprftzTtfQgeiOicMEdZb1vSGanfasuJUDtsjmJE4TSkh4RHP7Sg==

link

preload

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 19004/19004 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-H1QSI2yYut/nbkWDQmGkM+IDAlIlFeDyB27xIOZ+rmI=
sha384-joSdXR08p1CszaE7ZCADP93sTlKGJvvjATikEjIyURZMgA7zZKRrg9m2D1k9HuWo
sha512-Rca9vNjFbV5d0sN1hZhYklhHGLom/61tuEYrsZpvhQWRrklelPk6B5h/JsKNXi641yQDhZ09znqCA1AlBZnRTA==

link

shortcut icon

/etc/designs/chase-ux/favicon.ico

200

image/x-icon, missing X-Content-Type-Options nosniff

Cache-Control: max-age=219, s-maxage=300 - max-age too short.

GZip: 3713/15086 Bytes

link

stylesheet

/c/111823/etc/designs/chase-ux/css/home.min.css

200

text/css, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31423780, s-maxage=31536000 - with long duration found.

GZip: 42688/195106 Bytes

local SRI possible, possible hash-values:

sha256-v8XzmCrXAabEZ36meDO+hI2KL4iwEVYKsDlCC6YIMB0=
sha384-BJ5xjZKT5ZRjeQAQruMFMOZHyqFGtCcNhSyNCYLBRCUX/jC8V7rjyEd/xp/n/NBF
sha512-j7Xn/BpenQCFEeC4+vcNmZCgD2fdeyn4CbHOFP4wnuixM3qdmRAlpXRxDL7oHy6DGvR4Cp29LS1abv5MQdlvdQ==

Content loaded via url("...")

fonts/dcefont.eot

fonts/dcefont.eot?#iefix

fonts/dcefont.svg#dce

fonts/dcefont.ttf

fonts/dcefont.woff

fonts/icomoon.eot?mqkbgj

fonts/icomoon.eot?mqkbgj#iefix

fonts/icomoon.svg?mqkbgj#icomoon

fonts/icomoon.ttf?mqkbgj

fonts/icomoon.woff?mqkbgj

fonts/smc.eot

fonts/smc.eot?#iefix

fonts/smc.svg#smc

fonts/smc.ttf

fonts/smc.woff

img/choices-logo-blue_lite.png

img/EHL-Slice.png

meta

utf-8

meta

apple-itunes-app

app-id=298867247, affiliate-data=JPMorganChase

meta

description

Chase online; credit cards, mortgages, commercial banking, auto loans, investing & retirement planning, checking and business banking.

meta

msapplication-TileColor

#FFFFFF

meta

msapplication-TileImage

/etc/designs/chase-ux/favicon-144.png

200

image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=1732, s-maxage=1800 - max-age too short.

Wrong GZip: 3562/3798 Bytes

meta

viewport

width=device-width, initial-scale=1.0

script

src

/c/111823/apps/chase/clientlibs/foundation/scripts/Reporting.js

200

Missing defer / async attribute.

application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: max-age=13421, s-maxage=14400 - max-age too short.

GZip: 35404/80267 Bytes

local SRI possible, possible hash-values:

sha256-XWbncJ//pblg1E9hH4d7diR9WLCqWCED/poTAFEUY6Q=
sha384-jT6UgNGaA7Yxi+c6s9iyXG4btw3iiOtcrGimTXnLV6NO9+lHXb2cXHBT95iFSCEz
sha512-1N5SQnz6Y8NIb4HA3dyPl6nqs4gcZyJEaZH/b5LgkcavKQZo7tlZhbkr+63SEuBpf2VdK8Glitl3yMAnMJHMgA==

script

src

/c/111823/etc/designs/chase-ux/clientlibs/chase-ux/js/dist/index.min.js

200

Missing defer / async attribute.

application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31421589, s-maxage=31536000 - with long duration found.

GZip: 165038/416429 Bytes

local SRI possible, possible hash-values:

sha256-DLrjC5X6mPCcC+YtbRhJvEpWegh0H8pPp9bFeKVUrPg=
sha384-LcH+SiRqH6kYS9w5seIO5l4/bfDw5IXS5GwhiRtRc2c1CfBd2gAymcPP58Ejz2dp
sha512-wNnYFP+03Lkt2r9ufN4bkOul+0lyBXFQqFyuebF6Ek3a5wQKW3wb2nZKQT82xhedjHRfD66210vyDWu7jmEjRQ==

script

src

/c/111823/etc/designs/chase-ux/clientlibs/jquery/js/jquery.min.js

200

Missing defer / async attribute.

application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31421080, s-maxage=31536000 - with long duration found.

GZip: 45328/96519 Bytes

local SRI possible, possible hash-values:

sha256-PBq+NjjwUb69WQSyMBAYIqEeHGRg5PlAGufSePmn9t4=
sha384-6dWlq+sS8OtsShKYpEguVn7Jj97ah/GBjgAGIDzLmsOhOErOwk1rmIz09/eRsbPI
sha512-HE0+22opA5BLspOm7WqfqhEQsSatVYDP4DenFhka0b4SxGfwSXFIgAGUUxM2hVbjTBOPrl5boDpTI9fJzx6O6Q==

script

src

/c/111823/etc/designs/chase-ux/clientlibs/require/js/require.min.js

200

Missing defer / async attribute.

application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31421490, s-maxage=31536000 - with long duration found.

GZip: 7871/15253 Bytes

local SRI possible, possible hash-values:

sha256-X5hDZq05ZQuqBAhINBaY45VFZ2FUf36LtGaH6y6tetc=
sha384-+aCxDrjXjURae1wjXiZJZrvMZbySeYUB9Kt9+WVKYXG1DvweLo+qOPA9rGniOj9s
sha512-iIy32xvJER4zAErxrfCc0grRAMHPjTqyFtAXsUapB61VJ+PVqMFRXWJIl42F1ZJ6jTAfQzKq8fFP+D/ABBXidQ==

script

src

/ruxitagentjs_ICA27NQVfhqrux_10267230522124059.js

200

Missing defer / async attribute.

text/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=44, s-maxage=300 - max-age too short.

GZip: 155047/318855 Bytes

local SRI possible, possible hash-values:

sha256-AQNhNYtF+Iiohov22B22hvw4LezD4CjDnzYAJ5OEdho=
sha384-iB4EGsQ8inKXIaUJvAnQOKLrvXlOFJJQEriqw8rmf9q9F353K5bWfod6WpR7XYBl
sha512-Rf8y5S7fqnlpHvagwZH6g8DJ6rtKRqqZ1IBhup0hfFrZxCbJt2uKy3vbacqztrPClKvFB7hS3Pwz+ZfU69GbPg==

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31423823, s-maxage=31536000 with long duration found.

GZip used: 29487/45372 Bytes, font not compressed

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans-bold.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31422058, s-maxage=31536000 with long duration found.

GZip used: 15603/21012 Bytes, font not compressed

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans-bold-italic.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31422399, s-maxage=31536000 with long duration found.

GZip used: 17262/23304 Bytes, font not compressed

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans-extrabold.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31422419, s-maxage=31536000 with long duration found.

GZip used: 15793/20988 Bytes, font not compressed

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans-italic.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31436441, s-maxage=31536000 with long duration found.

GZip used: 17542/23680 Bytes, font not compressed

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans-light.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31422464, s-maxage=31536000 with long duration found.

GZip used: 28784/44716 Bytes, font not compressed

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans-light-italic.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31436401, s-maxage=31536000 with long duration found.

GZip used: 17652/23864 Bytes, font not compressed

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans-semibold.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31423781, s-maxage=31536000 with long duration found.

GZip used: 29712/45496 Bytes, font not compressed

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans-semibold-italic.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31423841, s-maxage=31536000 with long duration found.

GZip used: 17427/23660 Bytes, font not compressed

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans.woff

200

font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header

No GZip: 24876/24876 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-uEIid/xpyOarUREtvyUEjkBCXMSXSQ/uJRtW1+8MoXk=
sha384-qi1yZLvxy7NdGtECoKM2NESGcZ4WZJmOcIEyS4ybgdq++nhA+7rX6jomVvnkm0Zj
sha512-kVbq/+hGXSUrznUSguuJoHh0pccW8SEAm7OZ+9ASTjbHn36N/eMLLniVLm0i5xtm8sdMPvKPp3Zr89HE4APm2g==

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 15116/15116 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold.woff

200

font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 14504/14504 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-BjT3NQGNY5gPuTWRS9kQ69Ue1e0KA8iBFgesoMLnxTI=
sha384-wk4hE1UwqR0G1iZEtVAi7NG5BtMrPuhXqyVPubFjqrBScgKZn8p//lXRarzMih3m
sha512-a00ccCJwhol8CpF1llYhde/Mn/7UwIQk8yWD3Pd4DGmRGwGCMWavh8X21tQtokLNhkUyXMhMnkWeZelrSM+DPw==

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 15324/15324 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold-italic.woff

200

font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header

No GZip: 15932/15932 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-3idO2Lxr4EDgAr5e1waAUhLqwnGttaJU/VqHDov2cZ0=
sha384-XXaydIAQrcth7oBG3+4071D7KPkVSqazBZH9VkVOvZq8bHNu8VpG56rdrbkBaqpZ
sha512-YewSwQ3kRY+dXnzodItqievxIwCNm/bK+twTSl8UZLuEpqDfRbGkD5w1PQwKs43aX5rPyTJPIChaMo4LqxTDKA==

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold-italic.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 17080/17080 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-0htCv3Kx2Vv3asTE4mKpli15kdcQnb5C617SL+SVxhc=
sha384-XO/ZDhuHgIKe67SGs+knRHPA5m4dvmzmGYIZWDt8/NcLC0aUqjo7XJAIro3ggLyU
sha512-wVpBaef9eNOrMhMzCrYd552gD84xs1n36ILf6LCPZTGKnVs4MMqumMfCRyx3WzRHypNVS+w2r4ljI8be3O0rRg==

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold.woff

200

font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 15312/15312 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-hD4qzJoWUBgyUvBH+7hxsuwAyfx2bEQ7K1JBpeHKvBI=
sha384-H7rIkfH82CsiioINUnuxZIcmBcZ+6PtV1FXDN8QRCci8qXEcAetnUmE5LTig7eaO
sha512-CNMr7ohiP2iCd74Xk5QxzEXVX3obb3YrzKEEgkpqlq7jdszHtNtX2qF8SJlPTMq4Mf3bLDCA5VAISTgdyBZebQ==

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 16672/16672 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-+qGcVij4EXR7vXa0ehvFz3CpEhoEw6v5teBLCypzKuA=
sha384-YJDQDp4HEr/XiJVjWqc71vqBdUDTXGwAeQHkyfMP4hphawNxMJTy6L9DpRw2wQPc
sha512-FtWbM7npSRLzEfuHwkmwjc9blu9/8Zcasfu/xJQHCDUl+mX0jd0MZJdXsxetByds0MHVf4i47BXihqVYsVquog==

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold-italic.ttf

404

Not Found

missing file

text/html; charset=iso-8859-1, missing X-Content-Type-Options nosniff

0 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold-italic.woff

200

font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 15488/15488 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-9dXHyyoQ0T/JtQ0Fjyrzj+wGILK0qE6WLJdidMOWgI8=
sha384-aJy3Ed5sgsJlorS3afoLepzVMjHzO2R+CvH6ycsNDcu9jylOUwmZXICE4puBqOuP
sha512-hPmWugB6fbByZW+qoYtVwWwKm6zOMHsFcBPKtVBYenlyOvc76xvHkE3dpzsqQHm9PZRg//aWFW5dUpLP6mrfBw==

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold-italic.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 17040/17040 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-tjwbEucQafIIXF7jBv0B/6xyKMB4JvSfMJpgIDM9BHc=
sha384-fNO5PZp+/Z4pdjG3ZVMPY22ActHs+RENvcN2RQTrFyeYMiXA3Wg8tCfP2yxBh6gb
sha512-eBSmG8rbqUNqzgb6K5jQUYf+2y6EN5WzpmZkGhP0AVZintcH2GrdYIOSaZGaLM6LuiE+GliysIVvRcbq0+ZxoA==

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-italic.woff

200

font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 15768/15768 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-eITa85ZeqA/9WaDJNKeBcSkQbt3utIDgm5VDc3rOB90=
sha384-RntPuf1SdimnkkHrla9P5/QfMgu7sTqoOwZN3CNCI1U9Qa3mPRGxFyhji6Ood1pT
sha512-hH+MHYYIki4DrTcNHwlVKU2x49ezhm/W+RQbaEKmmuArMK+F1xxwkNaNdF9PSbd6Wkhw3zM0ZoG2EKDcdRUuCg==

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-italic.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 17544/17544 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-7rvTJgbKmMFK+pCUaAwjteS9PEmOl0R6PKYKZnJV8OI=
sha384-jK2LBYSnDYzGvCDQ8u99C1nEwkUVg7+2LOL1W3eofGH5SkQz94sKXxqR4w4WKfVL
sha512-MvpnLXUFsFgktN7vnv6QcSq5xGBJ8uUDhHzxPHHO2723S3f6nSj4PvpcNWKEO4GrQVMohh7lISrUD9l49TNTAQ==

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light.woff

200

font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 24192/24192 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-SOzDWw44lMPHmMSr7eDpb1cn+jFb8F87iZPrFTPUuQ8=
sha384-/Ilv6Gr/rQR8sqE0zWHsjsiSPYrEpSJuwENyYv/Dp7ngeDr/sVB2Orbh8psUJKmT
sha512-Sko2oS5kIhg/LVXhR6kDoNGdkooZPhPEXz1VjoUxjspHW7NJzQ35UiVuvZB6i0Y/tUaUwXEnqRzEZMdgcvO/OQ==

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 18264/18264 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light-italic.woff

200

font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 15956/15956 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-/wwkz2KmFFhkVTH3Y2TUpGQLS7DC8gXqDEK+FJ6+46I=
sha384-HXLgN0zDJVdcgurkSXHXE0C3ogP7xV9IG+8GPlAM/wM2qDt1T6qugc3kxhup3jNC
sha512-8u8vigEGMz7fipP8527Dh1X8OlAyLdPyo0m6Yf5lH0VLJUO7PXN9K2vrRETNGE6f8TzrQKF0umYQ7+vRQxwqPA==

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light-italic.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 17488/17488 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-d7x/N7KD4y0a5pZ+5ZkjtMX4qz031WspNyCku7fai9s=
sha384-pz+mItmhkpPqPsLEySziWe5Fmi1d8dNzkaZW3D4UmrpN+aGXUNo/Mo+VSCNPtRaI
sha512-gBQ59b/l79iruJ89kopkXrPq4EGCdlmEU5kD9zssm0B6KMIb3EdnS5hMagp6N/Ba4QOSV/Lwo695ZpxUtmnq2Q==

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold.woff

200

font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 25108/25108 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-0hE0YMad5Q7cYgaiDe7DwrwnM5KfU4F/H6ynSrNMM+M=
sha384-F9GLmtC2so9TusB/4HQqCAiI6ag1oO6s83fS2sjojzEz2zTSVNb+UiIVSex3i5OZ
sha512-BQ8ayVee68I4/gHV7rV1JkdZAgt9LDjLTnt68dgKB/ej6a7saaw2IrPKUAIdx1CXPWlmU5U/gmiTK6CzQjFXqg==

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 19004/19004 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold-italic.woff

200

font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header

No GZip: 15736/15736 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-U5KGXmxLJbiqiLq9rwJ9UxdI9j/q4ffJUNUb9aCNufA=
sha384-gLKkA0+IbS1w8ggWnyNtsru0CLbmBOd9/f12HrUIl1B4aj6A7uj04GjIPIp8/Zs8
sha512-mT8F8v6xq682cMKRdU7ncggupLilUHzG6Dktdbglwd3Vz8DvBlfbHUQ0zsfkGyWniltxlmywBUkVXEFlm5tnoA==

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold-italic.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 17412/17412 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-hDKLGrWYj+CrtgEsJbd9PU4ncSTxAPorrwUEztiC/Ss=
sha384-l3mBGG1LYc5piipHs1J5vWDN3YDNkf8CK+5S85fwV++Oa86iq79UAekWEzSjJOPO
sha512-11vnnNJD2I1WMHIJbHJhpv+cPgm+kmKsMzZRCsEJvMjNsUbaErBh8OREveE6j7UF9HyDPC60tbWVRvjy472xUQ==

https://www.chase.com/
88.221.221.115

#main

/business/banking/checking

/business/banking/loans

/business/knowledge-center

/business/payments

/digital/customer-service

/digital/mobile-banking

/digital/online-banking

/digital/resources/about-chase

/digital/resources/accessibility

/digital/resources/complaints-feedback

/digital/resources/privacy-security

/digital/resources/privacy-security/financial-abuse

/digital/resources/privacy-security/security/how-to-spot-scams

/digital/resources/privacy-security/security/how-we-protect-you

/digital/resources/privacy-security/security/how-you-can-protect

/digital/resources/privacy-security/security/report-fraud

/digital/resources/privacy-security/security/system-requirements

/digital/resources/sitemap

/digital/resources/terms-of-use

/personal/auto/education?offercode=WDXDPXXX02

/personal/banking/education

/personal/branch-disclosures

/personal/checking/private-client#personalized-financial-relationship

/personal/checking/private-client/perks

/personal/checking/private-client/team

/personal/credit-cards/free-credit-score

/personal/education

/personal/events/chase-center

/personal/events/experiences

/personal/events/us-open

/personal/financial-goals

/personal/financial-goals/life-moments

/personal/investments/advisor-services

/personal/investments/learning-and-insights

/personal/investments/online-investing

/personal/mortgage

/personal/mortgage/calculators-resources/mortgage-calculator

/personal/mortgage/education

/personal/mortgage/mortgage-rates

/personal/mortgage/mortgage-refinance

/personal/savings/bank-cd

/personal/zelle

http://www.aboutads.info/choices/

http://www.finra.org/

https://account.chase.com/consumer/banking/seo

https://account.chase.com/consumer/investing/self-directedoffer

https://account.chase.com/personalbanking

https://autofinance.chase.com/?offercode=WDXDPXXX02

https://autofinance.chase.com/auto-finance/auto-loans?offercode=WDXDPXXX02

https://autofinance.chase.com/auto-finance/auto-loans?offercode=WDXDPXXX09

https://autofinance.chase.com/auto-finance/auto-loans?offercode=WDXDPXXX12

https://autofinance.chase.com/auto-finance/home?offercode=WDXDPXXX05

https://autofinance.chase.com/auto-finance/manage?offercode=WDXDPXXX06

https://autopreferred.chase.com/

https://autopreferred.chase.com/garage/auto-loan-calculator?offercode=WDXDPXXX02

https://careers.jpmorgan.com/US/en/chase

https://creditcards.chase.com/

https://creditcards.chase.com/?jp_ltg=chsecate_featured&CELL=6TKV

https://creditcards.chase.com/all-credit-cards?CELL=6TKV

https://creditcards.chase.com/business-credit-cards

https://creditcards.chase.com/business-credit-cards?jp_ltg=chsecate_smlbiz&CELL=6TKV

https://creditcards.chase.com/cash-back-credit-cards

https://creditcards.chase.com/credit-cards/home/?CELL=6TKV

https://creditcards.chase.com/rewards-credit-cards

https://creditcards.chase.com/travel-credit-cards

https://instagram.com/chase

https://jpmorganwealthmanagement.chase.com/advisor

https://locator.chase.com/?locale=en_US

https://media.chase.com

https://personal.chase.com/personal/checking

https://personal.chase.com/personal/first-banking

https://personal.chase.com/personal/savings

https://secure.chase.com/web/auth/dashboard

https://secure.chase.com/web/auth/enrollment#/enroll/onlineEnrollment/gettingStarted/index?LOB=COLLogon

https://secure.chase.com/web/oao/application/retail#/origination;cfgCode=502002;AcctRef=Credit/index/index

https://survey.experience.chase.com/jfe/form/SV_0kY6b0kOTJsWvUW

https://survey.experience.chase.com/jfe/form/SV_0rBuvmGXX6OhYEJ

https://twitter.com/Chase

https://www.chase.co.uk/gb/en/?utm_source=jpmc&utm_medium=usbanner&utm_campaign=us_website_banner_redirect_homepage&pid=jpmc&af_channel=usbanner&c=us_website_banner_redirect_homepage

https://www.chase.com

https://www.chase.com/

https://www.chase.com/auto/prequalified?offercode=WDXDPXXX11

https://www.chase.com/business

https://www.chase.com/digital/customer-service

https://www.chase.com/digital/resources/search-results.html

https://www.chase.com/espanol

https://www.chase.com/meeting-scheduler/getstarted

https://www.chase.com/personal/investments

https://www.chase.com/personal/investments/advisor-services

https://www.chase.com/personal/investments/education

https://www.chase.com/personal/investments/learning-and-insights

https://www.chase.com/personal/investments/online-investing/self-directed

https://www.chase.com/personal/investments/retirement

https://www.chase.com/personal/investments/wealth-plan

https://www.chase.com/personal/mobile-online-banking/make-payment

https://www.chase.com/personal/mortgage

https://www.chase.com/personal/mortgage/calculators-resources

https://www.chase.com/personal/mortgage/education

https://www.chase.com/personal/mortgage/manage-account

https://www.chase.com/personal/mortgage/mortgage-purchase

https://www.chase.com/personal/mortgage/mortgage-rates

https://www.chase.com/personal/mortgage/mortgage-refinance

https://www.chase.com/personal/offers/secureshopping?CELL=6TKV

https://www.facebook.com/chase

https://www.jpmorgan.com/commercial-banking

https://www.jpmorgan.com/global

https://www.jpmorganchase.com

https://www.linkedin.com/company/chase?trk=company_logo

https://www.msg.com/

https://www.pinterest.com/chase/

https://www.sipc.org/

https://www.youtube.com/chase

javascript:void(0)

iframe

img

src

/etc/designs/chase-ux/css/img/ie_alert.png

200

alt: Alert Message

image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=1053502, s-maxage=2592000 with long duration found.

Wrong GZip: 564/532 Bytes

img

src

/etc/designs/chase-ux/css/img/newheaderlogo.svg

200

no alt-Attribute

image/svg+xml, missing X-Content-Type-Options nosniff

Cache-Control: max-age=7, s-maxage=300 - max-age too short.

GZip: 1015/1592 Bytes

link

alternate

https://www.chase.com

link

alternate

https://www.chase.com/espanol

link

apple-touch-icon

/etc/designs/chase-ux/favicon-120.png

200

image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=206, s-maxage=1800 - max-age too short.

Wrong GZip: 3140/3359 Bytes

link

apple-touch-icon

/etc/designs/chase-ux/favicon-152.png

200

image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=1546, s-maxage=1800 - max-age too short.

Wrong GZip: 3827/4040 Bytes

link

apple-touch-icon

/etc/designs/chase-ux/favicon-57.png

200

image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=124, s-maxage=1800 - max-age too short.

GZip: 1927/2182 Bytes

link

apple-touch-icon

/etc/designs/chase-ux/favicon-76.png

200

image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=166, s-maxage=1800 - max-age too short.

GZip: 2235/2489 Bytes

link

canonical

https://www.chase.com

link

icon

/etc/designs/chase-ux/favicon.ico

200

image/x-icon, missing X-Content-Type-Options nosniff

Cache-Control: max-age=197, s-maxage=300 - max-age too short.

GZip: 3713/15086 Bytes

link

preconnect

https://dpm.demdex.net

link

preconnect

https://midas.chase.com

link

preconnect

https://secure.chase.com

link

preconnect

https://sites.chase.com

link

preconnect

https://static.chasecdn.com

link

preload

/c/111823/etc/designs/chase-ux/css/home.min.css

200

text/css, missing X-Content-Type-Options nosniff

42688 Bytes

link

preload

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 15116/15116 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

link

preload

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 15324/15324 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

link

preload

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 18264/18264 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

link

preload

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 19004/19004 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

link

shortcut icon

/etc/designs/chase-ux/favicon.ico

200

image/x-icon, missing X-Content-Type-Options nosniff

Cache-Control: max-age=197, s-maxage=300 - max-age too short.

GZip: 3713/15086 Bytes

link

stylesheet

/c/111823/etc/designs/chase-ux/css/home.min.css

200

text/css, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31423836, s-maxage=31536000 - with long duration found.

GZip: 42688/195106 Bytes

local SRI possible, possible hash-values:

Content loaded via url("...")

fonts/dcefont.eot

fonts/dcefont.eot?#iefix

fonts/dcefont.svg#dce

fonts/dcefont.ttf

fonts/dcefont.woff

fonts/icomoon.eot?mqkbgj

fonts/icomoon.eot?mqkbgj#iefix

fonts/icomoon.svg?mqkbgj#icomoon

fonts/icomoon.ttf?mqkbgj

fonts/icomoon.woff?mqkbgj

fonts/smc.eot

fonts/smc.eot?#iefix

fonts/smc.svg#smc

fonts/smc.ttf

fonts/smc.woff

img/choices-logo-blue_lite.png

img/EHL-Slice.png

meta

utf-8

meta

apple-itunes-app

app-id=298867247, affiliate-data=JPMorganChase

meta

description

Chase online; credit cards, mortgages, commercial banking, auto loans, investing & retirement planning, checking and business banking.

meta

msapplication-TileColor

#FFFFFF

meta

msapplication-TileImage

/etc/designs/chase-ux/favicon-144.png

200

image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=1791, s-maxage=1800 - max-age too short.

Wrong GZip: 3562/3798 Bytes

meta

viewport

width=device-width, initial-scale=1.0

script

src

/c/111823/apps/chase/clientlibs/foundation/scripts/Reporting.js

200

Missing defer / async attribute.

application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: max-age=13441, s-maxage=14400 - max-age too short.

GZip: 35404/80267 Bytes

local SRI possible, possible hash-values:

script

src

/c/111823/etc/designs/chase-ux/clientlibs/chase-ux/js/dist/index.min.js

200

Missing defer / async attribute.

application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31421575, s-maxage=31536000 - with long duration found.

GZip: 165038/416429 Bytes

local SRI possible, possible hash-values:

script

src

/c/111823/etc/designs/chase-ux/clientlibs/jquery/js/jquery.min.js

200

Missing defer / async attribute.

application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31421054, s-maxage=31536000 - with long duration found.

GZip: 45328/96519 Bytes

local SRI possible, possible hash-values:

script

src

/c/111823/etc/designs/chase-ux/clientlibs/require/js/require.min.js

200

Missing defer / async attribute.

application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31421547, s-maxage=31536000 - with long duration found.

GZip: 7871/15253 Bytes

local SRI possible, possible hash-values:

script

src

/ruxitagentjs_ICA27NQVfhqrux_10267230522124059.js

200

Missing defer / async attribute.

text/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=71, s-maxage=300 - max-age too short.

GZip: 155047/318855 Bytes

local SRI possible, possible hash-values:

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31423864, s-maxage=31536000 with long duration found.

GZip used: 29487/45372 Bytes, font not compressed

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans-bold.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31422089, s-maxage=31536000 with long duration found.

GZip used: 15603/21012 Bytes, font not compressed

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans-bold-italic.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31422413, s-maxage=31536000 with long duration found.

GZip used: 17262/23304 Bytes, font not compressed

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans-extrabold.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31422404, s-maxage=31536000 with long duration found.

GZip used: 15793/20988 Bytes, font not compressed

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans-italic.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31436440, s-maxage=31536000 with long duration found.

GZip used: 17542/23680 Bytes, font not compressed

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans-light.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31422413, s-maxage=31536000 with long duration found.

GZip used: 28784/44716 Bytes, font not compressed

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans-light-italic.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31436452, s-maxage=31536000 with long duration found.

GZip used: 17652/23864 Bytes, font not compressed

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans-semibold.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31423742, s-maxage=31536000 with long duration found.

GZip used: 29712/45496 Bytes, font not compressed

style

/c/111823/etc/designs/chase-ux/css/fonts/opensans-semibold-italic.ttf

200

font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31423859, s-maxage=31536000 with long duration found.

GZip used: 17427/23660 Bytes, font not compressed

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans.woff

200

font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header

No GZip: 24876/24876 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 15116/15116 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold.woff

200

font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 14504/14504 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 15324/15324 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold-italic.woff

200

font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header

No GZip: 15932/15932 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold-italic.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 17080/17080 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold.woff

200

font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 15312/15312 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 16672/16672 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold-italic.ttf

404

Not Found

missing file

text/html; charset=iso-8859-1, missing X-Content-Type-Options nosniff

0 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold-italic.woff

200

font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 15488/15488 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold-italic.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 17040/17040 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-italic.woff

200

font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 15768/15768 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-italic.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 17544/17544 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light.woff

200

font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 24192/24192 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 18264/18264 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light-italic.woff

200

font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 15956/15956 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light-italic.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 17488/17488 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold.woff

200

font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 25108/25108 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 19004/19004 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold-italic.woff

200

font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header

No GZip: 15736/15736 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold-italic.woff2

200

font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000,s-maxage=2592000 with long duration found.

No GZip: 17412/17412 Bytes, font already compressed

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

12. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: ns0119.secondary.cloudflare.com, ns0140.secondary.cloudflare.com, ns05.jpmorganchase.com, ns06.jpmorganchase.com, ns1.jpmorganchase.com, ns2.jpmorganchase.com

QNr.	Domain	Type	NS used
1	com	NS	h.root-servers.net (2001:500:1::53)
	Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
2	ns0119.secondary.cloudflare.com	NS	a.gtld-servers.net (2001:503:a83e::2:30)
	Answer: ns3.cloudflare.com, ns4.cloudflare.com, ns5.cloudflare.com, ns6.cloudflare.com, ns7.cloudflare.com
	Answer: ns3.cloudflare.com 162.159.0.33, 162.159.7.226, 2400:cb00:2049:1::a29f:21, 2400:cb00:2049:1::a29f:7e2
	Answer: ns4.cloudflare.com 162.159.1.33, 162.159.8.55, 2400:cb00:2049:1::a29f:121, 2400:cb00:2049:1::a29f:837
	Answer: ns5.cloudflare.com 162.159.2.9, 162.159.9.55, 2400:cb00:2049:1::a29f:209, 2400:cb00:2049:1::a29f:937
	Answer: ns6.cloudflare.com 162.159.3.11, 162.159.5.6, 2400:cb00:2049:1::a29f:30b, 2400:cb00:2049:1::a29f:506
	Answer: ns7.cloudflare.com 162.159.4.8
3	ns0140.secondary.cloudflare.com	NS	a.gtld-servers.net (2001:503:a83e::2:30)
	Answer: ns3.cloudflare.com, ns4.cloudflare.com, ns5.cloudflare.com, ns6.cloudflare.com, ns7.cloudflare.com
	Answer: ns3.cloudflare.com 162.159.0.33, 162.159.7.226, 2400:cb00:2049:1::a29f:21, 2400:cb00:2049:1::a29f:7e2
	Answer: ns4.cloudflare.com 162.159.1.33, 162.159.8.55, 2400:cb00:2049:1::a29f:121, 2400:cb00:2049:1::a29f:837
	Answer: ns5.cloudflare.com 162.159.2.9, 162.159.9.55, 2400:cb00:2049:1::a29f:209, 2400:cb00:2049:1::a29f:937
	Answer: ns6.cloudflare.com 162.159.3.11, 162.159.5.6, 2400:cb00:2049:1::a29f:30b, 2400:cb00:2049:1::a29f:506
	Answer: ns7.cloudflare.com 162.159.4.8
4	ns05.jpmorganchase.com: 159.53.110.152	NS	a.gtld-servers.net (2001:503:a83e::2:30)
	Answer: ns0087.secondary.cloudflare.com 162.159.32.88, 2606:4700:51::a29f:2058
	Answer: ns0134.secondary.cloudflare.com 162.159.33.9, 2606:4700:59::a29f:2109
	Answer: ns06.jpmorganchase.com 159.53.110.153
	Answer: ns1.jpmorganchase.com 159.53.46.53
	Answer: ns2.jpmorganchase.com 159.53.78.53
5	ns0119.secondary.cloudflare.com: 162.159.32.120	A	ns3.cloudflare.com (2400:cb00:2049:1::a29f:21)
6	ns0119.secondary.cloudflare.com: 2606:4700:51::a29f:2078	AAAA	ns3.cloudflare.com (2400:cb00:2049:1::a29f:21)
7	ns0140.secondary.cloudflare.com: 162.159.33.15	A	ns3.cloudflare.com (2400:cb00:2049:1::a29f:21)
8	ns0140.secondary.cloudflare.com: 2606:4700:59::a29f:210f	AAAA	ns3.cloudflare.com (2400:cb00:2049:1::a29f:21)

13. CAA - Entries

Domainname	flag	Name	Value	∑ Queries
gtm.www.chase.com.akadns.net				1
www.chase.com.akadns.net	0		no CAA entry found	1
chase.com.akadns.net	0		no CAA entry found	1
com.akadns.net	0		no CAA entry found	1
www.chase.com				1
akadns.net	0		no CAA entry found	1
chase.com	5	issue	digicert.com	1
	5	issue	entrust.net	1
com	0		no CAA entry found	1
net	0		no CAA entry found	1

14. TXT - Entries

Domainname	TXT Entry	Status	∑ Queries
chase.com	atlassian-domain-verification=wUjrfh2T73RznZOKmEZfc0mRF92bjC7JyjSgRXg9Yt2e9ZMRZwafUO6GPJaecYOh	ok	1
chase.com	cisco-ci-domain-verification=15acba3ff8b19cc99a199df90260a91a9b2ad99afba353db7504851e61483a3d	ok	1
chase.com	flexera-domain-verification-xqwcoobvufoxibfx	ok	1
chase.com	IOUmBzHRjemcu6DZn5mwbJ78OU8ekbX4InsX/3c1ftVxCZ9jvtPmGyfvzcuzv2e0caXQh/yn21tNd2IP/wPEtg==	ok	1
chase.com	vmware-cloud-verification-ae1b2269-5b14-4db4-a4ea-a6e8d4507c95	ok	1
www.chase.com			1
_acme-challenge.chase.com	v=spf1 -all	missing entry or wrong length	1
gtm.www.chase.com.akadns.net			1
_acme-challenge.www.chase.com		Name Error - The domain name does not exist	1
_acme-challenge.chase.com.chase.com		Name Error - The domain name does not exist	1
_acme-challenge.www.chase.com.chase.com		Name Error - The domain name does not exist	1
_acme-challenge.www.chase.com.www.chase.com		Name Error - The domain name does not exist	1
_acme-challenge.gtm.www.chase.com.akadns.net		Name Error - The domain name does not exist	1
_acme-challenge.gtm.www.chase.com.akadns.net.gtm.www.chase.com.akadns.net		Name Error - The domain name does not exist	1

15. DomainService - Entries

Type		Domain	Pref	Value	DNS-error	num Answers	Status	Description
MX		chase.com	10	cluster14.us.messagelabs.com	0	4	ok
	A			67.219.247.200	0	3	ok
	A			67.219.246.221	0	3	ok
	A			67.219.250.210	0	3	ok
	CNAME				0	0	ok
MX		chase.com	20	cluster14.us.messagelabs.com	0	4	ok
	A			67.219.247.200	0	3	ok
	A			67.219.250.210	0	3	ok
	A			67.219.246.221	0	3	ok
	CNAME				0	0	ok
MX		chase.com	30	cluster14.us.messagelabs.com	0	4	ok
	A			67.219.247.200	0	3	ok
	A			67.219.250.210	0	3	ok
	A			67.219.246.221	0	3	ok
	CNAME				0	0	ok
MX		chase.com	40	cluster14a.us.messagelabs.com	0	4	ok
	A			67.219.250.210	0	3	ok
	A			67.219.247.200	0	3	ok
	A			67.219.246.221	0	3	ok
	CNAME				0	0	ok
_mta-sts	TXT	_mta-sts.chase.com		v=spf1 -all			2	A MTA-STS TXT Entry (Mail Transfer Agent Strict Transport Security) must start with "'v=STSv1". Do you really want to create a MTA-STS? Or is it the effect of a wildcard * DNS?
_dmarc	TXT	_dmarc.chase.com		v=DMARC1; p=reject; pct=100; rua=mailto:d@rua.agari.com; ruf=mailto:d@ruf.agari.com;	0	1	ok

16. Cipher Suites

Domain	IP	Port	Cipher (OpenSsl / IANA)
			Skipped, CDN used or too many ip addresses

17. Portchecks

No open Ports <> 80 / 443 found, so no additional Ports checked.

Permalink: https://check-your-website.server-daten.de/?i=d7bf80ca-14f9-4ee3-826f-e5cf1f0b4ba9

Last Result: https://check-your-website.server-daten.de/?q=chase.com - 2023-11-19 15:20:05

Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=chase.com" target="_blank">Check this Site: chase.com</a>

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

Check DNS, Urls + Redirects, Certificates and Content of your Website

Older results

1. IP-Addresses

2. DNSSEC

3. Name Servers

4. SOA-Entries

5. Screenshots

Mobile- and other Chrome-Checks

6. Url-Checks

7. Comments

1. General Results, most used to calculate the result

2. Header-Checks

3. DNS- and NameServer - Checks

4. Content- and Performance-critical Checks

8. Connections

9. Certificates

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

11. Html-Content - Entries

Summary

Details

12. Nameserver - IP-Adresses

13. CAA - Entries

14. TXT - Entries

15. DomainService - Entries

16. Cipher Suites

17. Portchecks