Check DNS, Urls + Redirects, Certificates and Content of your Website





1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
chase.com
A
159.53.42.11
New York/United States (US) - JPMorgan Chase & Co.
No Hostname found
yes
1
0

A
159.53.44.60
New York/United States (US) - JPMorgan Chase & Co.
No Hostname found
yes
1
0

A
159.53.84.126
New York/United States (US) - JPMorgan Chase & Co.
No Hostname found
yes
1
0

A
159.53.85.137
New York/United States (US) - JPMorgan Chase & Co.
No Hostname found
yes
1
0

A
159.53.113.168
New York/United States (US) - JPMorgan Chase & Co.
No Hostname found
yes
1
0

A
159.53.116.62
New York/United States (US) - JPMorgan Chase & Co.
No Hostname found
yes
1
0

A
159.53.224.21
New York/United States (US) - JPMorgan Chase & Co.
No Hostname found
yes
1
0

AAAA

yes


www.chase.com
CNAME
gtm.www.chase.com.akadns.net
yes
1
0

CNAME
www.chase.com.edgekey.net
yes


www.chase.com
A
88.221.221.88
Berlin/Land Berlin/Germany (DE) - Akamai Technologies
No Hostname found
no



A
88.221.221.115
Berlin/Land Berlin/Germany (DE) - Akamai Technologies
No Hostname found
no


*.chase.com
A

yes



AAAA

yes



CNAME

yes



2. DNSSEC

Zone (*)DNSSEC - Informations

Zone: (root)
(root)
1 DS RR published



DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=



Status: Valid because published



2 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 8, KeyTag 30903, Flags 256



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 22.03.2024, 00:00:00 +, Signature-Inception: 01.03.2024, 00:00:00 +, KeyTag 20326, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: com
com
1 DS RR in the parent zone found



DS with Algorithm 13, KeyTag 19718, DigestType 2 and Digest isuwzSj0ElCoCkkTiUJNNBUi2Uaw2gwCkfLT13HXgFo=



1 RRSIG RR to validate DS RR found



RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 17.03.2024, 22:00:00 +, Signature-Inception: 04.03.2024, 21:00:00 +, KeyTag 30903, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 30903 used to validate the DS RRSet in the parent zone



2 DNSKEY RR found



Public Key with Algorithm 13, KeyTag 4534, Flags 256



Public Key with Algorithm 13, KeyTag 19718, Flags 257 (SEP = Secure Entry Point)



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner com., Algorithm: 13, 1 Labels, original TTL: 86400 sec, Signature-expiration: 13.03.2024, 15:02:35 +, Signature-Inception: 27.02.2024, 14:57:35 +, KeyTag 19718, Signer-Name: com



Status: Good - Algorithmus 13 and DNSKEY with KeyTag 19718 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 19718, DigestType 2 and Digest "isuwzSj0ElCoCkkTiUJNNBUi2Uaw2gwCkfLT13HXgFo=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: chase.com
chase.com
0 DS RR in the parent zone found



DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "aio6vo95t5i4gcbf1mi36cggdhs2rdq0" between the hashed NSEC3-owner "aio6t84apj7hoibnfjoun840mm0b0dd3" and the hashed NextOwner "aio743uv99g635ivpkl11vdr7cbpa1k6". So the parent zone confirmes the not-existence of a DS RR.
Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner aio6t84apj7hoibnfjoun840mm0b0dd3.com., Algorithm: 13, 2 Labels, original TTL: 86400 sec, Signature-expiration: 11.03.2024, 06:45:14 +, Signature-Inception: 04.03.2024, 05:35:14 +, KeyTag 4534, Signer-Name: com



DS-Query in the parent zone sends valid NSEC3 RR with the Hash "ck0pojmg874ljref7efn8430qvit8bsm" as Owner. That's the Hash of "com" with the NextHashedOwnerName "ck0q2d6ni4i7eqh8na30ns61o48ul8g5". So that domain name is the Closest Encloser of "chase.com". Opt-Out: True.
Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner ck0pojmg874ljref7efn8430qvit8bsm.com., Algorithm: 13, 2 Labels, original TTL: 86400 sec, Signature-expiration: 09.03.2024, 05:26:07 +, Signature-Inception: 02.03.2024, 04:16:07 +, KeyTag 4534, Signer-Name: com



0 DNSKEY RR found




Zone: www.chase.com
www.chase.com
0 DS RR in the parent zone found

Zone: (root)
(root)
1 DS RR published



DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=



Status: Valid because published



2 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 8, KeyTag 30903, Flags 256



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 22.03.2024, 00:00:00 +, Signature-Inception: 01.03.2024, 00:00:00 +, KeyTag 20326, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: net
net
1 DS RR in the parent zone found



DS with Algorithm 13, KeyTag 37331, DigestType 2 and Digest LwvsLW95370dCP0ho6+S0OOaS57x4/QRH/8oJJDaRTs=



1 RRSIG RR to validate DS RR found



RRSIG-Owner net., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 17.03.2024, 22:00:00 +, Signature-Inception: 04.03.2024, 21:00:00 +, KeyTag 30903, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 30903 used to validate the DS RRSet in the parent zone



2 DNSKEY RR found



Public Key with Algorithm 13, KeyTag 34730, Flags 256



Public Key with Algorithm 13, KeyTag 37331, Flags 257 (SEP = Secure Entry Point)



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner net., Algorithm: 13, 1 Labels, original TTL: 86400 sec, Signature-expiration: 13.03.2024, 15:10:35 +, Signature-Inception: 27.02.2024, 15:05:35 +, KeyTag 37331, Signer-Name: net



Status: Good - Algorithmus 13 and DNSKEY with KeyTag 37331 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 37331, DigestType 2 and Digest "LwvsLW95370dCP0ho6+S0OOaS57x4/QRH/8oJJDaRTs=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: akadns.net
akadns.net
0 DS RR in the parent zone found



DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "o7vmn67931abl61dtsv9vl6cmbf3qroe" between the hashed NSEC3-owner "o7vm7jqq7m00i80kldebif0rta8109qg" and the hashed NextOwner "o7vopa298lci0isuhupl1g86t99hdqji". So the parent zone confirmes the not-existence of a DS RR.
Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner o7vm7jqq7m00i80kldebif0rta8109qg.net., Algorithm: 13, 2 Labels, original TTL: 86400 sec, Signature-expiration: 08.03.2024, 08:12:24 +, Signature-Inception: 01.03.2024, 07:02:24 +, KeyTag 34730, Signer-Name: net



DS-Query in the parent zone sends valid NSEC3 RR with the Hash "a1rt98bs5qgc9nfi51s9hci47uljg6jh" as Owner. That's the Hash of "net" with the NextHashedOwnerName "a1rtlnpgulogn7b9a62shje1u3ttp8dr". So that domain name is the Closest Encloser of "akadns.net". Opt-Out: True.
Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner a1rt98bs5qgc9nfi51s9hci47uljg6jh.net., Algorithm: 13, 2 Labels, original TTL: 86400 sec, Signature-expiration: 09.03.2024, 08:18:30 +, Signature-Inception: 02.03.2024, 07:08:30 +, KeyTag 34730, Signer-Name: net



0 DNSKEY RR found




Zone: com.akadns.net
com.akadns.net
0 DS RR in the parent zone found



0 DNSKEY RR found




Zone: chase.com.akadns.net
chase.com.akadns.net
0 DS RR in the parent zone found



0 DNSKEY RR found




Zone: www.chase.com.akadns.net
www.chase.com.akadns.net
0 DS RR in the parent zone found



0 DNSKEY RR found




Zone: gtm.www.chase.com.akadns.net
gtm.www.chase.com.akadns.net
0 DS RR in the parent zone found


3. Name Servers

DomainNameserverNS-IP
chase.com
  ns0119.secondary.cloudflare.com / 67m60
162.159.32.120
San Francisco/California/United States (US) - Cloudflare, Inc.


 
2606:4700:51::a29f:2078
Montreal/Quebec/Canada (CA) - Cloudflare, Inc.


  ns0140.secondary.cloudflare.com / 67m82
162.159.33.15
Toronto/Ontario/Canada (CA) - Cloudflare, Inc.


 
2606:4700:59::a29f:210f
Montreal/Quebec/Canada (CA) - Cloudflare, Inc.


  ns05.jpmorganchase.com
159.53.110.152
New York/United States (US) - JPMorgan Chase & Co.


  ns06.jpmorganchase.com
159.53.110.153
New York/United States (US) - JPMorgan Chase & Co.


  ns1.jpmorganchase.com
159.53.46.53
New York/United States (US) - JPMorgan Chase & Co.


  ns2.jpmorganchase.com
159.53.78.53
New York/United States (US) - JPMorgan Chase & Co.

com
  a.gtld-servers.net / nnn1-par6


  b.gtld-servers.net / nnn1-eltxl1


  c.gtld-servers.net / nnn1-par6


  d.gtld-servers.net / nnn1-par6


  e.gtld-servers.net / nnn1-par6


  f.gtld-servers.net / nnn1-defra-4


  g.gtld-servers.net / nnn1-defra-4


  h.gtld-servers.net / nnn1-defra-4


  i.gtld-servers.net / nnn1-defra-4


  j.gtld-servers.net / nnn1-gblon-3


  k.gtld-servers.net / nnn1-gblon-3


  l.gtld-servers.net / nnn1-gblon-3


  m.gtld-servers.net / nnn1-gblon-3


www.chase.com.akadns.net
  internal.akadns.net

chase.com.akadns.net
  internal.akadns.net

com.akadns.net
  internal.akadns.net

akadns.net
  a11-129.akadns.net
84.53.139.129
Sterling/Virginia/United States (US) - Akamai Technologies


  a1-128.akadns.net
193.108.88.128
Paris/Île-de-France/France (FR) - Akamai International B.V.


  a12-131.akagtm.org
184.26.160.131
Frankfurt am Main/Hesse/Germany (DE) - Akamai International B.V.


  a13-130.akagtm.org
2.22.230.130
Madrid/Spain (ES) - Akamai Technologies


  a18-128.akagtm.org
95.101.36.128
Frankfurt am Main/Hesse/Germany (DE) - Akamai Technologies


  a28-129.akagtm.org
95.100.173.129
Frankfurt am Main/Hesse/Germany (DE) - Akamai Technologies


  a3-129.akadns.net
96.7.49.129
Cambridge/Massachusetts/United States (US) - Akamai International B.V.


 
2600:1408:1c::81
Los Angeles/California/United States (US) - Akamai International B.V.


  a5-130.akagtm.org
95.100.168.130
Chicago/Illinois/United States (US) - Akamai Technologies


  a7-131.akadns.net
23.61.199.131
Cambridge/Massachusetts/United States (US) - Akamai International B.V.


 
2600:1406:32::83
Atlanta/Georgia/United States (US) - Akamai International B.V.


  a9-128.akadns.net
184.85.248.128
Dallas/Texas/United States (US) - Akamai International B.V.


  internal.akadns.net

net
  a.gtld-servers.net / nnn1-par6


  b.gtld-servers.net / nnn1-eltxl1


  c.gtld-servers.net / nnn1-par6


  d.gtld-servers.net / nnn1-par6


  e.gtld-servers.net / nnn1-par6


  f.gtld-servers.net / nnn1-defra-4


  g.gtld-servers.net / nnn1-defra-4


  h.gtld-servers.net / nnn1-defra-4


  i.gtld-servers.net / nnn1-defra-4


  j.gtld-servers.net / nnn1-gblon-3


  k.gtld-servers.net / nnn1-gblon-3


  l.gtld-servers.net / nnn1-gblon-3


  m.gtld-servers.net / nnn1-gblon-3


4. SOA-Entries


Domain:com
Zone-Name:com
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1709597469
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:12


Domain:com
Zone-Name:com
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1709597484
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:1


Domain:chase.com
Zone-Name:chase.com
Primary:ns1.jpmorganchase.com
Mail:hostmaster.jpmchase.com
Serial:656930371
Refresh:10800
Retry:1800
Expire:1209600
TTL:3600
num Entries:8



Domain:net
Zone-Name:net
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1709597499
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:12


Domain:net
Zone-Name:net
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1709597514
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:1


Domain:akadns.net
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:2


Domain:akadns.net
Zone-Name:akadns.net
Primary:internal.akadns.net
Mail:hostmaster.akamai.com
Serial:1629813934
Refresh:90000
Retry:90000
Expire:90000
TTL:180
num Entries:11


Domain:com.akadns.net
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:1


Domain:chase.com.akadns.net
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:1


Domain:www.chase.com.akadns.net
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:1


5. Screenshots

Startaddress: https://www.chase.com/, address used: https://www.chase.com/, Screenshot created 2024-03-05 01:17:13 +00:0

Mobil (412px x 732px)

1072 milliseconds

Screenshot mobile - https://www.chase.com/
Mobil + Landscape (732px x 412px)

1101 milliseconds

Screenshot mobile landscape - https://www.chase.com/
Screen (1280px x 1680px)

1226 milliseconds

Screenshot Desktop - https://www.chase.com/

Mobile- and other Chrome-Checks

widthheight
visual Viewport396732
content Size3965458

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://chase.com/
159.53.42.11
301
https://www.chase.com/
0.203
E
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/
159.53.44.60
301
https://www.chase.com/
0.200
E
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/
159.53.84.126
301
https://www.chase.com/
0.204
E
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/
159.53.85.137
301
https://www.chase.com/
0.204
E
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/
159.53.113.168
301
https://www.chase.com/
0.234
E
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/
159.53.116.62
301
https://www.chase.com/
0.234
E
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/
159.53.224.21
301
https://www.chase.com/
0.330
E
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• http://www.chase.com/
88.221.221.88
301
https://www.chase.com/
0.017
A
Location: https://www.chase.com/
Cache-Control: max-age=0
Date: Tue, 05 Mar 2024 00:14:15 GMT
Connection: close
Server-Timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1709597655398_1490935124_413262578_15_5526_0_0_-";dur=1
x-amzn-trace-id: 0.54dddd58.1709597655.18a1e2f2
Content-Length: 0

• http://www.chase.com/
88.221.221.115
301
https://www.chase.com/
0.014
A
Location: https://www.chase.com/
Cache-Control: max-age=0
Date: Tue, 05 Mar 2024 00:14:15 GMT
Connection: close
Server-Timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1709597655383_1490935151_607326006_13_5101_0_0_-";dur=1
x-amzn-trace-id: 0.6fdddd58.1709597655.24330f36
Content-Length: 0

• https://chase.com/
159.53.42.11
301
https://www.chase.com/
4.797
B
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• https://chase.com/
159.53.44.60
301
https://www.chase.com/
4.764
B
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• https://chase.com/
159.53.84.126
301
https://www.chase.com/
5.143
B
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• https://chase.com/
159.53.85.137
301
https://www.chase.com/
4.810
B
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• https://chase.com/
159.53.113.168
301
https://www.chase.com/
5.137
B
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• https://chase.com/
159.53.116.62
301
https://www.chase.com/
5.110
B
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• https://chase.com/
159.53.224.21
301
https://www.chase.com/
6.013
B
Location: https://www.chase.com/
Server: BigIP
Connection: close
Content-Length: 0

• https://www.chase.com/
88.221.221.88 GZip used - 17474 / 113113 - 84.55 %
Inline-JavaScript (∑/total): 18/13791 Inline-CSS (∑/total): 2/4372
200

Html is minified: 161.36 %
6.046
I
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Content-Security-Policy: frame-ancestors 'none'
Content-Security-Policy: frame-ancestors 'none'
Accept-CH: Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
Permissions-Policy: ch-ua-full-version-list=("https://*.chase.com"),ch-ua-platform-version=("https://*.chase.com"),ch-ua-arch=("https://*.chase.com"),ch-ua-model=("https://*.chase.com"),ch-ua-bitness=("https://*.chase.com"),ch-ua-wow64=("https://*.chase.com")
ETag: "1709594583:dtagent10271230629152232a8Fc"
X-Akamai-Transformed: 9 - 0 pmb=mRUM,2
Cache-Control: max-age=3332, s-maxage=3600
Date: Tue, 05 Mar 2024 00:15:03 GMT
Connection: close
Server-Timing: cdn-cache; desc=HIT, edge; dur=1, dtSInfo;desc="0", dtRpid;desc="-984228365", ak_p; desc="1709597703776_1490935124_413270030_26_5375_1_4_-";dur=1
Strict-Transport-Security: max-age=31536000
x-amzn-trace-id: 0.54dddd58.1709597703.18a2000e
Last-Modified: Mon, 04 Mar 2024 23:23:02 GMT
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Content-Length: 17474

• https://www.chase.com/
88.221.221.115 GZip used - 17476 / 113114 - 84.55 %
Inline-JavaScript (∑/total): 18/13792 Inline-CSS (∑/total): 2/4372
200

Html is minified: 161.37 %
6.014
I
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Content-Security-Policy: frame-ancestors 'none'
Content-Security-Policy: frame-ancestors 'none'
Accept-CH: Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
Permissions-Policy: ch-ua-full-version-list=("https://*.chase.com"),ch-ua-platform-version=("https://*.chase.com"),ch-ua-arch=("https://*.chase.com"),ch-ua-model=("https://*.chase.com"),ch-ua-bitness=("https://*.chase.com"),ch-ua-wow64=("https://*.chase.com")
ETag: "1709594583:dtagent10271230629152232a8Fc"
X-Akamai-Transformed: 9 - 0 pmb=mRUM,2
Cache-Control: max-age=3477, s-maxage=3600
Date: Tue, 05 Mar 2024 00:14:56 GMT
Connection: close
Server-Timing: cdn-cache; desc=HIT, edge; dur=1, dtSInfo;desc="0", dtRpid;desc="-984228365", ak_p; desc="1709597696764_1490935151_607334450_20_5034_1_4_-";dur=1
Strict-Transport-Security: max-age=31536000
x-amzn-trace-id: 0.6fdddd58.1709597696.24333032
Last-Modified: Mon, 04 Mar 2024 23:23:02 GMT
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Content-Length: 17476

• http://chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
159.53.42.11
301
https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.187
E
Visible Content:
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
159.53.44.60
301
https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.203
E
Visible Content:
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
159.53.84.126
301
https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.190
E
Visible Content:
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
159.53.85.137
301
https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.204
E
Visible Content:
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
159.53.113.168
301
https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.236
E
Visible Content:
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
159.53.116.62
301
https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.234
E
Visible Content:
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: BigIP
Connection: close
Content-Length: 0

• http://chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
159.53.224.21
301
https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.327
E
Visible Content:
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: BigIP
Connection: close
Content-Length: 0

• http://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
88.221.221.88
301
https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.780
A
Visible Content:
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Cache-Control: max-age=0
Date: Tue, 05 Mar 2024 00:15:14 GMT
Connection: close
Server-Timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1709597713480_1490935124_413271430_16_768318_0_0_-";dur=1
x-amzn-trace-id: 0.54dddd58.1709597713.18a20586
Content-Length: 0

• http://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
88.221.221.115
301
https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.624
A
Visible Content:
Location: https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Cache-Control: max-age=0
Date: Tue, 05 Mar 2024 00:15:13 GMT
Connection: close
Server-Timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1709597712835_1490935151_607338086_12_606257_0_0_-";dur=1
x-amzn-trace-id: 0.6fdddd58.1709597712.24333e66
Content-Length: 0

• https://www.chase.com/resources/404.html

301
https://www.chase.com/digital/resources/oops.html
6.077
A
Visible Content:
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Location: https://www.chase.com/digital/resources/oops.html
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Access-Control-Allow-Origin: *
X-Content-Security-Policy: frame-ancestors 'none'
Content-Security-Policy: frame-ancestors 'none'
Accept-CH: Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
Permissions-Policy: ch-ua-full-version-list=("https://*.chase.com"),ch-ua-platform-version=("https://*.chase.com"),ch-ua-arch=("https://*.chase.com"),ch-ua-model=("https://*.chase.com"),ch-ua-bitness=("https://*.chase.com"),ch-ua-wow64=("https://*.chase.com")
Cache-Control: max-age=143, s-maxage=900
Date: Tue, 05 Mar 2024 00:15:33 GMT
Connection: close
Server-Timing: cdn-cache; desc=HIT, edge; dur=22, origin; dur=0, dtSInfo;desc="0", dtRpid;desc="1672196382", ak_p; desc="1709597733259_1490935151_607342351_2269_4820_1_4_-";dur=1
Strict-Transport-Security: max-age=31536000
x-amzn-trace-id: 0.6fdddd58.1709597733.24334f0f
Content-Length: 0
Content-Type: text/html; charset=utf-8

• https://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

302
https://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
6.217
B
Visible Content:
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Location: https://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Access-Control-Allow-Origin: *
X-Content-Security-Policy: frame-ancestors 'none'
Content-Security-Policy: frame-ancestors 'none'
Cache-Control: max-age=300, s-maxage=300
Date: Tue, 05 Mar 2024 00:15:19 GMT
Connection: close
Set-Cookie: dtCookie=v_4_srv_1_sn_5A23C18C58E4432BBD8BECE776496C0F_perc_100000_ol_0_mul_1_app-3Ac0834ad25a3fd2c3_1_rcs-3Acss_0; Path=/; Domain=.chase.com, TS01afb5d0=011deaa114c06a873305e7c57a77cf0961d24e24713cb2eab089459deb6be6f62c83c58de501f819d9f843fbc5efb301d536b09eeb; Path=/, TS01ddf986=011deaa114c06a873305e7c57a77cf0961d24e24713cb2eab089459deb6be6f62c83c58de501f819d9f843fbc5efb301d536b09eeb; path=/; domain=.chase.com, ppnet_2777=!428vi38SwPHxSnAftxCJuiZ3gOVJud+ufFxROi8y7XNnhdva9tuZ0gPbD5Srz/d8l0jlq5YUassf3gc=; path=/; Httponly; Secure
Server-Timing: cdn-cache; desc=MISS, edge; dur=19, origin; dur=149, dtSInfo;desc="0", dtRpid;desc="118460622", ak_p; desc="1709597719092_1490935151_607339490_16776_6415_1_4_-";dur=1
Strict-Transport-Security: max-age=31536000
x-amzn-trace-id: 0.6fdddd58.1709597719.243343e2
Content-Length: 0

• https://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

302
https://www.chase.com/resources/404.html
6.157
B
Visible Content:
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Location: https://www.chase.com/resources/404.html
Access-Control-Allow-Origin: *
X-Content-Security-Policy: frame-ancestors 'none'
Content-Security-Policy: frame-ancestors 'none'
Cache-Control: max-age=290, s-maxage=300
Date: Tue, 05 Mar 2024 00:15:26 GMT
Connection: close
Set-Cookie: dtCookie=v_4_srv_1_sn_7C64413D4470F2C63D30AB1DC557801C_perc_100000_ol_0_mul_1_app-3Ac0834ad25a3fd2c3_1_rcs-3Acss_0; Path=/; Domain=.chase.com, TS01afb5d0=0121f105cbb259a07dbcdde71f912e2965e7718f6db472c01cefde771057298a3b16735f9e09b443edb0f4932a03047f60afff685a; Path=/, TS01ddf986=0121f105cbb259a07dbcdde71f912e2965e7718f6db472c01cefde771057298a3b16735f9e09b443edb0f4932a03047f60afff685a; path=/; domain=.chase.com, ppnet_2777=!RH3Ugj/iQ4onlYqiLbuBc2F6qe3TwZhdRErSAOGPw2kHDRIEeTgU8mpqb2GSFajSgC/jOVPayS89lg==; path=/; Httponly; Secure
Server-Timing: cdn-cache; desc=MISS, edge; dur=18, origin; dur=96, dtSInfo;desc="0", dtRpid;desc="1550504361", ak_p; desc="1709597726344_1490935151_607340967_11396_5529_1_4_-";dur=1
Strict-Transport-Security: max-age=31536000
x-amzn-trace-id: 0.6fdddd58.1709597726.243349a7
Content-Length: 0

• https://www.chase.com/digital/resources/oops.html
GZip used - 32230 / 190193 - 83.05 %
Inline-JavaScript (∑/total): 13/81352 Inline-CSS (∑/total): 2/45788
200

Html is minified: 306.28 %
6.093

Visible Content:
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Content-Security-Policy: frame-ancestors 'none'
Content-Security-Policy: frame-ancestors 'none'
Accept-CH: Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
Permissions-Policy: ch-ua-full-version-list=("https://*.chase.com"),ch-ua-platform-version=("https://*.chase.com"),ch-ua-arch=("https://*.chase.com"),ch-ua-model=("https://*.chase.com"),ch-ua-bitness=("https://*.chase.com"),ch-ua-wow64=("https://*.chase.com")
ETag: "1709595358:dtagent10271230629152232a8Fc"
X-Akamai-Transformed: 9 45062 0 pmb=mRUM,2
Cache-Control: max-age=550, s-maxage=900
Date: Tue, 05 Mar 2024 00:15:40 GMT
Connection: close
Server-Timing: cdn-cache; desc=HIT, edge; dur=23, origin; dur=0, dtSInfo;desc="0", dtRpid;desc="2081825796", ak_p; desc="1709597740092_1490935124_413275404_2260_5287_1_5_-";dur=1
Strict-Transport-Security: max-age=31536000
x-amzn-trace-id: 0.54dddd58.1709597740.18a2150c
Last-Modified: Mon, 04 Mar 2024 23:35:57 GMT
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Content-Length: 32230

• https://159.53.42.11/
159.53.42.11
-16

0.513
W
UnknownError - An error occurred while sending the request. - Unable to read data from the transport connection (FF: PR_CONNECT_RESET_ERROR)

• https://159.53.44.60/
159.53.44.60
-16

0.517
W
UnknownError - An error occurred while sending the request. - Unable to read data from the transport connection (FF: PR_CONNECT_RESET_ERROR)

• https://88.221.221.88/
88.221.221.88
-16

0.000
P
UnknownError - The SSL connection could not be established, see inner exception. - Authentication failed because the remote party sent a TLS alert: 'InternalError' (FF: SSL_ERROR_INTERNAL_ERROR_ALERT)

• https://159.53.84.126/
159.53.84.126
-16

0.513
W
UnknownError - An error occurred while sending the request. - Unable to read data from the transport connection (FF: PR_CONNECT_RESET_ERROR)

• https://159.53.85.137/
159.53.85.137
-16

0.516
W
UnknownError - An error occurred while sending the request. - Unable to read data from the transport connection (FF: PR_CONNECT_RESET_ERROR)

• https://159.53.116.62/
159.53.116.62
-16

0.593
W
UnknownError - An error occurred while sending the request. - Unable to read data from the transport connection (FF: PR_CONNECT_RESET_ERROR)

• https://159.53.224.21/
159.53.224.21
-16

0.830
W
UnknownError - An error occurred while sending the request. - Unable to read data from the transport connection (FF: PR_CONNECT_RESET_ERROR)

• https://88.221.221.115/
88.221.221.115
-16

0.016
P
UnknownError - The SSL connection could not be established, see inner exception. - Authentication failed because the remote party sent a TLS alert: 'InternalError' (FF: SSL_ERROR_INTERNAL_ERROR_ALERT)

• https://159.53.113.168/
159.53.113.168
-16

0.594
W
UnknownError - An error occurred while sending the request. - Unable to read data from the transport connection (FF: PR_CONNECT_RESET_ERROR)

7. Comments


1. General Results, most used to calculate the result

Aname "chase.com" is domain, public suffix is ".com", top-level-domain is ".com", top-level-domain-type is "generic", tld-manager is "VeriSign Global Registry Services", num .com-domains preloaded: 92432 (complete: 239099)
AGood: All ip addresses are public addresses
AGood: Minimal 2 ip addresses per domain name found: chase.com has 7 different ip addresses (authoritative).
Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: chase.com has no ipv6 address.
AGood: No asked Authoritative Name Server had a timeout
Ahttps://www.chase.com/resources/404.html
301
https://www.chase.com/digital/resources/oops.html
Correct redirect https to https
Ahttps://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
302
https://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Correct redirect https to https
Ahttps://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
302
https://www.chase.com/resources/404.html
Correct redirect https to https
AGood: destination is https
AGood - only one version with Http-Status 200
AGood: one preferred version: www is preferred
AGood: No cookie sent via http.
HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
AGood: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
Ahttp://www.chase.com/ 88.221.221.88
301
https://www.chase.com/
Correct redirect http - https with the same domain name
Ahttp://www.chase.com/ 88.221.221.115
301
https://www.chase.com/
Correct redirect http - https with the same domain name
Bhttps://chase.com/ 159.53.42.11
301

Missing HSTS-Header
Bhttps://chase.com/ 159.53.44.60
301

Missing HSTS-Header
Bhttps://chase.com/ 159.53.84.126
301

Missing HSTS-Header
Bhttps://chase.com/ 159.53.85.137
301

Missing HSTS-Header
Bhttps://chase.com/ 159.53.113.168
301

Missing HSTS-Header
Bhttps://chase.com/ 159.53.116.62
301

Missing HSTS-Header
Bhttps://chase.com/ 159.53.224.21
301

Missing HSTS-Header
Bhttps://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
302
dtCookie=v_4_srv_1_sn_5A23C18C58E4432BBD8BECE776496C0F_perc_100000_ol_0_mul_1_app-3Ac0834ad25a3fd2c3_1_rcs-3Acss_0; Path=/; Domain=.chase.com
Cookie sent via https, but not marked as secure
Bhttps://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
302
TS01afb5d0=011deaa114c06a873305e7c57a77cf0961d24e24713cb2eab089459deb6be6f62c83c58de501f819d9f843fbc5efb301d536b09eeb; Path=/
Cookie sent via https, but not marked as secure
Bhttps://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
302
TS01ddf986=011deaa114c06a873305e7c57a77cf0961d24e24713cb2eab089459deb6be6f62c83c58de501f819d9f843fbc5efb301d536b09eeb; path=/; domain=.chase.com
Cookie sent via https, but not marked as secure
Bhttps://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
302
dtCookie=v_4_srv_1_sn_7C64413D4470F2C63D30AB1DC557801C_perc_100000_ol_0_mul_1_app-3Ac0834ad25a3fd2c3_1_rcs-3Acss_0; Path=/; Domain=.chase.com
Cookie sent via https, but not marked as secure
Bhttps://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
302
TS01afb5d0=0121f105cbb259a07dbcdde71f912e2965e7718f6db472c01cefde771057298a3b16735f9e09b443edb0f4932a03047f60afff685a; Path=/
Cookie sent via https, but not marked as secure
Bhttps://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
302
TS01ddf986=0121f105cbb259a07dbcdde71f912e2965e7718f6db472c01cefde771057298a3b16735f9e09b443edb0f4932a03047f60afff685a; path=/; domain=.chase.com
Cookie sent via https, but not marked as secure
Bhttps://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
302
dtCookie=v_4_srv_1_sn_5A23C18C58E4432BBD8BECE776496C0F_perc_100000_ol_0_mul_1_app-3Ac0834ad25a3fd2c3_1_rcs-3Acss_0; Path=/; Domain=.chase.com
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
302
TS01afb5d0=011deaa114c06a873305e7c57a77cf0961d24e24713cb2eab089459deb6be6f62c83c58de501f819d9f843fbc5efb301d536b09eeb; Path=/
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
302
TS01ddf986=011deaa114c06a873305e7c57a77cf0961d24e24713cb2eab089459deb6be6f62c83c58de501f819d9f843fbc5efb301d536b09eeb; path=/; domain=.chase.com
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://www.chase.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
302
ppnet_2777=!428vi38SwPHxSnAftxCJuiZ3gOVJud+ufFxROi8y7XNnhdva9tuZ0gPbD5Srz/d8l0jlq5YUassf3gc=; path=/; Httponly; Secure
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
302
dtCookie=v_4_srv_1_sn_7C64413D4470F2C63D30AB1DC557801C_perc_100000_ol_0_mul_1_app-3Ac0834ad25a3fd2c3_1_rcs-3Acss_0; Path=/; Domain=.chase.com
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
302
TS01afb5d0=0121f105cbb259a07dbcdde71f912e2965e7718f6db472c01cefde771057298a3b16735f9e09b443edb0f4932a03047f60afff685a; Path=/
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
302
TS01ddf986=0121f105cbb259a07dbcdde71f912e2965e7718f6db472c01cefde771057298a3b16735f9e09b443edb0f4932a03047f60afff685a; path=/; domain=.chase.com
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://www.chase.com/index.html.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
302
ppnet_2777=!RH3Ugj/iQ4onlYqiLbuBc2F6qe3TwZhdRErSAOGPw2kHDRIEeTgU8mpqb2GSFajSgC/jOVPayS89lg==; path=/; Httponly; Secure
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Ehttp://chase.com/ 159.53.42.11
301
https://www.chase.com/
Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
Ehttp://chase.com/ 159.53.44.60
301
https://www.chase.com/
Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
Ehttp://chase.com/ 159.53.84.126
301
https://www.chase.com/
Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
Ehttp://chase.com/ 159.53.85.137
301
https://www.chase.com/
Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
Ehttp://chase.com/ 159.53.113.168
301
https://www.chase.com/
Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
Ehttp://chase.com/ 159.53.116.62
301
https://www.chase.com/
Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
Ehttp://chase.com/ 159.53.224.21
301
https://www.chase.com/
Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
Ihttps://www.chase.com/ 88.221.221.115
200

Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
Ihttps://www.chase.com/ 88.221.221.88
200

Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
AGood: More then one ip address per domain name found, checking all ip addresses the same http status and the same certificate found: Domain chase.com, 7 ip addresses.
Info: Checking the ip addresses of that domain name not exact one certificate found. So it's impossible to check if that domain requires Server Name Indication (SNI).: Domain chase.com, 7 ip addresses.
AGood: _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Domainname: _mta-sts.chase.com
BBad: _mta-sts TXT found, but invalid

2. Header-Checks (Cross-Origin-* headers are alpha - started 2024-06-05)

Awww.chase.com 88.221.221.88
Content-Security-Policy
Ok: Header without syntax errors found: frame-ancestors 'none'
F

Bad: Missing default-src directive. A default-src directive is used if one of the specialized fetch directives (child-src, connect-src, font-src, frame-src, img-src, manifest-src, media-src, object-src, prefetch-src, script-src, style-src, worker-src) isn't defined. Missing default-src, all sources are allowed, that's bad. A default-src with 'none' or 'self' blocks that.
E

Bad: No form-action directive found. Use one to limit the form - action - destinations. form-action is a navigation-directive, so default-src isn't used.
A

Good: frame-ancestors directive found. That limits pages who are allowed to use this page in a frame / iframe / object / embed / applet. frame-ancestors is a navigation-directive, so default-src isn't used.
E

Bad: No base-uri directive found. Use one to limit the URLs which can be used in a document's <base> element. Because it's a document directive, default-src isn't used, so an own directive is required.
F

Critical: No object-src and no default-src as fallback defined. So object / embed / applet can load every resource. That's fatal.
F

Critical: No script-src and no default-src as fallback defined. So scripts are unlimited. That's fatal.
A
Permissions-Policy
Ok: Header without syntax errors found: ch-ua-full-version-list=("https://*.chase.com"),ch-ua-platform-version=("https://*.chase.com"),ch-ua-arch=("https://*.chase.com"),ch-ua-model=("https://*.chase.com"),ch-ua-bitness=("https://*.chase.com"),ch-ua-wow64=("https://*.chase.com")
A
X-Frame-Options
Ok: Header without syntax errors found: SAMEORIGIN
B

Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A
X-Xss-Protection
Ok: Header without syntax errors found: 1; mode=block
B

Info: Header is deprecated. May not longer work in modern browsers. 1; mode=block
Awww.chase.com 88.221.221.115
Content-Security-Policy
Ok: Header without syntax errors found: frame-ancestors 'none'
F

Bad: Missing default-src directive. A default-src directive is used if one of the specialized fetch directives (child-src, connect-src, font-src, frame-src, img-src, manifest-src, media-src, object-src, prefetch-src, script-src, style-src, worker-src) isn't defined. Missing default-src, all sources are allowed, that's bad. A default-src with 'none' or 'self' blocks that.
E

Bad: No form-action directive found. Use one to limit the form - action - destinations. form-action is a navigation-directive, so default-src isn't used.
A

Good: frame-ancestors directive found. That limits pages who are allowed to use this page in a frame / iframe / object / embed / applet. frame-ancestors is a navigation-directive, so default-src isn't used.
E

Bad: No base-uri directive found. Use one to limit the URLs which can be used in a document's <base> element. Because it's a document directive, default-src isn't used, so an own directive is required.
F

Critical: No object-src and no default-src as fallback defined. So object / embed / applet can load every resource. That's fatal.
F

Critical: No script-src and no default-src as fallback defined. So scripts are unlimited. That's fatal.
A
Permissions-Policy
Ok: Header without syntax errors found: ch-ua-full-version-list=("https://*.chase.com"),ch-ua-platform-version=("https://*.chase.com"),ch-ua-arch=("https://*.chase.com"),ch-ua-model=("https://*.chase.com"),ch-ua-bitness=("https://*.chase.com"),ch-ua-wow64=("https://*.chase.com")
A
X-Frame-Options
Ok: Header without syntax errors found: SAMEORIGIN
B

Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A
X-Xss-Protection
Ok: Header without syntax errors found: 1; mode=block
B

Info: Header is deprecated. May not longer work in modern browsers. 1; mode=block
Fwww.chase.com 88.221.221.88
X-Content-Type-Options
Critical: Missing Header:
Fwww.chase.com 88.221.221.88
Referrer-Policy
Critical: Missing Header:
Fwww.chase.com 88.221.221.115
X-Content-Type-Options
Critical: Missing Header:
Fwww.chase.com 88.221.221.115
Referrer-Policy
Critical: Missing Header:

3. DNS- and NameServer - Checks

AInfo:: 8 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 6 Name Servers.
AInfo:: 8 Queries complete, 8 with IPv6, 0 with IPv4.
AGood: All DNS Queries done via IPv6.
AGood: Some ip addresses of name servers found with the minimum of two DNS Queries. One to find the TLD-Zone, one to ask the TLD-Zone.ns05.jpmorganchase.com (159.53.110.152), ns06.jpmorganchase.com (159.53.110.153), ns1.jpmorganchase.com (159.53.46.53), ns2.jpmorganchase.com (159.53.78.53)
AGood (1 - 3.0):: An average of 1.3 queries per domain name server required to find all ip addresses of all name servers.
AInfo:: 6 different Name Servers found: ns0119.secondary.cloudflare.com, ns0140.secondary.cloudflare.com, ns05.jpmorganchase.com, ns06.jpmorganchase.com, ns1.jpmorganchase.com, ns2.jpmorganchase.com, 6 Name Servers included in Delegation: ns0119.secondary.cloudflare.com, ns0140.secondary.cloudflare.com, ns05.jpmorganchase.com, ns06.jpmorganchase.com, ns1.jpmorganchase.com, ns2.jpmorganchase.com, 6 Name Servers included in 1 Zone definitions: ns0119.secondary.cloudflare.com, ns0140.secondary.cloudflare.com, ns05.jpmorganchase.com, ns06.jpmorganchase.com, ns1.jpmorganchase.com, ns2.jpmorganchase.com, 1 Name Servers listed in SOA.Primary: ns1.jpmorganchase.com.
AGood: Only one SOA.Primary Name Server found.: ns1.jpmorganchase.com.
AGood: SOA.Primary Name Server included in the delegation set.: ns1.jpmorganchase.com.
AGood: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: ns0119.secondary.cloudflare.com, ns0140.secondary.cloudflare.com, ns05.jpmorganchase.com, ns06.jpmorganchase.com, ns1.jpmorganchase.com, ns2.jpmorganchase.com
AGood: All Name Server Domain Names have a Public Suffix.
AGood: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
AGood: All Name Server ip addresses are public.
AGood: Minimal 2 different name servers (public suffix and public ip address) found: 6 different Name Servers found
AGood: Some Name Servers have IPv6 addresses: 2 Name Servers with IPv6 found (4 Name Servers without IPv6)
Warning: All Name Servers have the same Top Level Domain / Public Suffix. If there is a problem with that Top Level Domain, your domain may be affected. Better: Use Name Servers with different top level domains.: 6 Name Servers, 1 Top Level Domain: com
AGood: Name Servers with different domain names found.: 2 different Domains found
AGood: Name servers with different Country locations found: 6 Name Servers, 2 Countries: CA, US
AInfo: Ipv4-Subnet-list: 6 Name Servers, 2 different subnets (first Byte): 159., 162., 2 different subnets (first two Bytes): 159.53., 162.159., 5 different subnets (first three Bytes): 159.53.110., 159.53.46., 159.53.78., 162.159.32., 162.159.33.
AGood: Name Server IPv4-addresses from different subnet found:
AInfo: IPv6-Subnet-list: 2 Name Servers with IPv6, 1 different subnets (first block): 2606:, 1 different subnets (first two blocks): 2606:4700:, 2 different subnets (first three blocks): 2606:4700:0051:, 2606:4700:0059:, 2 different subnets (first four blocks): 2606:4700:0051:0000:, 2606:4700:0059:0000:
AGood: Name Server IPv6 addresses from different subnets found.
AInfo: Nameserver mit different domain names found. May be a problem with DNS-Updates
AGood: Nameserver supports TCP connections: 8 good Nameserver
AGood: Nameserver supports Echo Capitalization: 8 good Nameserver
AGood: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 8 good Nameserver
AGood: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 8 good Nameserver
Nameserver doesn't pass all EDNS-Checks: internal.akadns.net: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
Nameserver doesn't pass all EDNS-Checks: internal.akadns.net: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
Nameserver doesn't pass all EDNS-Checks: internal.akadns.net: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
Nameserver doesn't pass all EDNS-Checks: internal.akadns.net: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
AGood: All SOA have the same Serial Number
AGood: CAA entries found, creating certificate is limited: digicert.com is allowed to create certificates
AGood: CAA entries found, creating certificate is limited: entrust.net is allowed to create certificates

4. Content- and Performance-critical Checks

https://www.chase.com/digital/resources/oops.html
200

Warning: Not existing ACME-file, but Server sends 200, not 404 or redirect. May be a problem creating a Letsencrypt certificate. Checking /.well-known/acme-challenge/random-filename - a http status 404 - Not Found - is expected. If your server sends content and a http status 200, the validation file (87 bytes, token, dot and the hash of the public part of the account key) may be invisible, so Letsencrypt can't validate your domain. If it is an application that sends this content, perhaps create an exception, so /.well-known/acme-challenge sends raw files. Or create a redirect to another domain and / or port 443, but your Letsencrypt client must support such a solution. Certbot: Use webroot as authenticator - https://certbot.eff.org/docs/using.html Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
AGood: Every https result with status 200 supports GZip.
https://www.chase.com/ 88.221.221.88
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://www.chase.com/ 88.221.221.115
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://www.chase.com/digital/resources/oops.html
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://www.chase.com/ 88.221.221.88
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://www.chase.com/ 88.221.221.115
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://www.chase.com/digital/resources/oops.html
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://www.chase.com/ 88.221.221.88
200

Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
https://www.chase.com/ 88.221.221.115
200

Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
https://www.chase.com/digital/resources/oops.html
200

Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
https://www.chase.com/ 88.221.221.88
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 5 script elements without defer/async.
https://www.chase.com/ 88.221.221.115
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 5 script elements without defer/async.
https://www.chase.com/digital/resources/oops.html
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 6 script elements without defer/async.
AGood: All CSS / JavaScript files are sent with GZip. That reduces the content of the files. 19 external CSS / JavaScript files found
Warning: Images with internal compression and GZip found. Images (.png, .jpg) are already compressed, so an additional GZip isn't helpful. Don't send these images with GZip. 2 images (type image/png, image/jpg) found with additional GZip. GZip is not required, these images are already compressed. 0 images (type image/png, image/jpg) without GZip found. 2 images (type image/png, image/jpg) complete.
Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 0 external CSS / JavaScript files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 6 with Cache-Control max-age too short (minimum 7 days), 13 with Cache-Control long enough, 19 complete.
Warning: Images with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 0 image files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 10 with Cache-Control max-age too short (minimum 7 days), 0 with Cache-Control long enough, 10 complete.
AGood: All checked attribute values are enclosed in quotation marks (" or ').
AGood: Some img-elements have a valid alt-attribute.: 10 img-elements found, 3 img-elements with correct alt-attributes (defined, not an empty value).
Wrong: img-elements without alt-attribute or empty alt-attribute found. The alt-attribute ("alternative") is required and should describe the img. So Screenreader and search engines are able to use these informations.: 7 img-elements without alt-attribute, 0 img-elements with empty alt-attribute found.
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
ADuration: 374990 milliseconds, 374.990 seconds


8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
chase.com
159.53.42.11
443
ok
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
not supported
ok
chase.com
159.53.42.11
443
ok
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
not supported
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)
1CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011

2CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

3CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US


chase.com
159.53.44.60
443
ok
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
not supported
ok

chase.com
159.53.44.60
443
ok
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
not supported
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)
1CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011

2CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

3CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US


chase.com
159.53.84.126
443
ok
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
not supported
ok

chase.com
159.53.84.126
443
ok
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
not supported
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)
1CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011

2CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

3CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US


chase.com
159.53.85.137
443
ok
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
not supported
ok

chase.com
159.53.85.137
443
ok
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
not supported
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)
1CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011

2CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

3CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US


chase.com
159.53.113.168
443
ok
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
not supported
ok

chase.com
159.53.113.168
443
ok
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
not supported
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)
1CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011

2CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

3CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US


chase.com
159.53.116.62
443
ok
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
not supported
ok

chase.com
159.53.116.62
443
ok
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
not supported
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)
1CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011

2CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

3CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US


chase.com
159.53.224.21
443
ok
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
not supported
ok

chase.com
159.53.224.21
443
ok
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
not supported
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)
1CN=www.chase.com, O=JPMorgan Chase and Co., L=New York, C=US, serialNumber=691011

2CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US

3CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US


www.chase.com
88.221.221.88
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok

www.chase.com
88.221.221.88
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2


www.chase.com
88.221.221.115
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok

www.chase.com
88.221.221.115
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2


www.chase.com
www.chase.com
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok

www.chase.com
www.chase.com
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2


9. Certificates

1.
1.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023
18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries
1.
1.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023

18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:0A8EE4F934B214138FB4B4FE5A6F7609
Thumbprint:D26B69A41D55335550D349D7C3A3E17BC98C7DEE
SHA256 / Certificate:hBJlXoYjRiSzrZRlbAIqJyIXK371QOz/tOG/J5Sy+0U=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):0114981bd559066bc266a00b9174df8bb8abe7f2eaed51e3e7d9d6ef638231ad
SHA256 hex / Subject Public Key Information (SPKI):0114981bd559066bc266a00b9174df8bb8abe7f2eaed51e3e7d9d6ef638231ad (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023
18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

2.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023

18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:0A8EE4F934B214138FB4B4FE5A6F7609
Thumbprint:D26B69A41D55335550D349D7C3A3E17BC98C7DEE
SHA256 / Certificate:hBJlXoYjRiSzrZRlbAIqJyIXK371QOz/tOG/J5Sy+0U=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):0114981bd559066bc266a00b9174df8bb8abe7f2eaed51e3e7d9d6ef638231ad
SHA256 hex / Subject Public Key Information (SPKI):0114981bd559066bc266a00b9174df8bb8abe7f2eaed51e3e7d9d6ef638231ad (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


3.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014
15.10.2030
expires in 2313 days


3.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014

15.10.2030
expires in 2313 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:61A1E7D20000000051D366A6
Thumbprint:CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


4.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014
15.10.2030
expires in 2313 days


4.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014

15.10.2030
expires in 2313 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:61A1E7D20000000051D366A6
Thumbprint:CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):75c5b3f01fd1f51a2c447ab7c785d72e69fa9c472c08571e7eadf3b8eabae70c
SHA256 hex / PublicKey (DANE * 1 1):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1)


5.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
07.07.2009
07.12.2030
expires in 2366 days


5.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
07.07.2009

07.12.2030
expires in 2366 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:4A538C28
Thumbprint:8CF427FD790C3AD166068DE81E57EFBB932272D4
SHA256 / Certificate:Q99XdLA+f+9f5A2TGnvt8bsua0JzjE5tOEEQPTqn8zk=
SHA256 hex / Cert (DANE * 0 1):43df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f339
SHA256 hex / PublicKey (DANE * 1 1):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:



6.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
22.09.2014
23.09.2024
expires in 100 days


6.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
22.09.2014

23.09.2024
expires in 100 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:51D34044
Thumbprint:9E1A0C35E714B69792D090B2CC4BBA45833C3015
SHA256 / Certificate:axQ8IAXVU5zCLqtfdy2yqf6HRn/v+gf88Kn30oJ0yno=
SHA256 hex / Cert (DANE * 0 1):6b143c2005d5539cc22eab5f772db2a9fe87467feffa07fcf0a9f7d28274ca7a
SHA256 hex / PublicKey (DANE * 1 1):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


7.
CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
27.11.2006
27.11.2026
expires in 895 days


7.
CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
27.11.2006

27.11.2026
expires in 895 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:456B5054
Thumbprint:B31EB1B740E36C8402DADC37D44DF5D4674952F9
SHA256 / Certificate:c8F2Q08bxtWt9FsOducnKHyN5XYWwebmFBorLLx9jkw=
SHA256 hex / Cert (DANE * 0 1):73c176434f1bc6d5adf45b0e76e727287c8de57616c1e6e6141a2b2cbc7d8e4c
SHA256 hex / PublicKey (DANE * 1 1):6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SHA256 hex / Subject Public Key Information (SPKI):6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


2.
1.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023
18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries
2.
1.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023

18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:2952C91D1B6ECA2B04BD645DB2078DEA
Thumbprint:58A33D3DD7ADE66B524355D37F94AEE1B731A19B
SHA256 / Certificate:URH+BtQqhANq/0pidwaB4qOFS1CV+/IexZRFkYKgASg=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):48840c61c16ae7cf7fc3009b2357239b9422178e106545fadc229c151908c67a
SHA256 hex / Subject Public Key Information (SPKI):48840c61c16ae7cf7fc3009b2357239b9422178e106545fadc229c151908c67a (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023
18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

2.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023

18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:2952C91D1B6ECA2B04BD645DB2078DEA
Thumbprint:58A33D3DD7ADE66B524355D37F94AEE1B731A19B
SHA256 / Certificate:URH+BtQqhANq/0pidwaB4qOFS1CV+/IexZRFkYKgASg=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):48840c61c16ae7cf7fc3009b2357239b9422178e106545fadc229c151908c67a
SHA256 hex / Subject Public Key Information (SPKI):48840c61c16ae7cf7fc3009b2357239b9422178e106545fadc229c151908c67a (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


3.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014
15.10.2030
expires in 2313 days


3.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014

15.10.2030
expires in 2313 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:61A1E7D20000000051D366A6
Thumbprint:CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


4.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014
15.10.2030
expires in 2313 days


4.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014

15.10.2030
expires in 2313 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:61A1E7D20000000051D366A6
Thumbprint:CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):75c5b3f01fd1f51a2c447ab7c785d72e69fa9c472c08571e7eadf3b8eabae70c
SHA256 hex / PublicKey (DANE * 1 1):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1)


5.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
07.07.2009
07.12.2030
expires in 2366 days


5.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
07.07.2009

07.12.2030
expires in 2366 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:4A538C28
Thumbprint:8CF427FD790C3AD166068DE81E57EFBB932272D4
SHA256 / Certificate:Q99XdLA+f+9f5A2TGnvt8bsua0JzjE5tOEEQPTqn8zk=
SHA256 hex / Cert (DANE * 0 1):43df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f339
SHA256 hex / PublicKey (DANE * 1 1):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:



6.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
22.09.2014
23.09.2024
expires in 100 days


6.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
22.09.2014

23.09.2024
expires in 100 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:51D34044
Thumbprint:9E1A0C35E714B69792D090B2CC4BBA45833C3015
SHA256 / Certificate:axQ8IAXVU5zCLqtfdy2yqf6HRn/v+gf88Kn30oJ0yno=
SHA256 hex / Cert (DANE * 0 1):6b143c2005d5539cc22eab5f772db2a9fe87467feffa07fcf0a9f7d28274ca7a
SHA256 hex / PublicKey (DANE * 1 1):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


7.
CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
27.11.2006
27.11.2026
expires in 895 days


7.
CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
27.11.2006

27.11.2026
expires in 895 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:456B5054
Thumbprint:B31EB1B740E36C8402DADC37D44DF5D4674952F9
SHA256 / Certificate:c8F2Q08bxtWt9FsOducnKHyN5XYWwebmFBorLLx9jkw=
SHA256 hex / Cert (DANE * 0 1):73c176434f1bc6d5adf45b0e76e727287c8de57616c1e6e6141a2b2cbc7d8e4c
SHA256 hex / PublicKey (DANE * 1 1):6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SHA256 hex / Subject Public Key Information (SPKI):6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


3.
1.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023
18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries
3.
1.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023

18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:319514A1F5CA2DB160771DE4201EA8C6
Thumbprint:C8E571EAD1501F7A0308F0D9D8D4B6B19E0ECECE
SHA256 / Certificate:lTJRGnZx6RBYFpIoHwi5XKosWQD7zDUHsB78YVyRAnU=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):5ba0be2d3e479eaacb94812b78c070bdbf479bdababa19a0497789f6bb118fc1
SHA256 hex / Subject Public Key Information (SPKI):5ba0be2d3e479eaacb94812b78c070bdbf479bdababa19a0497789f6bb118fc1 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023
18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

2.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023

18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:319514A1F5CA2DB160771DE4201EA8C6
Thumbprint:C8E571EAD1501F7A0308F0D9D8D4B6B19E0ECECE
SHA256 / Certificate:lTJRGnZx6RBYFpIoHwi5XKosWQD7zDUHsB78YVyRAnU=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):5ba0be2d3e479eaacb94812b78c070bdbf479bdababa19a0497789f6bb118fc1
SHA256 hex / Subject Public Key Information (SPKI):5ba0be2d3e479eaacb94812b78c070bdbf479bdababa19a0497789f6bb118fc1 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


3.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014
15.10.2030
expires in 2313 days


3.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014

15.10.2030
expires in 2313 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:61A1E7D20000000051D366A6
Thumbprint:CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


4.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014
15.10.2030
expires in 2313 days


4.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014

15.10.2030
expires in 2313 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:61A1E7D20000000051D366A6
Thumbprint:CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):75c5b3f01fd1f51a2c447ab7c785d72e69fa9c472c08571e7eadf3b8eabae70c
SHA256 hex / PublicKey (DANE * 1 1):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1)


5.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
07.07.2009
07.12.2030
expires in 2366 days


5.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
07.07.2009

07.12.2030
expires in 2366 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:4A538C28
Thumbprint:8CF427FD790C3AD166068DE81E57EFBB932272D4
SHA256 / Certificate:Q99XdLA+f+9f5A2TGnvt8bsua0JzjE5tOEEQPTqn8zk=
SHA256 hex / Cert (DANE * 0 1):43df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f339
SHA256 hex / PublicKey (DANE * 1 1):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:



6.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
22.09.2014
23.09.2024
expires in 100 days


6.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
22.09.2014

23.09.2024
expires in 100 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:51D34044
Thumbprint:9E1A0C35E714B69792D090B2CC4BBA45833C3015
SHA256 / Certificate:axQ8IAXVU5zCLqtfdy2yqf6HRn/v+gf88Kn30oJ0yno=
SHA256 hex / Cert (DANE * 0 1):6b143c2005d5539cc22eab5f772db2a9fe87467feffa07fcf0a9f7d28274ca7a
SHA256 hex / PublicKey (DANE * 1 1):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


7.
CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
27.11.2006
27.11.2026
expires in 895 days


7.
CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
27.11.2006

27.11.2026
expires in 895 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:456B5054
Thumbprint:B31EB1B740E36C8402DADC37D44DF5D4674952F9
SHA256 / Certificate:c8F2Q08bxtWt9FsOducnKHyN5XYWwebmFBorLLx9jkw=
SHA256 hex / Cert (DANE * 0 1):73c176434f1bc6d5adf45b0e76e727287c8de57616c1e6e6141a2b2cbc7d8e4c
SHA256 hex / PublicKey (DANE * 1 1):6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SHA256 hex / Subject Public Key Information (SPKI):6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


4.
1.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023
18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries
4.
1.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023

18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:6901B9AAC27E845071B99F1EA84DBC6E
Thumbprint:46B7540115864ECA068868609C4875262D26CF88
SHA256 / Certificate:SAQU6ghu5lDVmES3S3vIM174/SRvdMGvsgGY9VTyq2M=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):a16bbeca6832f7e354bdc84af8cf6e9e8e9ba9cd1685a14fc57e53e2b21f8feb
SHA256 hex / Subject Public Key Information (SPKI):a16bbeca6832f7e354bdc84af8cf6e9e8e9ba9cd1685a14fc57e53e2b21f8feb (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023
18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

2.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023

18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:6901B9AAC27E845071B99F1EA84DBC6E
Thumbprint:46B7540115864ECA068868609C4875262D26CF88
SHA256 / Certificate:SAQU6ghu5lDVmES3S3vIM174/SRvdMGvsgGY9VTyq2M=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):a16bbeca6832f7e354bdc84af8cf6e9e8e9ba9cd1685a14fc57e53e2b21f8feb
SHA256 hex / Subject Public Key Information (SPKI):a16bbeca6832f7e354bdc84af8cf6e9e8e9ba9cd1685a14fc57e53e2b21f8feb (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


3.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014
15.10.2030
expires in 2313 days


3.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014

15.10.2030
expires in 2313 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:61A1E7D20000000051D366A6
Thumbprint:CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


4.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014
15.10.2030
expires in 2313 days


4.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014

15.10.2030
expires in 2313 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:61A1E7D20000000051D366A6
Thumbprint:CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):75c5b3f01fd1f51a2c447ab7c785d72e69fa9c472c08571e7eadf3b8eabae70c
SHA256 hex / PublicKey (DANE * 1 1):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1)


5.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
07.07.2009
07.12.2030
expires in 2366 days


5.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
07.07.2009

07.12.2030
expires in 2366 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:4A538C28
Thumbprint:8CF427FD790C3AD166068DE81E57EFBB932272D4
SHA256 / Certificate:Q99XdLA+f+9f5A2TGnvt8bsua0JzjE5tOEEQPTqn8zk=
SHA256 hex / Cert (DANE * 0 1):43df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f339
SHA256 hex / PublicKey (DANE * 1 1):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:



6.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
22.09.2014
23.09.2024
expires in 100 days


6.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
22.09.2014

23.09.2024
expires in 100 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:51D34044
Thumbprint:9E1A0C35E714B69792D090B2CC4BBA45833C3015
SHA256 / Certificate:axQ8IAXVU5zCLqtfdy2yqf6HRn/v+gf88Kn30oJ0yno=
SHA256 hex / Cert (DANE * 0 1):6b143c2005d5539cc22eab5f772db2a9fe87467feffa07fcf0a9f7d28274ca7a
SHA256 hex / PublicKey (DANE * 1 1):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


7.
CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
27.11.2006
27.11.2026
expires in 895 days


7.
CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
27.11.2006

27.11.2026
expires in 895 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:456B5054
Thumbprint:B31EB1B740E36C8402DADC37D44DF5D4674952F9
SHA256 / Certificate:c8F2Q08bxtWt9FsOducnKHyN5XYWwebmFBorLLx9jkw=
SHA256 hex / Cert (DANE * 0 1):73c176434f1bc6d5adf45b0e76e727287c8de57616c1e6e6141a2b2cbc7d8e4c
SHA256 hex / PublicKey (DANE * 1 1):6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SHA256 hex / Subject Public Key Information (SPKI):6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


5.
1.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023
18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries
5.
1.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023

18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:4D9C49EF36653681F51BA721E8F84D77
Thumbprint:4D435A2CED1E5ADFBDFDE57D428CEB73F7B572A4
SHA256 / Certificate:fcQahfBULygOvQFpYE8o3hnhoS1UBmbACIRO3KWzPqo=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):81388dc7acd0e81a1054ad283fa29ce99d391d7bbe3ad4296b04025c19fcfae5
SHA256 hex / Subject Public Key Information (SPKI):81388dc7acd0e81a1054ad283fa29ce99d391d7bbe3ad4296b04025c19fcfae5 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023
18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

2.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023

18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:4D9C49EF36653681F51BA721E8F84D77
Thumbprint:4D435A2CED1E5ADFBDFDE57D428CEB73F7B572A4
SHA256 / Certificate:fcQahfBULygOvQFpYE8o3hnhoS1UBmbACIRO3KWzPqo=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):81388dc7acd0e81a1054ad283fa29ce99d391d7bbe3ad4296b04025c19fcfae5
SHA256 hex / Subject Public Key Information (SPKI):81388dc7acd0e81a1054ad283fa29ce99d391d7bbe3ad4296b04025c19fcfae5 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


3.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014
15.10.2030
expires in 2313 days


3.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014

15.10.2030
expires in 2313 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:61A1E7D20000000051D366A6
Thumbprint:CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


4.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014
15.10.2030
expires in 2313 days


4.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014

15.10.2030
expires in 2313 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:61A1E7D20000000051D366A6
Thumbprint:CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):75c5b3f01fd1f51a2c447ab7c785d72e69fa9c472c08571e7eadf3b8eabae70c
SHA256 hex / PublicKey (DANE * 1 1):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1)


5.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
07.07.2009
07.12.2030
expires in 2366 days


5.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
07.07.2009

07.12.2030
expires in 2366 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:4A538C28
Thumbprint:8CF427FD790C3AD166068DE81E57EFBB932272D4
SHA256 / Certificate:Q99XdLA+f+9f5A2TGnvt8bsua0JzjE5tOEEQPTqn8zk=
SHA256 hex / Cert (DANE * 0 1):43df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f339
SHA256 hex / PublicKey (DANE * 1 1):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:



6.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
22.09.2014
23.09.2024
expires in 100 days


6.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
22.09.2014

23.09.2024
expires in 100 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:51D34044
Thumbprint:9E1A0C35E714B69792D090B2CC4BBA45833C3015
SHA256 / Certificate:axQ8IAXVU5zCLqtfdy2yqf6HRn/v+gf88Kn30oJ0yno=
SHA256 hex / Cert (DANE * 0 1):6b143c2005d5539cc22eab5f772db2a9fe87467feffa07fcf0a9f7d28274ca7a
SHA256 hex / PublicKey (DANE * 1 1):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


7.
CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
27.11.2006
27.11.2026
expires in 895 days


7.
CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
27.11.2006

27.11.2026
expires in 895 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:456B5054
Thumbprint:B31EB1B740E36C8402DADC37D44DF5D4674952F9
SHA256 / Certificate:c8F2Q08bxtWt9FsOducnKHyN5XYWwebmFBorLLx9jkw=
SHA256 hex / Cert (DANE * 0 1):73c176434f1bc6d5adf45b0e76e727287c8de57616c1e6e6141a2b2cbc7d8e4c
SHA256 hex / PublicKey (DANE * 1 1):6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SHA256 hex / Subject Public Key Information (SPKI):6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


6.
1.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023
18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries
6.
1.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023

18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:79091E9F2AAF2622D712C54BCBFCB6A0
Thumbprint:3B686652A3ED9CD65879A0F156AFCDD974957F5F
SHA256 / Certificate:vcJGtQ/rRZuQmCTCMsAW+hKz93L8sML4sGqnVii9B28=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):c317d6d22f72fc5e68b467676cc732c0dbd4f1edacb675741dbe390911a22e0c
SHA256 hex / Subject Public Key Information (SPKI):c317d6d22f72fc5e68b467676cc732c0dbd4f1edacb675741dbe390911a22e0c (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023
18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

2.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023

18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:79091E9F2AAF2622D712C54BCBFCB6A0
Thumbprint:3B686652A3ED9CD65879A0F156AFCDD974957F5F
SHA256 / Certificate:vcJGtQ/rRZuQmCTCMsAW+hKz93L8sML4sGqnVii9B28=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):c317d6d22f72fc5e68b467676cc732c0dbd4f1edacb675741dbe390911a22e0c
SHA256 hex / Subject Public Key Information (SPKI):c317d6d22f72fc5e68b467676cc732c0dbd4f1edacb675741dbe390911a22e0c (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


3.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014
15.10.2030
expires in 2313 days


3.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014

15.10.2030
expires in 2313 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:61A1E7D20000000051D366A6
Thumbprint:CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


4.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014
15.10.2030
expires in 2313 days


4.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014

15.10.2030
expires in 2313 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:61A1E7D20000000051D366A6
Thumbprint:CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):75c5b3f01fd1f51a2c447ab7c785d72e69fa9c472c08571e7eadf3b8eabae70c
SHA256 hex / PublicKey (DANE * 1 1):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1)


5.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
22.09.2014
23.09.2024
expires in 100 days


5.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
22.09.2014

23.09.2024
expires in 100 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:51D34044
Thumbprint:9E1A0C35E714B69792D090B2CC4BBA45833C3015
SHA256 / Certificate:axQ8IAXVU5zCLqtfdy2yqf6HRn/v+gf88Kn30oJ0yno=
SHA256 hex / Cert (DANE * 0 1):6b143c2005d5539cc22eab5f772db2a9fe87467feffa07fcf0a9f7d28274ca7a
SHA256 hex / PublicKey (DANE * 1 1):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


6.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
07.07.2009
07.12.2030
expires in 2366 days


6.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
07.07.2009

07.12.2030
expires in 2366 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:4A538C28
Thumbprint:8CF427FD790C3AD166068DE81E57EFBB932272D4
SHA256 / Certificate:Q99XdLA+f+9f5A2TGnvt8bsua0JzjE5tOEEQPTqn8zk=
SHA256 hex / Cert (DANE * 0 1):43df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f339
SHA256 hex / PublicKey (DANE * 1 1):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:



7.
CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
27.11.2006
27.11.2026
expires in 895 days


7.
CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
27.11.2006

27.11.2026
expires in 895 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:456B5054
Thumbprint:B31EB1B740E36C8402DADC37D44DF5D4674952F9
SHA256 / Certificate:c8F2Q08bxtWt9FsOducnKHyN5XYWwebmFBorLLx9jkw=
SHA256 hex / Cert (DANE * 0 1):73c176434f1bc6d5adf45b0e76e727287c8de57616c1e6e6141a2b2cbc7d8e4c
SHA256 hex / PublicKey (DANE * 1 1):6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SHA256 hex / Subject Public Key Information (SPKI):6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


7.
1.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023
18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries
7.
1.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023

18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:508E51C205EA6D8F71F4DA86D8F96135
Thumbprint:F4C6A293ED9A3A96FC199F44A1735CD05D846301
SHA256 / Certificate:DxEH+CSvaKj4d9n6d/4Q2WjXMZSIUUAleSY2wBZJSZ8=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):7e1fe66f5438921f1bae5eba83e8c06fd1354836280707ef22168ca4810007b1
SHA256 hex / Subject Public Key Information (SPKI):7e1fe66f5438921f1bae5eba83e8c06fd1354836280707ef22168ca4810007b1 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023
18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

2.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
18.11.2023

18.11.2024
expires in 156 days
www.chase.com, chase.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:508E51C205EA6D8F71F4DA86D8F96135
Thumbprint:F4C6A293ED9A3A96FC199F44A1735CD05D846301
SHA256 / Certificate:DxEH+CSvaKj4d9n6d/4Q2WjXMZSIUUAleSY2wBZJSZ8=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):7e1fe66f5438921f1bae5eba83e8c06fd1354836280707ef22168ca4810007b1
SHA256 hex / Subject Public Key Information (SPKI):7e1fe66f5438921f1bae5eba83e8c06fd1354836280707ef22168ca4810007b1 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


3.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014
15.10.2030
expires in 2313 days


3.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014

15.10.2030
expires in 2313 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:61A1E7D20000000051D366A6
Thumbprint:CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


4.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014
15.10.2030
expires in 2313 days


4.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014

15.10.2030
expires in 2313 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:61A1E7D20000000051D366A6
Thumbprint:CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):75c5b3f01fd1f51a2c447ab7c785d72e69fa9c472c08571e7eadf3b8eabae70c
SHA256 hex / PublicKey (DANE * 1 1):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1)


5.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
07.07.2009
07.12.2030
expires in 2366 days


5.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
07.07.2009

07.12.2030
expires in 2366 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:4A538C28
Thumbprint:8CF427FD790C3AD166068DE81E57EFBB932272D4
SHA256 / Certificate:Q99XdLA+f+9f5A2TGnvt8bsua0JzjE5tOEEQPTqn8zk=
SHA256 hex / Cert (DANE * 0 1):43df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f339
SHA256 hex / PublicKey (DANE * 1 1):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:



6.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
22.09.2014
23.09.2024
expires in 100 days


6.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
22.09.2014

23.09.2024
expires in 100 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:51D34044
Thumbprint:9E1A0C35E714B69792D090B2CC4BBA45833C3015
SHA256 / Certificate:axQ8IAXVU5zCLqtfdy2yqf6HRn/v+gf88Kn30oJ0yno=
SHA256 hex / Cert (DANE * 0 1):6b143c2005d5539cc22eab5f772db2a9fe87467feffa07fcf0a9f7d28274ca7a
SHA256 hex / PublicKey (DANE * 1 1):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


7.
CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
27.11.2006
27.11.2026
expires in 895 days


7.
CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
27.11.2006

27.11.2026
expires in 895 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:456B5054
Thumbprint:B31EB1B740E36C8402DADC37D44DF5D4674952F9
SHA256 / Certificate:c8F2Q08bxtWt9FsOducnKHyN5XYWwebmFBorLLx9jkw=
SHA256 hex / Cert (DANE * 0 1):73c176434f1bc6d5adf45b0e76e727287c8de57616c1e6e6141a2b2cbc7d8e4c
SHA256 hex / PublicKey (DANE * 1 1):6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SHA256 hex / Subject Public Key Information (SPKI):6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


8.
1.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
27.04.2023
26.04.2024
50 days expired
www.chase.com, beta.chase.com - 2 entries
8.
1.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
27.04.2023

26.04.2024
50 days expired
www.chase.com, beta.chase.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:1524B1355353544A35BA9821F898655F
Thumbprint:5B76D8A0A7CDA02C29F0F8F319C74D111CF7D5FE
SHA256 / Certificate:Jz6I4fwYfp1SuLveO/oR6TtclT1KFqRYyXYg+vRTh10=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):44ba2748a0cd21bdfc4d2bf2e96a599733424a5068f4b510ab94cc51593cb125
SHA256 hex / Subject Public Key Information (SPKI):44ba2748a0cd21bdfc4d2bf2e96a599733424a5068f4b510ab94cc51593cb125 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
27.04.2023
26.04.2024
50 days expired
www.chase.com, beta.chase.com - 2 entries

2.
CN=www.chase.com, SERIALNUMBER=691011, OID.2.5.4.15=Private Organization, O=JPMorgan Chase and Co., OID.1.3.6.1.4.1.311.60.2.1.2=Delaware, OID.1.3.6.1.4.1.311.60.2.1.3=US, L=New York, S=New York, C=US
27.04.2023

26.04.2024
50 days expired
www.chase.com, beta.chase.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:1524B1355353544A35BA9821F898655F
Thumbprint:5B76D8A0A7CDA02C29F0F8F319C74D111CF7D5FE
SHA256 / Certificate:Jz6I4fwYfp1SuLveO/oR6TtclT1KFqRYyXYg+vRTh10=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):44ba2748a0cd21bdfc4d2bf2e96a599733424a5068f4b510ab94cc51593cb125
SHA256 hex / Subject Public Key Information (SPKI):44ba2748a0cd21bdfc4d2bf2e96a599733424a5068f4b510ab94cc51593cb125 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


3.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014
15.10.2030
expires in 2313 days


3.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014

15.10.2030
expires in 2313 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:61A1E7D20000000051D366A6
Thumbprint:CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


4.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014
15.10.2030
expires in 2313 days


4.
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
15.12.2014

15.10.2030
expires in 2313 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:61A1E7D20000000051D366A6
Thumbprint:CC136695639065FAB47074D28C55314C66077E90
SHA256 / Certificate:dcWz8B/R9RosRHq3x4XXLmn6nEcsCFcefq3zuOq65ww=
SHA256 hex / Cert (DANE * 0 1):75c5b3f01fd1f51a2c447ab7c785d72e69fa9c472c08571e7eadf3b8eabae70c
SHA256 hex / PublicKey (DANE * 1 1):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SHA256 hex / Subject Public Key Information (SPKI):5586701a2264ab734da356112364468924c8d66a93586f330dc45fd7f28037a2
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Client Authentication (1.3.6.1.5.5.7.3.2), Server Authentication (1.3.6.1.5.5.7.3.1)


5.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
07.07.2009
07.12.2030
expires in 2366 days


5.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
07.07.2009

07.12.2030
expires in 2366 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:4A538C28
Thumbprint:8CF427FD790C3AD166068DE81E57EFBB932272D4
SHA256 / Certificate:Q99XdLA+f+9f5A2TGnvt8bsua0JzjE5tOEEQPTqn8zk=
SHA256 hex / Cert (DANE * 0 1):43df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f339
SHA256 hex / PublicKey (DANE * 1 1):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:



6.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
22.09.2014
23.09.2024
expires in 100 days


6.
CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
22.09.2014

23.09.2024
expires in 100 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:51D34044
Thumbprint:9E1A0C35E714B69792D090B2CC4BBA45833C3015
SHA256 / Certificate:axQ8IAXVU5zCLqtfdy2yqf6HRn/v+gf88Kn30oJ0yno=
SHA256 hex / Cert (DANE * 0 1):6b143c2005d5539cc22eab5f772db2a9fe87467feffa07fcf0a9f7d28274ca7a
SHA256 hex / PublicKey (DANE * 1 1):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SHA256 hex / Subject Public Key Information (SPKI):76ee8590374c715437bbca6bba6028eadde2dc6dbbb8c3f610e851f11d1ab7f5
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.entrust.net
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


7.
CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
27.11.2006
27.11.2026
expires in 895 days


7.
CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
27.11.2006

27.11.2026
expires in 895 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:456B5054
Thumbprint:B31EB1B740E36C8402DADC37D44DF5D4674952F9
SHA256 / Certificate:c8F2Q08bxtWt9FsOducnKHyN5XYWwebmFBorLLx9jkw=
SHA256 hex / Cert (DANE * 0 1):73c176434f1bc6d5adf45b0e76e727287c8de57616c1e6e6141a2b2cbc7d8e4c
SHA256 hex / PublicKey (DANE * 1 1):6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SHA256 hex / Subject Public Key Information (SPKI):6dbfae00d37b9cd73f8fb47de65917af00e0dddf42dbceac20c17c0275ee2095
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:



10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuerlast 7 daysactivenum Certs
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
0
0
1

CertSpotter-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
4506150978
precert
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
2022-12-04 10:18:52
2023-12-04 10:18:51
chase.com, www.chase.com - 2 entries



2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

Issuerlast 7 daysactivenum Certs
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
0
0
1

CRT-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
8119002290
precert
CN=Entrust Certification Authority - L1M, OU="(c) 2014 Entrust, Inc. - for authorized use only", O="Entrust, Inc.", C=US
2022-12-04 09:18:52
2023-12-04 09:18:51
chase.com, www.chase.com
2 entries



11. Html-Content - Entries

Summary

Subresource Integrity (SRI)
DomainnameHtmlElementrel/property∑ size∑ problems∑ int.∑ ext.∑ Origin poss.∑ SRI ParseErrors∑ SRI valid∑ SRI missing
https://www.chase.com/
88.221.221.88
a

176

0


0
0
0


iframe

1

0


0
0
0


img

3
2,594 Bytes
0
3
0
0
0
0


link
alternate
2

0


0
0
0


link
stylesheet
1
42,706 Bytes
0
1
0
0
0
0


link
other
17
128,969 Bytes
0
7
4
4
0
0
-4

meta
apple
1

0


0
0
0


meta
other
5
3,562 Bytes
0
1
0
0
0
0


script

5
410,666 Bytes
0
5
0
0
0
0


style

30
525,655 Bytes
2
9
21
21
0
0
-21
https://www.chase.com/
88.221.221.115
a

176

0


0
0
0


iframe

1

0


0
0
0


img

3
2,594 Bytes
0
3
0
0
0
0


link
alternate
2

0


0
0
0


link
stylesheet
1
42,706 Bytes
0
1
0
0
0
0


link
other
17
128,969 Bytes
0
7
4
4
0
0
-4

meta
apple
1

0


0
0
0


meta
other
5
3,562 Bytes
0
1
0
0
0
0


script

5
410,666 Bytes
0
5
0
0
0
0


style

30
525,655 Bytes
2
9
21
21
0
0
-21

Details

DomainnameHtml-Elementname/equiv/ property/relhref/src/contentHttpStatusmsgStatus
88.221.221.88
a

#


3
ok








a

#main


1
ok








a

/business/banking/checking


1
ok








a

/business/banking/loans


1
ok








a

/business/knowledge-center


1
ok








a

/business/payments


1
ok








a

/digital/customer-service


1
ok








a

/digital/mobile-banking


1
ok








a

/digital/online-banking


1
ok








a

/digital/resources/about-chase


1
ok








a

/digital/resources/accessibility


1
ok








a

/digital/resources/complaints-feedback


1
ok








a

/digital/resources/privacy-security


4
ok








a

/digital/resources/privacy-security/financial-abuse


1
ok








a

/digital/resources/privacy-security/security/how-to-spot-scams


1
ok








a

/digital/resources/privacy-security/security/how-we-protect-you


1
ok








a

/digital/resources/privacy-security/security/how-you-can-protect


1
ok








a

/digital/resources/privacy-security/security/report-fraud


3
ok








a

/digital/resources/privacy-security/security/system-requirements


2
ok








a

/digital/resources/sitemap


1
ok








a

/digital/resources/terms-of-use


1
ok








a

/personal/auto/education?offercode=WDXDPXXX02


1
ok








a

/personal/banking/education


1
ok








a

/personal/branch-disclosures


1
ok








a

/personal/checking/private-client#personalized-financial-relationship


1
ok








a

/personal/checking/private-client/perks


1
ok








a

/personal/checking/private-client/team


1
ok








a

/personal/credit-cards/free-credit-score


3
ok








a

/personal/education


3
ok








a

/personal/events/chase-center


1
ok








a

/personal/events/experiences


1
ok








a

/personal/events/us-open


1
ok








a

/personal/financial-goals


2
ok








a

/personal/financial-goals/life-moments


1
ok








a

/personal/investments/advisor-services


1
ok








a

/personal/investments/learning-and-insights


1
ok








a

/personal/investments/online-investing


1
ok








a

/personal/mortgage


1
ok








a

/personal/mortgage/calculators-resources/mortgage-calculator


1
ok








a

/personal/mortgage/education


1
ok








a

/personal/mortgage/mortgage-rates


1
ok








a

/personal/mortgage/mortgage-refinance


1
ok








a

/personal/savings/bank-cd


3
ok








a

/personal/zelle


1
ok








a

https://account.chase.com/consumer/banking/seo


1
ok








a

https://account.chase.com/consumer/investing/self-directedoffer


1
ok








a

https://account.chase.com/personalbanking


2
ok








a

https://autofinance.chase.com/?offercode=WDXDPXXX02


1
ok








a

https://autofinance.chase.com/auto-finance/auto-loans?offercode=WDXDPXXX02


1
ok








a

https://autofinance.chase.com/auto-finance/auto-loans?offercode=WDXDPXXX09


2
ok








a

https://autofinance.chase.com/auto-finance/auto-loans?offercode=WDXDPXXX12


1
ok








a

https://autofinance.chase.com/auto-finance/home?offercode=WDXDPXXX05


2
ok








a

https://autofinance.chase.com/auto-finance/manage?offercode=WDXDPXXX06


2
ok








a

https://autopreferred.chase.com/


2
ok








a

https://autopreferred.chase.com/garage/auto-loan-calculator?offercode=WDXDPXXX02


1
ok








a

https://careers.jpmorgan.com/US/en/chase


1
ok








a

https://creditcards.chase.com/


1
ok








a

https://creditcards.chase.com/?jp_ltg=chsecate_featured&CELL=6TKV


2
ok








a

https://creditcards.chase.com/all-credit-cards?CELL=6TKV


2
ok








a

https://creditcards.chase.com/business-credit-cards


1
ok








a

https://creditcards.chase.com/business-credit-cards?jp_ltg=chsecate_smlbiz&CELL=6TKV


2
ok








a

https://creditcards.chase.com/cash-back-credit-cards


1
ok








a

https://creditcards.chase.com/credit-cards/home/?CELL=6TKV


1
ok








a

https://creditcards.chase.com/rewards-credit-cards


1
ok








a

https://creditcards.chase.com/travel-credit-cards


1
ok








a

https://jpmorganwealthmanagement.chase.com/advisor


1
ok








a

https://locator.chase.com/?locale=en_US


3
ok








a

https://media.chase.com


1
ok








a

https://personal.chase.com/personal/checking


3
ok








a

https://personal.chase.com/personal/first-banking


2
ok








a

https://personal.chase.com/personal/savings


3
ok








a

https://secure.chase.com/web/auth/dashboard


3
ok








a

https://secure.chase.com/web/auth/enrollment#/enroll/onlineEnrollment/gettingStarted/index?LOB=COLLogon


1
ok








a

https://secure.chase.com/web/oao/application/retail#/origination;cfgCode=502002;AcctRef=Credit/index/index


2
ok








a

https://survey.experience.chase.com/jfe/form/SV_0kY6b0kOTJsWvUW


1
ok








a

https://survey.experience.chase.com/jfe/form/SV_0rBuvmGXX6OhYEJ


1
ok








a

https://twitter.com/Chase


1
ok








a

https://www.chase.co.uk/gb/en/?utm_source=jpmc&utm_medium=usbanner&utm_campaign=us_website_banner_redirect_homepage&pid=jpmc&af_channel=usbanner&c=us_website_banner_redirect_homepage


1
ok








a

https://www.chase.com


2
ok








a

https://www.chase.com/


3
ok








a

https://www.chase.com/auto/prequalified?offercode=WDXDPXXX11


2
ok








a

https://www.chase.com/business


2
ok








a

https://www.chase.com/digital/customer-service


3
ok








a

https://www.chase.com/digital/resources/search-results.html


3
ok








a

https://www.chase.com/espanol


2
ok








a

https://www.chase.com/meeting-scheduler/getstarted


2
ok








a

https://www.chase.com/personal/investments


3
ok








a

https://www.chase.com/personal/investments/advisor-services


2
ok








a

https://www.chase.com/personal/investments/education


2
ok








a

https://www.chase.com/personal/investments/learning-and-insights


2
ok








a

https://www.chase.com/personal/investments/online-investing/self-directed


2
ok








a

https://www.chase.com/personal/investments/retirement


2
ok








a

https://www.chase.com/personal/investments/wealth-plan


2
ok








a

https://www.chase.com/personal/mobile-online-banking/make-payment


2
ok








a

https://www.chase.com/personal/mortgage


1
ok








a

https://www.chase.com/personal/mortgage/calculators-resources


2
ok








a

https://www.chase.com/personal/mortgage/education


2
ok








a

https://www.chase.com/personal/mortgage/manage-account


2
ok








a

https://www.chase.com/personal/mortgage/mortgage-purchase


2
ok








a

https://www.chase.com/personal/mortgage/mortgage-rates


2
ok








a

https://www.chase.com/personal/mortgage/mortgage-refinance


2
ok








a

https://www.chase.com/personal/offers/secureshopping?CELL=6TKV


2
ok








a

https://www.facebook.com/chase


1
ok








a

https://www.finra.org/#/


1
ok








a

https://www.instagram.com/chase/


1
ok








a

https://www.jpmorgan.com/commercial-banking


2
ok








a

https://www.jpmorgan.com/global


1
ok








a

https://www.jpmorganchase.com


1
ok








a

https://www.linkedin.com/company/chase?trk=company_logo


1
ok








a

https://www.msg.com/madison-square-garden


1
ok








a

https://www.pinterest.com/chase/


1
ok








a

https://www.sipc.org/


1
ok








a

https://www.youtube.com/chase


1
ok








a

https://youradchoices.com/


1
ok








a

javascript:void(0)


1
ok








iframe




1
ok








img
src
/etc/designs/chase-ux/css/img/ie_alert.png
200

1
ok
alt: Alert Messageimage/png, missing X-Content-Type-Options nosniff

Wrong GZip: 564/532 Bytes






img
src
/etc/designs/chase-ux/css/img/newheaderlogo.svg
200

2
ok
no alt-Attributeimage/svg+xml, missing X-Content-Type-Options nosniff

Cache-Control: max-age=121, s-maxage=300 - max-age too short.
GZip: 1015/1592 Bytes






link
alternate
https://www.chase.com


1
ok








link
alternate
https://www.chase.com/espanol


1
ok








link
apple-touch-icon
/etc/designs/chase-ux/favicon-120.png
200

1
ok
image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=610, s-maxage=1800 - max-age too short.
Wrong GZip: 3140/3359 Bytes






link
apple-touch-icon
/etc/designs/chase-ux/favicon-152.png
200

1
ok
image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=151, s-maxage=1800 - max-age too short.
Wrong GZip: 3827/4040 Bytes






link
apple-touch-icon
/etc/designs/chase-ux/favicon-57.png
200

1
ok
image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=864, s-maxage=1800 - max-age too short.
GZip: 1927/2182 Bytes






link
apple-touch-icon
/etc/designs/chase-ux/favicon-76.png
200

1
ok
image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=1413, s-maxage=1800 - max-age too short.
GZip: 2235/2489 Bytes






link
canonical
https://www.chase.com


1
ok








link
icon
/etc/designs/chase-ux/favicon.ico
200

1
ok
image/x-icon, missing X-Content-Type-Options nosniff

Cache-Control: max-age=278, s-maxage=300 - max-age too short.
GZip: 3713/15086 Bytes






link
preconnect
https://dpm.demdex.net


1
ok








link
preconnect
https://midas.chase.com


1
ok








link
preconnect
https://secure.chase.com


1
ok








link
preconnect
https://sites.chase.com


1
ok








link
preconnect
https://static.chasecdn.com


1
ok








link
preload
/c/030424/etc/designs/chase-ux/css/home.min.css
200

1
ok
text/css, missing X-Content-Type-Options nosniff

42706 Bytes






link
preload
https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

No Cache-Control header
No GZip: 15116/15116 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-hs+e3SdOmeOzqEKzzrAuj3Xbx1FS7ASJZvbxjoa14KQ=
sha384-+uvxOVy8Ir7SKFW6SxpJSfHKEWwn5thcLjierLqXvpsOREEoOnZ+NkYOuz67oV92
sha512-KAU8wmIH0kfsrMsivd8dS2hiIoizgjhxmx1UgR3N2E+1AY1kNN+4seGIXOdw2ez10hKMnwVY2k0/p0ivFRjHIw==

<link rel="preload" href="https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans.woff2" crossorigin="anonymous" integrity="sha256-hs+e3SdOmeOzqEKzzrAuj3Xbx1FS7ASJZvbxjoa14KQ=" />




link
preload
https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 15324/15324 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-RzsgaNk67ZnQBgzoBExp9IAyzjekHzsdElGmdY55eXs=
sha384-RuKhqTerjw5Oe+o6YIcAti/pFrEjrdz/DxzOaxfbh8qbU51BNimgo7msi/2IQ/HH
sha512-GhjBEqAkZX5mFVud32WuyRbMC1gDxBXwu8soxJoiKalHqhMQzPwoqXtZgX0bqF0W02hutfNCfLpM73lNc+fstQ==

<link rel="preload" href="https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold.woff2" crossorigin="anonymous" integrity="sha256-RzsgaNk67ZnQBgzoBExp9IAyzjekHzsdElGmdY55eXs=" />




link
preload
https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 18264/18264 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-qEMHSnl6ANwqXRBCNIKO1X1fCeFi2yi0RvFNOJF9Q2o=
sha384-gv7zoePm6l5XxBpflFhevWk6kiMuTRkH36Ptmha1cdXursl5g58MfHTqhxFAw6VH
sha512-IvcfYsQdpNzWNFePsTmy7vytVIOp8+2t2dAprftzTtfQgeiOicMEdZb1vSGanfasuJUDtsjmJE4TSkh4RHP7Sg==

<link rel="preload" href="https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light.woff2" crossorigin="anonymous" integrity="sha256-qEMHSnl6ANwqXRBCNIKO1X1fCeFi2yi0RvFNOJF9Q2o=" />




link
preload
https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 19004/19004 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-H1QSI2yYut/nbkWDQmGkM+IDAlIlFeDyB27xIOZ+rmI=
sha384-joSdXR08p1CszaE7ZCADP93sTlKGJvvjATikEjIyURZMgA7zZKRrg9m2D1k9HuWo
sha512-Rca9vNjFbV5d0sN1hZhYklhHGLom/61tuEYrsZpvhQWRrklelPk6B5h/JsKNXi641yQDhZ09znqCA1AlBZnRTA==

<link rel="preload" href="https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold.woff2" crossorigin="anonymous" integrity="sha256-H1QSI2yYut/nbkWDQmGkM+IDAlIlFeDyB27xIOZ+rmI=" />




link
shortcut icon
/etc/designs/chase-ux/favicon.ico
200

1
ok
image/x-icon, missing X-Content-Type-Options nosniff

Cache-Control: max-age=278, s-maxage=300 - max-age too short.
GZip: 3713/15086 Bytes






link
stylesheet
/c/030424/etc/designs/chase-ux/css/home.min.css
200

1
ok
text/css, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31533778, s-maxage=31536000 - with long duration found.
GZip: 42706/195148 Bytes




local SRI possible, possible hash-values:

sha256-3sFHwNlJ95a4e3cKa6oEp05xtLvhNMKyPtJMw9DzZ94=
sha384-G2e2hLuBUSUpvH/e3KGZGx/DAGtoIJXEXeBBqmKhm1EjW5RxdQTYBcgjtRkhDRfQ
sha512-7bMWYt1mgB54xNILRqJ1FPkRAhR2d8l39+bSrYdJKTRydn3YBuUU9RYbs2hhUQUi0s9YU663aY3LW3ZS6NeCnA==

<link rel="stylesheet" href="/c/030424/etc/designs/chase-ux/css/home.min.css" crossorigin="anonymous" integrity="sha256-3sFHwNlJ95a4e3cKa6oEp05xtLvhNMKyPtJMw9DzZ94=" />



Content loaded via url("...")

fonts/dcefont.eot2
fonts/dcefont.eot?#iefix2
fonts/dcefont.svg#dce1
fonts/dcefont.ttf2
fonts/dcefont.woff2
fonts/icomoon.eot?ewdcow1
fonts/icomoon.eot?ewdcow#iefix1
fonts/icomoon.svg?ewdcow#icomoon1
fonts/icomoon.ttf?ewdcow1
fonts/icomoon.woff?ewdcow1
fonts/smc.eot1
fonts/smc.eot?#iefix1
fonts/smc.svg#smc1
fonts/smc.ttf1
fonts/smc.woff1
img/choices-logo-blue_lite.png1
img/EHL-Slice.png1

meta

utf-8


1
ok








meta
apple-itunes-app
app-id=298867247, affiliate-data=JPMorganChase


1
ok








meta
description
Chase online; credit cards, mortgages, commercial banking, auto loans, investing & retirement planning, checking and business banking.


1
ok








meta
msapplication-TileColor
#FFFFFF


1
ok








meta
msapplication-TileImage
/etc/designs/chase-ux/favicon-144.png
200

1
ok
image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=1227, s-maxage=1800 - max-age too short.
Wrong GZip: 3562/3798 Bytes






meta
viewport
width=device-width, initial-scale=1.0


1
ok








script
src
/c/030424/apps/chase/clientlibs/foundation/scripts/Reporting.js
200

1
ok
Missing defer / async attribute. application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: max-age=11481, s-maxage=14400 - max-age too short.
GZip: 38148/89208 Bytes




local SRI possible, possible hash-values:

sha256-Lv7VT+8l9w1i5s0UtoAgEJnU082cpDIW15qOWvg0sSk=
sha384-Zzbjpv0fz4ekADx76f2pm0EFoKfvzMuSnBs6MgO5gOxZlDOJ1+R7fvQ/Z3UE+w5f
sha512-hjOx/410l9nEL2lZx1sxlmK5G47Zq2162pE638cDuEjIQU08/AUFojtd3u8F8Vik6Rf46fRmSNKKLRUV+9ZC2Q==

<script src="/c/030424/apps/chase/clientlibs/foundation/scripts/Reporting.js" crossorigin="anonymous" integrity="sha256-Lv7VT+8l9w1i5s0UtoAgEJnU082cpDIW15qOWvg0sSk=" />




script
src
/c/030424/etc/designs/chase-ux/clientlibs/chase-ux/js/dist/index.min.js
200

1
ok
Missing defer / async attribute. application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31533575, s-maxage=31536000 - with long duration found.
GZip: 165213/416714 Bytes




local SRI possible, possible hash-values:

sha256-oJUAM60v6WnaH/YhrVRBW8l0+80kFdY3aMImAAHtSfQ=
sha384-FHM4HmmbliXDmoou5h2I8uGilBeTQV2vBWXbzVMp60BZJ/o077gkvOH0P50gpany
sha512-7rcEx14e4m6+hsUZJhJz0JUq/yJkWoZJZMyOEaBi7nAFrgDQ2bVZLWUb5kPe1it3cIukShpivqZ1awnlhzrVcQ==

<script src="/c/030424/etc/designs/chase-ux/clientlibs/chase-ux/js/dist/index.min.js" crossorigin="anonymous" integrity="sha256-oJUAM60v6WnaH/YhrVRBW8l0+80kFdY3aMImAAHtSfQ=" />




script
src
/c/030424/etc/designs/chase-ux/clientlibs/jquery/js/jquery.min.js
200

1
ok
Missing defer / async attribute. application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31533420, s-maxage=31536000 - with long duration found.
GZip: 45349/96519 Bytes




local SRI possible, possible hash-values:

sha256-PBq+NjjwUb69WQSyMBAYIqEeHGRg5PlAGufSePmn9t4=
sha384-6dWlq+sS8OtsShKYpEguVn7Jj97ah/GBjgAGIDzLmsOhOErOwk1rmIz09/eRsbPI
sha512-HE0+22opA5BLspOm7WqfqhEQsSatVYDP4DenFhka0b4SxGfwSXFIgAGUUxM2hVbjTBOPrl5boDpTI9fJzx6O6Q==

<script src="/c/030424/etc/designs/chase-ux/clientlibs/jquery/js/jquery.min.js" crossorigin="anonymous" integrity="sha256-PBq+NjjwUb69WQSyMBAYIqEeHGRg5PlAGufSePmn9t4=" />




script
src
/c/030424/etc/designs/chase-ux/clientlibs/require/js/require.min.js
200

1
ok
Missing defer / async attribute. application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31533430, s-maxage=31536000 - with long duration found.
GZip: 7871/15253 Bytes




local SRI possible, possible hash-values:

sha256-X5hDZq05ZQuqBAhINBaY45VFZ2FUf36LtGaH6y6tetc=
sha384-+aCxDrjXjURae1wjXiZJZrvMZbySeYUB9Kt9+WVKYXG1DvweLo+qOPA9rGniOj9s
sha512-iIy32xvJER4zAErxrfCc0grRAMHPjTqyFtAXsUapB61VJ+PVqMFRXWJIl42F1ZJ6jTAfQzKq8fFP+D/ABBXidQ==

<script src="/c/030424/etc/designs/chase-ux/clientlibs/require/js/require.min.js" crossorigin="anonymous" integrity="sha256-X5hDZq05ZQuqBAhINBaY45VFZ2FUf36LtGaH6y6tetc=" />




script
src
/ruxitagentjs_ICA27NQVfhqrux_10271230629152232.js
200

1
ok
Missing defer / async attribute. text/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=223, s-maxage=300 - max-age too short.
GZip: 154085/316001 Bytes




local SRI possible, possible hash-values:

sha256-gp7D80yxPJlTKG2/mi1IP9QcVLinaG0HJxsC3p11liQ=
sha384-mGp0b03J0tOEYWQ9gzEAw9x8pFsqJD96SYGrXatUURPJhb+tcwLsKmACY0D36pzA
sha512-j9t/ic7gge5rmiNaekjIiVhSxC1mVG8it6ncoxSipjmNERDc7+irDqKYjtlHwwhpJ8ISW6gzXWLBTGdpK1T7gw==

<script src="/ruxitagentjs_ICA27NQVfhqrux_10271230629152232.js" crossorigin="anonymous" integrity="sha256-gp7D80yxPJlTKG2/mi1IP9QcVLinaG0HJxsC3p11liQ=" />




style

/c/030424/etc/designs/chase-ux/css/fonts/opensans.ttf
200

1
ok
font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31535143, s-maxage=31536000 with long duration found.
GZip used: 29486/45372 Bytes, font not compressed






style

/c/030424/etc/designs/chase-ux/css/fonts/opensans-bold.ttf
200

1
ok
font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31533526, s-maxage=31536000 with long duration found.
GZip used: 15602/21012 Bytes, font not compressed






style

/c/030424/etc/designs/chase-ux/css/fonts/opensans-bold-italic.ttf
200

1
ok
font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31534496, s-maxage=31536000 with long duration found.
GZip used: 17262/23304 Bytes, font not compressed






style

/c/030424/etc/designs/chase-ux/css/fonts/opensans-extrabold.ttf
200

1
ok
font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31535232, s-maxage=31536000 with long duration found.
GZip used: 15792/20988 Bytes, font not compressed






style

/c/030424/etc/designs/chase-ux/css/fonts/opensans-italic.ttf
200

1
ok
font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000, s-maxage=31536000 with long duration found.
GZip used: 17545/23680 Bytes, font not compressed






style

/c/030424/etc/designs/chase-ux/css/fonts/opensans-light.ttf
200

1
ok
font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31534203, s-maxage=31536000 with long duration found.
GZip used: 28785/44716 Bytes, font not compressed






style

/c/030424/etc/designs/chase-ux/css/fonts/opensans-light-italic.ttf
200

1
ok
font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31534480, s-maxage=31536000 with long duration found.
GZip used: 17655/23864 Bytes, font not compressed






style

/c/030424/etc/designs/chase-ux/css/fonts/opensans-semibold.ttf
200

1
ok
font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31534549, s-maxage=31536000 with long duration found.
GZip used: 29711/45496 Bytes, font not compressed






style

/c/030424/etc/designs/chase-ux/css/fonts/opensans-semibold-italic.ttf
404
Not Found
1
missing file
text/html; charset=iso-8859-1, missing X-Content-Type-Options nosniff

1 Bytes






style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header
No GZip: 24876/24876 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-uEIid/xpyOarUREtvyUEjkBCXMSXSQ/uJRtW1+8MoXk=
sha384-qi1yZLvxy7NdGtECoKM2NESGcZ4WZJmOcIEyS4ybgdq++nhA+7rX6jomVvnkm0Zj
sha512-kVbq/+hGXSUrznUSguuJoHh0pccW8SEAm7OZ+9ASTjbHn36N/eMLLniVLm0i5xtm8sdMPvKPp3Zr89HE4APm2g==

<style crossorigin="anonymous" integrity="sha256-uEIid/xpyOarUREtvyUEjkBCXMSXSQ/uJRtW1+8MoXk=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

No Cache-Control header
No GZip: 15116/15116 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-hs+e3SdOmeOzqEKzzrAuj3Xbx1FS7ASJZvbxjoa14KQ=
sha384-+uvxOVy8Ir7SKFW6SxpJSfHKEWwn5thcLjierLqXvpsOREEoOnZ+NkYOuz67oV92
sha512-KAU8wmIH0kfsrMsivd8dS2hiIoizgjhxmx1UgR3N2E+1AY1kNN+4seGIXOdw2ez10hKMnwVY2k0/p0ivFRjHIw==

<style crossorigin="anonymous" integrity="sha256-hs+e3SdOmeOzqEKzzrAuj3Xbx1FS7ASJZvbxjoa14KQ=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 14504/14504 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-BjT3NQGNY5gPuTWRS9kQ69Ue1e0KA8iBFgesoMLnxTI=
sha384-wk4hE1UwqR0G1iZEtVAi7NG5BtMrPuhXqyVPubFjqrBScgKZn8p//lXRarzMih3m
sha512-a00ccCJwhol8CpF1llYhde/Mn/7UwIQk8yWD3Pd4DGmRGwGCMWavh8X21tQtokLNhkUyXMhMnkWeZelrSM+DPw==

<style crossorigin="anonymous" integrity="sha256-BjT3NQGNY5gPuTWRS9kQ69Ue1e0KA8iBFgesoMLnxTI=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 15324/15324 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-RzsgaNk67ZnQBgzoBExp9IAyzjekHzsdElGmdY55eXs=
sha384-RuKhqTerjw5Oe+o6YIcAti/pFrEjrdz/DxzOaxfbh8qbU51BNimgo7msi/2IQ/HH
sha512-GhjBEqAkZX5mFVud32WuyRbMC1gDxBXwu8soxJoiKalHqhMQzPwoqXtZgX0bqF0W02hutfNCfLpM73lNc+fstQ==

<style crossorigin="anonymous" integrity="sha256-RzsgaNk67ZnQBgzoBExp9IAyzjekHzsdElGmdY55eXs=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold-italic.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header
No GZip: 15932/15932 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-3idO2Lxr4EDgAr5e1waAUhLqwnGttaJU/VqHDov2cZ0=
sha384-XXaydIAQrcth7oBG3+4071D7KPkVSqazBZH9VkVOvZq8bHNu8VpG56rdrbkBaqpZ
sha512-YewSwQ3kRY+dXnzodItqievxIwCNm/bK+twTSl8UZLuEpqDfRbGkD5w1PQwKs43aX5rPyTJPIChaMo4LqxTDKA==

<style crossorigin="anonymous" integrity="sha256-3idO2Lxr4EDgAr5e1waAUhLqwnGttaJU/VqHDov2cZ0=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold-italic.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 17080/17080 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-0htCv3Kx2Vv3asTE4mKpli15kdcQnb5C617SL+SVxhc=
sha384-XO/ZDhuHgIKe67SGs+knRHPA5m4dvmzmGYIZWDt8/NcLC0aUqjo7XJAIro3ggLyU
sha512-wVpBaef9eNOrMhMzCrYd552gD84xs1n36ILf6LCPZTGKnVs4MMqumMfCRyx3WzRHypNVS+w2r4ljI8be3O0rRg==

<style crossorigin="anonymous" integrity="sha256-0htCv3Kx2Vv3asTE4mKpli15kdcQnb5C617SL+SVxhc=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 15312/15312 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-hD4qzJoWUBgyUvBH+7hxsuwAyfx2bEQ7K1JBpeHKvBI=
sha384-H7rIkfH82CsiioINUnuxZIcmBcZ+6PtV1FXDN8QRCci8qXEcAetnUmE5LTig7eaO
sha512-CNMr7ohiP2iCd74Xk5QxzEXVX3obb3YrzKEEgkpqlq7jdszHtNtX2qF8SJlPTMq4Mf3bLDCA5VAISTgdyBZebQ==

<style crossorigin="anonymous" integrity="sha256-hD4qzJoWUBgyUvBH+7hxsuwAyfx2bEQ7K1JBpeHKvBI=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 16672/16672 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-+qGcVij4EXR7vXa0ehvFz3CpEhoEw6v5teBLCypzKuA=
sha384-YJDQDp4HEr/XiJVjWqc71vqBdUDTXGwAeQHkyfMP4hphawNxMJTy6L9DpRw2wQPc
sha512-FtWbM7npSRLzEfuHwkmwjc9blu9/8Zcasfu/xJQHCDUl+mX0jd0MZJdXsxetByds0MHVf4i47BXihqVYsVquog==

<style crossorigin="anonymous" integrity="sha256-+qGcVij4EXR7vXa0ehvFz3CpEhoEw6v5teBLCypzKuA=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold-italic.ttf
404
Not Found
1
missing file
text/html; charset=iso-8859-1, missing X-Content-Type-Options nosniff

0 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

<style crossorigin="anonymous" integrity="" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold-italic.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header
No GZip: 15488/15488 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-9dXHyyoQ0T/JtQ0Fjyrzj+wGILK0qE6WLJdidMOWgI8=
sha384-aJy3Ed5sgsJlorS3afoLepzVMjHzO2R+CvH6ycsNDcu9jylOUwmZXICE4puBqOuP
sha512-hPmWugB6fbByZW+qoYtVwWwKm6zOMHsFcBPKtVBYenlyOvc76xvHkE3dpzsqQHm9PZRg//aWFW5dUpLP6mrfBw==

<style crossorigin="anonymous" integrity="sha256-9dXHyyoQ0T/JtQ0Fjyrzj+wGILK0qE6WLJdidMOWgI8=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold-italic.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 17040/17040 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-tjwbEucQafIIXF7jBv0B/6xyKMB4JvSfMJpgIDM9BHc=
sha384-fNO5PZp+/Z4pdjG3ZVMPY22ActHs+RENvcN2RQTrFyeYMiXA3Wg8tCfP2yxBh6gb
sha512-eBSmG8rbqUNqzgb6K5jQUYf+2y6EN5WzpmZkGhP0AVZintcH2GrdYIOSaZGaLM6LuiE+GliysIVvRcbq0+ZxoA==

<style crossorigin="anonymous" integrity="sha256-tjwbEucQafIIXF7jBv0B/6xyKMB4JvSfMJpgIDM9BHc=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-italic.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header
No GZip: 15768/15768 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-eITa85ZeqA/9WaDJNKeBcSkQbt3utIDgm5VDc3rOB90=
sha384-RntPuf1SdimnkkHrla9P5/QfMgu7sTqoOwZN3CNCI1U9Qa3mPRGxFyhji6Ood1pT
sha512-hH+MHYYIki4DrTcNHwlVKU2x49ezhm/W+RQbaEKmmuArMK+F1xxwkNaNdF9PSbd6Wkhw3zM0ZoG2EKDcdRUuCg==

<style crossorigin="anonymous" integrity="sha256-eITa85ZeqA/9WaDJNKeBcSkQbt3utIDgm5VDc3rOB90=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-italic.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 17544/17544 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-7rvTJgbKmMFK+pCUaAwjteS9PEmOl0R6PKYKZnJV8OI=
sha384-jK2LBYSnDYzGvCDQ8u99C1nEwkUVg7+2LOL1W3eofGH5SkQz94sKXxqR4w4WKfVL
sha512-MvpnLXUFsFgktN7vnv6QcSq5xGBJ8uUDhHzxPHHO2723S3f6nSj4PvpcNWKEO4GrQVMohh7lISrUD9l49TNTAQ==

<style crossorigin="anonymous" integrity="sha256-7rvTJgbKmMFK+pCUaAwjteS9PEmOl0R6PKYKZnJV8OI=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 24192/24192 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-SOzDWw44lMPHmMSr7eDpb1cn+jFb8F87iZPrFTPUuQ8=
sha384-/Ilv6Gr/rQR8sqE0zWHsjsiSPYrEpSJuwENyYv/Dp7ngeDr/sVB2Orbh8psUJKmT
sha512-Sko2oS5kIhg/LVXhR6kDoNGdkooZPhPEXz1VjoUxjspHW7NJzQ35UiVuvZB6i0Y/tUaUwXEnqRzEZMdgcvO/OQ==

<style crossorigin="anonymous" integrity="sha256-SOzDWw44lMPHmMSr7eDpb1cn+jFb8F87iZPrFTPUuQ8=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 18264/18264 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-qEMHSnl6ANwqXRBCNIKO1X1fCeFi2yi0RvFNOJF9Q2o=
sha384-gv7zoePm6l5XxBpflFhevWk6kiMuTRkH36Ptmha1cdXursl5g58MfHTqhxFAw6VH
sha512-IvcfYsQdpNzWNFePsTmy7vytVIOp8+2t2dAprftzTtfQgeiOicMEdZb1vSGanfasuJUDtsjmJE4TSkh4RHP7Sg==

<style crossorigin="anonymous" integrity="sha256-qEMHSnl6ANwqXRBCNIKO1X1fCeFi2yi0RvFNOJF9Q2o=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light-italic.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header
No GZip: 15956/15956 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-/wwkz2KmFFhkVTH3Y2TUpGQLS7DC8gXqDEK+FJ6+46I=
sha384-HXLgN0zDJVdcgurkSXHXE0C3ogP7xV9IG+8GPlAM/wM2qDt1T6qugc3kxhup3jNC
sha512-8u8vigEGMz7fipP8527Dh1X8OlAyLdPyo0m6Yf5lH0VLJUO7PXN9K2vrRETNGE6f8TzrQKF0umYQ7+vRQxwqPA==

<style crossorigin="anonymous" integrity="sha256-/wwkz2KmFFhkVTH3Y2TUpGQLS7DC8gXqDEK+FJ6+46I=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light-italic.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 17488/17488 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-d7x/N7KD4y0a5pZ+5ZkjtMX4qz031WspNyCku7fai9s=
sha384-pz+mItmhkpPqPsLEySziWe5Fmi1d8dNzkaZW3D4UmrpN+aGXUNo/Mo+VSCNPtRaI
sha512-gBQ59b/l79iruJ89kopkXrPq4EGCdlmEU5kD9zssm0B6KMIb3EdnS5hMagp6N/Ba4QOSV/Lwo695ZpxUtmnq2Q==

<style crossorigin="anonymous" integrity="sha256-d7x/N7KD4y0a5pZ+5ZkjtMX4qz031WspNyCku7fai9s=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 25108/25108 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-0hE0YMad5Q7cYgaiDe7DwrwnM5KfU4F/H6ynSrNMM+M=
sha384-F9GLmtC2so9TusB/4HQqCAiI6ag1oO6s83fS2sjojzEz2zTSVNb+UiIVSex3i5OZ
sha512-BQ8ayVee68I4/gHV7rV1JkdZAgt9LDjLTnt68dgKB/ej6a7saaw2IrPKUAIdx1CXPWlmU5U/gmiTK6CzQjFXqg==

<style crossorigin="anonymous" integrity="sha256-0hE0YMad5Q7cYgaiDe7DwrwnM5KfU4F/H6ynSrNMM+M=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 19004/19004 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-H1QSI2yYut/nbkWDQmGkM+IDAlIlFeDyB27xIOZ+rmI=
sha384-joSdXR08p1CszaE7ZCADP93sTlKGJvvjATikEjIyURZMgA7zZKRrg9m2D1k9HuWo
sha512-Rca9vNjFbV5d0sN1hZhYklhHGLom/61tuEYrsZpvhQWRrklelPk6B5h/JsKNXi641yQDhZ09znqCA1AlBZnRTA==

<style crossorigin="anonymous" integrity="sha256-H1QSI2yYut/nbkWDQmGkM+IDAlIlFeDyB27xIOZ+rmI=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold-italic.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header
No GZip: 15736/15736 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-U5KGXmxLJbiqiLq9rwJ9UxdI9j/q4ffJUNUb9aCNufA=
sha384-gLKkA0+IbS1w8ggWnyNtsru0CLbmBOd9/f12HrUIl1B4aj6A7uj04GjIPIp8/Zs8
sha512-mT8F8v6xq682cMKRdU7ncggupLilUHzG6Dktdbglwd3Vz8DvBlfbHUQ0zsfkGyWniltxlmywBUkVXEFlm5tnoA==

<style crossorigin="anonymous" integrity="sha256-U5KGXmxLJbiqiLq9rwJ9UxdI9j/q4ffJUNUb9aCNufA=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold-italic.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 17412/17412 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-hDKLGrWYj+CrtgEsJbd9PU4ncSTxAPorrwUEztiC/Ss=
sha384-l3mBGG1LYc5piipHs1J5vWDN3YDNkf8CK+5S85fwV++Oa86iq79UAekWEzSjJOPO
sha512-11vnnNJD2I1WMHIJbHJhpv+cPgm+kmKsMzZRCsEJvMjNsUbaErBh8OREveE6j7UF9HyDPC60tbWVRvjy472xUQ==

<style crossorigin="anonymous" integrity="sha256-hDKLGrWYj+CrtgEsJbd9PU4ncSTxAPorrwUEztiC/Ss=" />



https://www.chase.com/
88.221.221.115
a

#


3
ok








a

#main


1
ok








a

/business/banking/checking


1
ok








a

/business/banking/loans


1
ok








a

/business/knowledge-center


1
ok








a

/business/payments


1
ok








a

/digital/customer-service


1
ok








a

/digital/mobile-banking


1
ok








a

/digital/online-banking


1
ok








a

/digital/resources/about-chase


1
ok








a

/digital/resources/accessibility


1
ok








a

/digital/resources/complaints-feedback


1
ok








a

/digital/resources/privacy-security


4
ok








a

/digital/resources/privacy-security/financial-abuse


1
ok








a

/digital/resources/privacy-security/security/how-to-spot-scams


1
ok








a

/digital/resources/privacy-security/security/how-we-protect-you


1
ok








a

/digital/resources/privacy-security/security/how-you-can-protect


1
ok








a

/digital/resources/privacy-security/security/report-fraud


3
ok








a

/digital/resources/privacy-security/security/system-requirements


2
ok








a

/digital/resources/sitemap


1
ok








a

/digital/resources/terms-of-use


1
ok








a

/personal/auto/education?offercode=WDXDPXXX02


1
ok








a

/personal/banking/education


1
ok








a

/personal/branch-disclosures


1
ok








a

/personal/checking/private-client#personalized-financial-relationship


1
ok








a

/personal/checking/private-client/perks


1
ok








a

/personal/checking/private-client/team


1
ok








a

/personal/credit-cards/free-credit-score


3
ok








a

/personal/education


3
ok








a

/personal/events/chase-center


1
ok








a

/personal/events/experiences


1
ok








a

/personal/events/us-open


1
ok








a

/personal/financial-goals


2
ok








a

/personal/financial-goals/life-moments


1
ok








a

/personal/investments/advisor-services


1
ok








a

/personal/investments/learning-and-insights


1
ok








a

/personal/investments/online-investing


1
ok








a

/personal/mortgage


1
ok








a

/personal/mortgage/calculators-resources/mortgage-calculator


1
ok








a

/personal/mortgage/education


1
ok








a

/personal/mortgage/mortgage-rates


1
ok








a

/personal/mortgage/mortgage-refinance


1
ok








a

/personal/savings/bank-cd


3
ok








a

/personal/zelle


1
ok








a

https://account.chase.com/consumer/banking/seo


1
ok








a

https://account.chase.com/consumer/investing/self-directedoffer


1
ok








a

https://account.chase.com/personalbanking


2
ok








a

https://autofinance.chase.com/?offercode=WDXDPXXX02


1
ok








a

https://autofinance.chase.com/auto-finance/auto-loans?offercode=WDXDPXXX02


1
ok








a

https://autofinance.chase.com/auto-finance/auto-loans?offercode=WDXDPXXX09


2
ok








a

https://autofinance.chase.com/auto-finance/auto-loans?offercode=WDXDPXXX12


1
ok








a

https://autofinance.chase.com/auto-finance/home?offercode=WDXDPXXX05


2
ok








a

https://autofinance.chase.com/auto-finance/manage?offercode=WDXDPXXX06


2
ok








a

https://autopreferred.chase.com/


2
ok








a

https://autopreferred.chase.com/garage/auto-loan-calculator?offercode=WDXDPXXX02


1
ok








a

https://careers.jpmorgan.com/US/en/chase


1
ok








a

https://creditcards.chase.com/


1
ok








a

https://creditcards.chase.com/?jp_ltg=chsecate_featured&CELL=6TKV


2
ok








a

https://creditcards.chase.com/all-credit-cards?CELL=6TKV


2
ok








a

https://creditcards.chase.com/business-credit-cards


1
ok








a

https://creditcards.chase.com/business-credit-cards?jp_ltg=chsecate_smlbiz&CELL=6TKV


2
ok








a

https://creditcards.chase.com/cash-back-credit-cards


1
ok








a

https://creditcards.chase.com/credit-cards/home/?CELL=6TKV


1
ok








a

https://creditcards.chase.com/rewards-credit-cards


1
ok








a

https://creditcards.chase.com/travel-credit-cards


1
ok








a

https://jpmorganwealthmanagement.chase.com/advisor


1
ok








a

https://locator.chase.com/?locale=en_US


3
ok








a

https://media.chase.com


1
ok








a

https://personal.chase.com/personal/checking


3
ok








a

https://personal.chase.com/personal/first-banking


2
ok








a

https://personal.chase.com/personal/savings


3
ok








a

https://secure.chase.com/web/auth/dashboard


3
ok








a

https://secure.chase.com/web/auth/enrollment#/enroll/onlineEnrollment/gettingStarted/index?LOB=COLLogon


1
ok








a

https://secure.chase.com/web/oao/application/retail#/origination;cfgCode=502002;AcctRef=Credit/index/index


2
ok








a

https://survey.experience.chase.com/jfe/form/SV_0kY6b0kOTJsWvUW


1
ok








a

https://survey.experience.chase.com/jfe/form/SV_0rBuvmGXX6OhYEJ


1
ok








a

https://twitter.com/Chase


1
ok








a

https://www.chase.co.uk/gb/en/?utm_source=jpmc&utm_medium=usbanner&utm_campaign=us_website_banner_redirect_homepage&pid=jpmc&af_channel=usbanner&c=us_website_banner_redirect_homepage


1
ok








a

https://www.chase.com


2
ok








a

https://www.chase.com/


3
ok








a

https://www.chase.com/auto/prequalified?offercode=WDXDPXXX11


2
ok








a

https://www.chase.com/business


2
ok








a

https://www.chase.com/digital/customer-service


3
ok








a

https://www.chase.com/digital/resources/search-results.html


3
ok








a

https://www.chase.com/espanol


2
ok








a

https://www.chase.com/meeting-scheduler/getstarted


2
ok








a

https://www.chase.com/personal/investments


3
ok








a

https://www.chase.com/personal/investments/advisor-services


2
ok








a

https://www.chase.com/personal/investments/education


2
ok








a

https://www.chase.com/personal/investments/learning-and-insights


2
ok








a

https://www.chase.com/personal/investments/online-investing/self-directed


2
ok








a

https://www.chase.com/personal/investments/retirement


2
ok








a

https://www.chase.com/personal/investments/wealth-plan


2
ok








a

https://www.chase.com/personal/mobile-online-banking/make-payment


2
ok








a

https://www.chase.com/personal/mortgage


1
ok








a

https://www.chase.com/personal/mortgage/calculators-resources


2
ok








a

https://www.chase.com/personal/mortgage/education


2
ok








a

https://www.chase.com/personal/mortgage/manage-account


2
ok








a

https://www.chase.com/personal/mortgage/mortgage-purchase


2
ok








a

https://www.chase.com/personal/mortgage/mortgage-rates


2
ok








a

https://www.chase.com/personal/mortgage/mortgage-refinance


2
ok








a

https://www.chase.com/personal/offers/secureshopping?CELL=6TKV


2
ok








a

https://www.facebook.com/chase


1
ok








a

https://www.finra.org/#/


1
ok








a

https://www.instagram.com/chase/


1
ok








a

https://www.jpmorgan.com/commercial-banking


2
ok








a

https://www.jpmorgan.com/global


1
ok








a

https://www.jpmorganchase.com


1
ok








a

https://www.linkedin.com/company/chase?trk=company_logo


1
ok








a

https://www.msg.com/madison-square-garden


1
ok








a

https://www.pinterest.com/chase/


1
ok








a

https://www.sipc.org/


1
ok








a

https://www.youtube.com/chase


1
ok








a

https://youradchoices.com/


1
ok








a

javascript:void(0)


1
ok








iframe




1
ok








img
src
/etc/designs/chase-ux/css/img/ie_alert.png
200

1
ok
alt: Alert Messageimage/png, missing X-Content-Type-Options nosniff

Wrong GZip: 564/532 Bytes






img
src
/etc/designs/chase-ux/css/img/newheaderlogo.svg
200

2
ok
no alt-Attributeimage/svg+xml, missing X-Content-Type-Options nosniff

Cache-Control: max-age=137, s-maxage=300 - max-age too short.
GZip: 1015/1592 Bytes






link
alternate
https://www.chase.com


1
ok








link
alternate
https://www.chase.com/espanol


1
ok








link
apple-touch-icon
/etc/designs/chase-ux/favicon-120.png
200

1
ok
image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=577, s-maxage=1800 - max-age too short.
Wrong GZip: 3140/3359 Bytes






link
apple-touch-icon
/etc/designs/chase-ux/favicon-152.png
200

1
ok
image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=187, s-maxage=1800 - max-age too short.
Wrong GZip: 3827/4040 Bytes






link
apple-touch-icon
/etc/designs/chase-ux/favicon-57.png
200

1
ok
image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=867, s-maxage=1800 - max-age too short.
GZip: 1927/2182 Bytes






link
apple-touch-icon
/etc/designs/chase-ux/favicon-76.png
200

1
ok
image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=1370, s-maxage=1800 - max-age too short.
GZip: 2235/2489 Bytes






link
canonical
https://www.chase.com


1
ok








link
icon
/etc/designs/chase-ux/favicon.ico
200

1
ok
image/x-icon, missing X-Content-Type-Options nosniff

Cache-Control: max-age=256, s-maxage=300 - max-age too short.
GZip: 3713/15086 Bytes






link
preconnect
https://dpm.demdex.net


1
ok








link
preconnect
https://midas.chase.com


1
ok








link
preconnect
https://secure.chase.com


1
ok








link
preconnect
https://sites.chase.com


1
ok








link
preconnect
https://static.chasecdn.com


1
ok








link
preload
/c/030424/etc/designs/chase-ux/css/home.min.css
200

1
ok
text/css, missing X-Content-Type-Options nosniff

42706 Bytes






link
preload
https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

No Cache-Control header
No GZip: 15116/15116 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-hs+e3SdOmeOzqEKzzrAuj3Xbx1FS7ASJZvbxjoa14KQ=
sha384-+uvxOVy8Ir7SKFW6SxpJSfHKEWwn5thcLjierLqXvpsOREEoOnZ+NkYOuz67oV92
sha512-KAU8wmIH0kfsrMsivd8dS2hiIoizgjhxmx1UgR3N2E+1AY1kNN+4seGIXOdw2ez10hKMnwVY2k0/p0ivFRjHIw==

<link rel="preload" href="https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans.woff2" crossorigin="anonymous" integrity="sha256-hs+e3SdOmeOzqEKzzrAuj3Xbx1FS7ASJZvbxjoa14KQ=" />




link
preload
https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 15324/15324 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-RzsgaNk67ZnQBgzoBExp9IAyzjekHzsdElGmdY55eXs=
sha384-RuKhqTerjw5Oe+o6YIcAti/pFrEjrdz/DxzOaxfbh8qbU51BNimgo7msi/2IQ/HH
sha512-GhjBEqAkZX5mFVud32WuyRbMC1gDxBXwu8soxJoiKalHqhMQzPwoqXtZgX0bqF0W02hutfNCfLpM73lNc+fstQ==

<link rel="preload" href="https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold.woff2" crossorigin="anonymous" integrity="sha256-RzsgaNk67ZnQBgzoBExp9IAyzjekHzsdElGmdY55eXs=" />




link
preload
https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 18264/18264 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-qEMHSnl6ANwqXRBCNIKO1X1fCeFi2yi0RvFNOJF9Q2o=
sha384-gv7zoePm6l5XxBpflFhevWk6kiMuTRkH36Ptmha1cdXursl5g58MfHTqhxFAw6VH
sha512-IvcfYsQdpNzWNFePsTmy7vytVIOp8+2t2dAprftzTtfQgeiOicMEdZb1vSGanfasuJUDtsjmJE4TSkh4RHP7Sg==

<link rel="preload" href="https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light.woff2" crossorigin="anonymous" integrity="sha256-qEMHSnl6ANwqXRBCNIKO1X1fCeFi2yi0RvFNOJF9Q2o=" />




link
preload
https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 19004/19004 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-H1QSI2yYut/nbkWDQmGkM+IDAlIlFeDyB27xIOZ+rmI=
sha384-joSdXR08p1CszaE7ZCADP93sTlKGJvvjATikEjIyURZMgA7zZKRrg9m2D1k9HuWo
sha512-Rca9vNjFbV5d0sN1hZhYklhHGLom/61tuEYrsZpvhQWRrklelPk6B5h/JsKNXi641yQDhZ09znqCA1AlBZnRTA==

<link rel="preload" href="https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold.woff2" crossorigin="anonymous" integrity="sha256-H1QSI2yYut/nbkWDQmGkM+IDAlIlFeDyB27xIOZ+rmI=" />




link
shortcut icon
/etc/designs/chase-ux/favicon.ico
200

1
ok
image/x-icon, missing X-Content-Type-Options nosniff

Cache-Control: max-age=256, s-maxage=300 - max-age too short.
GZip: 3713/15086 Bytes






link
stylesheet
/c/030424/etc/designs/chase-ux/css/home.min.css
200

1
ok
text/css, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31533822, s-maxage=31536000 - with long duration found.
GZip: 42706/195148 Bytes




local SRI possible, possible hash-values:

sha256-3sFHwNlJ95a4e3cKa6oEp05xtLvhNMKyPtJMw9DzZ94=
sha384-G2e2hLuBUSUpvH/e3KGZGx/DAGtoIJXEXeBBqmKhm1EjW5RxdQTYBcgjtRkhDRfQ
sha512-7bMWYt1mgB54xNILRqJ1FPkRAhR2d8l39+bSrYdJKTRydn3YBuUU9RYbs2hhUQUi0s9YU663aY3LW3ZS6NeCnA==

<link rel="stylesheet" href="/c/030424/etc/designs/chase-ux/css/home.min.css" crossorigin="anonymous" integrity="sha256-3sFHwNlJ95a4e3cKa6oEp05xtLvhNMKyPtJMw9DzZ94=" />



Content loaded via url("...")

fonts/dcefont.eot2
fonts/dcefont.eot?#iefix2
fonts/dcefont.svg#dce1
fonts/dcefont.ttf2
fonts/dcefont.woff2
fonts/icomoon.eot?ewdcow1
fonts/icomoon.eot?ewdcow#iefix1
fonts/icomoon.svg?ewdcow#icomoon1
fonts/icomoon.ttf?ewdcow1
fonts/icomoon.woff?ewdcow1
fonts/smc.eot1
fonts/smc.eot?#iefix1
fonts/smc.svg#smc1
fonts/smc.ttf1
fonts/smc.woff1
img/choices-logo-blue_lite.png1
img/EHL-Slice.png1

meta

utf-8


1
ok








meta
apple-itunes-app
app-id=298867247, affiliate-data=JPMorganChase


1
ok








meta
description
Chase online; credit cards, mortgages, commercial banking, auto loans, investing & retirement planning, checking and business banking.


1
ok








meta
msapplication-TileColor
#FFFFFF


1
ok








meta
msapplication-TileImage
/etc/designs/chase-ux/favicon-144.png
200

1
ok
image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=1250, s-maxage=1800 - max-age too short.
Wrong GZip: 3562/3798 Bytes






meta
viewport
width=device-width, initial-scale=1.0


1
ok








script
src
/c/030424/apps/chase/clientlibs/foundation/scripts/Reporting.js
200

1
ok
Missing defer / async attribute. application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: max-age=11499, s-maxage=14400 - max-age too short.
GZip: 38148/89208 Bytes




local SRI possible, possible hash-values:

sha256-Lv7VT+8l9w1i5s0UtoAgEJnU082cpDIW15qOWvg0sSk=
sha384-Zzbjpv0fz4ekADx76f2pm0EFoKfvzMuSnBs6MgO5gOxZlDOJ1+R7fvQ/Z3UE+w5f
sha512-hjOx/410l9nEL2lZx1sxlmK5G47Zq2162pE638cDuEjIQU08/AUFojtd3u8F8Vik6Rf46fRmSNKKLRUV+9ZC2Q==

<script src="/c/030424/apps/chase/clientlibs/foundation/scripts/Reporting.js" crossorigin="anonymous" integrity="sha256-Lv7VT+8l9w1i5s0UtoAgEJnU082cpDIW15qOWvg0sSk=" />




script
src
/c/030424/etc/designs/chase-ux/clientlibs/chase-ux/js/dist/index.min.js
200

1
ok
Missing defer / async attribute. application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31533616, s-maxage=31536000 - with long duration found.
GZip: 165213/416714 Bytes




local SRI possible, possible hash-values:

sha256-oJUAM60v6WnaH/YhrVRBW8l0+80kFdY3aMImAAHtSfQ=
sha384-FHM4HmmbliXDmoou5h2I8uGilBeTQV2vBWXbzVMp60BZJ/o077gkvOH0P50gpany
sha512-7rcEx14e4m6+hsUZJhJz0JUq/yJkWoZJZMyOEaBi7nAFrgDQ2bVZLWUb5kPe1it3cIukShpivqZ1awnlhzrVcQ==

<script src="/c/030424/etc/designs/chase-ux/clientlibs/chase-ux/js/dist/index.min.js" crossorigin="anonymous" integrity="sha256-oJUAM60v6WnaH/YhrVRBW8l0+80kFdY3aMImAAHtSfQ=" />




script
src
/c/030424/etc/designs/chase-ux/clientlibs/jquery/js/jquery.min.js
200

1
ok
Missing defer / async attribute. application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31533478, s-maxage=31536000 - with long duration found.
GZip: 45349/96519 Bytes




local SRI possible, possible hash-values:

sha256-PBq+NjjwUb69WQSyMBAYIqEeHGRg5PlAGufSePmn9t4=
sha384-6dWlq+sS8OtsShKYpEguVn7Jj97ah/GBjgAGIDzLmsOhOErOwk1rmIz09/eRsbPI
sha512-HE0+22opA5BLspOm7WqfqhEQsSatVYDP4DenFhka0b4SxGfwSXFIgAGUUxM2hVbjTBOPrl5boDpTI9fJzx6O6Q==

<script src="/c/030424/etc/designs/chase-ux/clientlibs/jquery/js/jquery.min.js" crossorigin="anonymous" integrity="sha256-PBq+NjjwUb69WQSyMBAYIqEeHGRg5PlAGufSePmn9t4=" />




script
src
/c/030424/etc/designs/chase-ux/clientlibs/require/js/require.min.js
200

1
ok
Missing defer / async attribute. application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31533372, s-maxage=31536000 - with long duration found.
GZip: 7871/15253 Bytes




local SRI possible, possible hash-values:

sha256-X5hDZq05ZQuqBAhINBaY45VFZ2FUf36LtGaH6y6tetc=
sha384-+aCxDrjXjURae1wjXiZJZrvMZbySeYUB9Kt9+WVKYXG1DvweLo+qOPA9rGniOj9s
sha512-iIy32xvJER4zAErxrfCc0grRAMHPjTqyFtAXsUapB61VJ+PVqMFRXWJIl42F1ZJ6jTAfQzKq8fFP+D/ABBXidQ==

<script src="/c/030424/etc/designs/chase-ux/clientlibs/require/js/require.min.js" crossorigin="anonymous" integrity="sha256-X5hDZq05ZQuqBAhINBaY45VFZ2FUf36LtGaH6y6tetc=" />




script
src
/ruxitagentjs_ICA27NQVfhqrux_10271230629152232.js
200

1
ok
Missing defer / async attribute. text/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=197, s-maxage=300 - max-age too short.
GZip: 154085/316001 Bytes




local SRI possible, possible hash-values:

sha256-gp7D80yxPJlTKG2/mi1IP9QcVLinaG0HJxsC3p11liQ=
sha384-mGp0b03J0tOEYWQ9gzEAw9x8pFsqJD96SYGrXatUURPJhb+tcwLsKmACY0D36pzA
sha512-j9t/ic7gge5rmiNaekjIiVhSxC1mVG8it6ncoxSipjmNERDc7+irDqKYjtlHwwhpJ8ISW6gzXWLBTGdpK1T7gw==

<script src="/ruxitagentjs_ICA27NQVfhqrux_10271230629152232.js" crossorigin="anonymous" integrity="sha256-gp7D80yxPJlTKG2/mi1IP9QcVLinaG0HJxsC3p11liQ=" />




style

/c/030424/etc/designs/chase-ux/css/fonts/opensans.ttf
200

1
ok
font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31535149, s-maxage=31536000 with long duration found.
GZip used: 29486/45372 Bytes, font not compressed






style

/c/030424/etc/designs/chase-ux/css/fonts/opensans-bold.ttf
200

1
ok
font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31533518, s-maxage=31536000 with long duration found.
GZip used: 15602/21012 Bytes, font not compressed






style

/c/030424/etc/designs/chase-ux/css/fonts/opensans-bold-italic.ttf
200

1
ok
font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31534496, s-maxage=31536000 with long duration found.
GZip used: 17262/23304 Bytes, font not compressed






style

/c/030424/etc/designs/chase-ux/css/fonts/opensans-extrabold.ttf
200

1
ok
font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31535195, s-maxage=31536000 with long duration found.
GZip used: 15792/20988 Bytes, font not compressed






style

/c/030424/etc/designs/chase-ux/css/fonts/opensans-italic.ttf
200

1
ok
font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000, s-maxage=31536000 with long duration found.
GZip used: 17545/23680 Bytes, font not compressed






style

/c/030424/etc/designs/chase-ux/css/fonts/opensans-light.ttf
200

1
ok
font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31534206, s-maxage=31536000 with long duration found.
GZip used: 28785/44716 Bytes, font not compressed






style

/c/030424/etc/designs/chase-ux/css/fonts/opensans-light-italic.ttf
200

1
ok
font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31534468, s-maxage=31536000 with long duration found.
GZip used: 17655/23864 Bytes, font not compressed






style

/c/030424/etc/designs/chase-ux/css/fonts/opensans-semibold.ttf
200

1
ok
font/ttf, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31534537, s-maxage=31536000 with long duration found.
GZip used: 29711/45496 Bytes, font not compressed






style

/c/030424/etc/designs/chase-ux/css/fonts/opensans-semibold-italic.ttf
404
Not Found
1
missing file
text/html; charset=iso-8859-1, missing X-Content-Type-Options nosniff

1 Bytes






style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header
No GZip: 24876/24876 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-uEIid/xpyOarUREtvyUEjkBCXMSXSQ/uJRtW1+8MoXk=
sha384-qi1yZLvxy7NdGtECoKM2NESGcZ4WZJmOcIEyS4ybgdq++nhA+7rX6jomVvnkm0Zj
sha512-kVbq/+hGXSUrznUSguuJoHh0pccW8SEAm7OZ+9ASTjbHn36N/eMLLniVLm0i5xtm8sdMPvKPp3Zr89HE4APm2g==

<style crossorigin="anonymous" integrity="sha256-uEIid/xpyOarUREtvyUEjkBCXMSXSQ/uJRtW1+8MoXk=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

No Cache-Control header
No GZip: 15116/15116 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-hs+e3SdOmeOzqEKzzrAuj3Xbx1FS7ASJZvbxjoa14KQ=
sha384-+uvxOVy8Ir7SKFW6SxpJSfHKEWwn5thcLjierLqXvpsOREEoOnZ+NkYOuz67oV92
sha512-KAU8wmIH0kfsrMsivd8dS2hiIoizgjhxmx1UgR3N2E+1AY1kNN+4seGIXOdw2ez10hKMnwVY2k0/p0ivFRjHIw==

<style crossorigin="anonymous" integrity="sha256-hs+e3SdOmeOzqEKzzrAuj3Xbx1FS7ASJZvbxjoa14KQ=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 14504/14504 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-BjT3NQGNY5gPuTWRS9kQ69Ue1e0KA8iBFgesoMLnxTI=
sha384-wk4hE1UwqR0G1iZEtVAi7NG5BtMrPuhXqyVPubFjqrBScgKZn8p//lXRarzMih3m
sha512-a00ccCJwhol8CpF1llYhde/Mn/7UwIQk8yWD3Pd4DGmRGwGCMWavh8X21tQtokLNhkUyXMhMnkWeZelrSM+DPw==

<style crossorigin="anonymous" integrity="sha256-BjT3NQGNY5gPuTWRS9kQ69Ue1e0KA8iBFgesoMLnxTI=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 15324/15324 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-RzsgaNk67ZnQBgzoBExp9IAyzjekHzsdElGmdY55eXs=
sha384-RuKhqTerjw5Oe+o6YIcAti/pFrEjrdz/DxzOaxfbh8qbU51BNimgo7msi/2IQ/HH
sha512-GhjBEqAkZX5mFVud32WuyRbMC1gDxBXwu8soxJoiKalHqhMQzPwoqXtZgX0bqF0W02hutfNCfLpM73lNc+fstQ==

<style crossorigin="anonymous" integrity="sha256-RzsgaNk67ZnQBgzoBExp9IAyzjekHzsdElGmdY55eXs=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold-italic.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header
No GZip: 15932/15932 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-3idO2Lxr4EDgAr5e1waAUhLqwnGttaJU/VqHDov2cZ0=
sha384-XXaydIAQrcth7oBG3+4071D7KPkVSqazBZH9VkVOvZq8bHNu8VpG56rdrbkBaqpZ
sha512-YewSwQ3kRY+dXnzodItqievxIwCNm/bK+twTSl8UZLuEpqDfRbGkD5w1PQwKs43aX5rPyTJPIChaMo4LqxTDKA==

<style crossorigin="anonymous" integrity="sha256-3idO2Lxr4EDgAr5e1waAUhLqwnGttaJU/VqHDov2cZ0=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold-italic.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 17080/17080 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-0htCv3Kx2Vv3asTE4mKpli15kdcQnb5C617SL+SVxhc=
sha384-XO/ZDhuHgIKe67SGs+knRHPA5m4dvmzmGYIZWDt8/NcLC0aUqjo7XJAIro3ggLyU
sha512-wVpBaef9eNOrMhMzCrYd552gD84xs1n36ILf6LCPZTGKnVs4MMqumMfCRyx3WzRHypNVS+w2r4ljI8be3O0rRg==

<style crossorigin="anonymous" integrity="sha256-0htCv3Kx2Vv3asTE4mKpli15kdcQnb5C617SL+SVxhc=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 15312/15312 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-hD4qzJoWUBgyUvBH+7hxsuwAyfx2bEQ7K1JBpeHKvBI=
sha384-H7rIkfH82CsiioINUnuxZIcmBcZ+6PtV1FXDN8QRCci8qXEcAetnUmE5LTig7eaO
sha512-CNMr7ohiP2iCd74Xk5QxzEXVX3obb3YrzKEEgkpqlq7jdszHtNtX2qF8SJlPTMq4Mf3bLDCA5VAISTgdyBZebQ==

<style crossorigin="anonymous" integrity="sha256-hD4qzJoWUBgyUvBH+7hxsuwAyfx2bEQ7K1JBpeHKvBI=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 16672/16672 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-+qGcVij4EXR7vXa0ehvFz3CpEhoEw6v5teBLCypzKuA=
sha384-YJDQDp4HEr/XiJVjWqc71vqBdUDTXGwAeQHkyfMP4hphawNxMJTy6L9DpRw2wQPc
sha512-FtWbM7npSRLzEfuHwkmwjc9blu9/8Zcasfu/xJQHCDUl+mX0jd0MZJdXsxetByds0MHVf4i47BXihqVYsVquog==

<style crossorigin="anonymous" integrity="sha256-+qGcVij4EXR7vXa0ehvFz3CpEhoEw6v5teBLCypzKuA=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold-italic.ttf
404
Not Found
1
missing file
text/html; charset=iso-8859-1, missing X-Content-Type-Options nosniff

0 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

<style crossorigin="anonymous" integrity="" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold-italic.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header
No GZip: 15488/15488 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-9dXHyyoQ0T/JtQ0Fjyrzj+wGILK0qE6WLJdidMOWgI8=
sha384-aJy3Ed5sgsJlorS3afoLepzVMjHzO2R+CvH6ycsNDcu9jylOUwmZXICE4puBqOuP
sha512-hPmWugB6fbByZW+qoYtVwWwKm6zOMHsFcBPKtVBYenlyOvc76xvHkE3dpzsqQHm9PZRg//aWFW5dUpLP6mrfBw==

<style crossorigin="anonymous" integrity="sha256-9dXHyyoQ0T/JtQ0Fjyrzj+wGILK0qE6WLJdidMOWgI8=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-extrabold-italic.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 17040/17040 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-tjwbEucQafIIXF7jBv0B/6xyKMB4JvSfMJpgIDM9BHc=
sha384-fNO5PZp+/Z4pdjG3ZVMPY22ActHs+RENvcN2RQTrFyeYMiXA3Wg8tCfP2yxBh6gb
sha512-eBSmG8rbqUNqzgb6K5jQUYf+2y6EN5WzpmZkGhP0AVZintcH2GrdYIOSaZGaLM6LuiE+GliysIVvRcbq0+ZxoA==

<style crossorigin="anonymous" integrity="sha256-tjwbEucQafIIXF7jBv0B/6xyKMB4JvSfMJpgIDM9BHc=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-italic.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header
No GZip: 15768/15768 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-eITa85ZeqA/9WaDJNKeBcSkQbt3utIDgm5VDc3rOB90=
sha384-RntPuf1SdimnkkHrla9P5/QfMgu7sTqoOwZN3CNCI1U9Qa3mPRGxFyhji6Ood1pT
sha512-hH+MHYYIki4DrTcNHwlVKU2x49ezhm/W+RQbaEKmmuArMK+F1xxwkNaNdF9PSbd6Wkhw3zM0ZoG2EKDcdRUuCg==

<style crossorigin="anonymous" integrity="sha256-eITa85ZeqA/9WaDJNKeBcSkQbt3utIDgm5VDc3rOB90=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-italic.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 17544/17544 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-7rvTJgbKmMFK+pCUaAwjteS9PEmOl0R6PKYKZnJV8OI=
sha384-jK2LBYSnDYzGvCDQ8u99C1nEwkUVg7+2LOL1W3eofGH5SkQz94sKXxqR4w4WKfVL
sha512-MvpnLXUFsFgktN7vnv6QcSq5xGBJ8uUDhHzxPHHO2723S3f6nSj4PvpcNWKEO4GrQVMohh7lISrUD9l49TNTAQ==

<style crossorigin="anonymous" integrity="sha256-7rvTJgbKmMFK+pCUaAwjteS9PEmOl0R6PKYKZnJV8OI=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 24192/24192 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-SOzDWw44lMPHmMSr7eDpb1cn+jFb8F87iZPrFTPUuQ8=
sha384-/Ilv6Gr/rQR8sqE0zWHsjsiSPYrEpSJuwENyYv/Dp7ngeDr/sVB2Orbh8psUJKmT
sha512-Sko2oS5kIhg/LVXhR6kDoNGdkooZPhPEXz1VjoUxjspHW7NJzQ35UiVuvZB6i0Y/tUaUwXEnqRzEZMdgcvO/OQ==

<style crossorigin="anonymous" integrity="sha256-SOzDWw44lMPHmMSr7eDpb1cn+jFb8F87iZPrFTPUuQ8=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 18264/18264 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-qEMHSnl6ANwqXRBCNIKO1X1fCeFi2yi0RvFNOJF9Q2o=
sha384-gv7zoePm6l5XxBpflFhevWk6kiMuTRkH36Ptmha1cdXursl5g58MfHTqhxFAw6VH
sha512-IvcfYsQdpNzWNFePsTmy7vytVIOp8+2t2dAprftzTtfQgeiOicMEdZb1vSGanfasuJUDtsjmJE4TSkh4RHP7Sg==

<style crossorigin="anonymous" integrity="sha256-qEMHSnl6ANwqXRBCNIKO1X1fCeFi2yi0RvFNOJF9Q2o=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light-italic.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header
No GZip: 15956/15956 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-/wwkz2KmFFhkVTH3Y2TUpGQLS7DC8gXqDEK+FJ6+46I=
sha384-HXLgN0zDJVdcgurkSXHXE0C3ogP7xV9IG+8GPlAM/wM2qDt1T6qugc3kxhup3jNC
sha512-8u8vigEGMz7fipP8527Dh1X8OlAyLdPyo0m6Yf5lH0VLJUO7PXN9K2vrRETNGE6f8TzrQKF0umYQ7+vRQxwqPA==

<style crossorigin="anonymous" integrity="sha256-/wwkz2KmFFhkVTH3Y2TUpGQLS7DC8gXqDEK+FJ6+46I=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light-italic.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 17488/17488 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-d7x/N7KD4y0a5pZ+5ZkjtMX4qz031WspNyCku7fai9s=
sha384-pz+mItmhkpPqPsLEySziWe5Fmi1d8dNzkaZW3D4UmrpN+aGXUNo/Mo+VSCNPtRaI
sha512-gBQ59b/l79iruJ89kopkXrPq4EGCdlmEU5kD9zssm0B6KMIb3EdnS5hMagp6N/Ba4QOSV/Lwo695ZpxUtmnq2Q==

<style crossorigin="anonymous" integrity="sha256-d7x/N7KD4y0a5pZ+5ZkjtMX4qz031WspNyCku7fai9s=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 25108/25108 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-0hE0YMad5Q7cYgaiDe7DwrwnM5KfU4F/H6ynSrNMM+M=
sha384-F9GLmtC2so9TusB/4HQqCAiI6ag1oO6s83fS2sjojzEz2zTSVNb+UiIVSex3i5OZ
sha512-BQ8ayVee68I4/gHV7rV1JkdZAgt9LDjLTnt68dgKB/ej6a7saaw2IrPKUAIdx1CXPWlmU5U/gmiTK6CzQjFXqg==

<style crossorigin="anonymous" integrity="sha256-0hE0YMad5Q7cYgaiDe7DwrwnM5KfU4F/H6ynSrNMM+M=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 19004/19004 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-H1QSI2yYut/nbkWDQmGkM+IDAlIlFeDyB27xIOZ+rmI=
sha384-joSdXR08p1CszaE7ZCADP93sTlKGJvvjATikEjIyURZMgA7zZKRrg9m2D1k9HuWo
sha512-Rca9vNjFbV5d0sN1hZhYklhHGLom/61tuEYrsZpvhQWRrklelPk6B5h/JsKNXi641yQDhZ09znqCA1AlBZnRTA==

<style crossorigin="anonymous" integrity="sha256-H1QSI2yYut/nbkWDQmGkM+IDAlIlFeDyB27xIOZ+rmI=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold-italic.woff
200

1
ok
font/woff, missing X-Content-Type-Options nosniff

No Cache-Control header
No GZip: 15736/15736 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-U5KGXmxLJbiqiLq9rwJ9UxdI9j/q4ffJUNUb9aCNufA=
sha384-gLKkA0+IbS1w8ggWnyNtsru0CLbmBOd9/f12HrUIl1B4aj6A7uj04GjIPIp8/Zs8
sha512-mT8F8v6xq682cMKRdU7ncggupLilUHzG6Dktdbglwd3Vz8DvBlfbHUQ0zsfkGyWniltxlmywBUkVXEFlm5tnoA==

<style crossorigin="anonymous" integrity="sha256-U5KGXmxLJbiqiLq9rwJ9UxdI9j/q4ffJUNUb9aCNufA=" />




style

https://static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold-italic.woff2
200

1
ok
font/woff2, missing X-Content-Type-Options nosniff

Cache-Control: max-age=2592000, s-maxage=2592000 with long duration found.
No GZip: 17412/17412 Bytes, font already compressed




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-hDKLGrWYj+CrtgEsJbd9PU4ncSTxAPorrwUEztiC/Ss=
sha384-l3mBGG1LYc5piipHs1J5vWDN3YDNkf8CK+5S85fwV++Oa86iq79UAekWEzSjJOPO
sha512-11vnnNJD2I1WMHIJbHJhpv+cPgm+kmKsMzZRCsEJvMjNsUbaErBh8OREveE6j7UF9HyDPC60tbWVRvjy472xUQ==

<style crossorigin="anonymous" integrity="sha256-hDKLGrWYj+CrtgEsJbd9PU4ncSTxAPorrwUEztiC/Ss=" />




12. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: ns0119.secondary.cloudflare.com, ns0140.secondary.cloudflare.com, ns05.jpmorganchase.com, ns06.jpmorganchase.com, ns1.jpmorganchase.com, ns2.jpmorganchase.com

QNr.DomainTypeNS used
1
com
NS
a.root-servers.net (2001:503:ba3e::2:30)

Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
2
ns0119.secondary.cloudflare.com
NS
b.gtld-servers.net (2001:503:231d::2:30)

Answer: ns3.cloudflare.com, ns4.cloudflare.com, ns5.cloudflare.com, ns6.cloudflare.com, ns7.cloudflare.com

Answer: ns3.cloudflare.com
162.159.0.33, 162.159.7.226, 2400:cb00:2049:1::a29f:21, 2400:cb00:2049:1::a29f:7e2

Answer: ns4.cloudflare.com
162.159.1.33, 162.159.8.55, 2400:cb00:2049:1::a29f:121, 2400:cb00:2049:1::a29f:837

Answer: ns5.cloudflare.com
162.159.2.9, 162.159.9.55, 2400:cb00:2049:1::a29f:209, 2400:cb00:2049:1::a29f:937

Answer: ns6.cloudflare.com
162.159.3.11, 162.159.5.6, 2400:cb00:2049:1::a29f:30b, 2400:cb00:2049:1::a29f:506

Answer: ns7.cloudflare.com
162.159.4.8
3
ns0140.secondary.cloudflare.com
NS
b.gtld-servers.net (2001:503:231d::2:30)

Answer: ns3.cloudflare.com, ns4.cloudflare.com, ns5.cloudflare.com, ns6.cloudflare.com, ns7.cloudflare.com

Answer: ns3.cloudflare.com
162.159.0.33, 162.159.7.226, 2400:cb00:2049:1::a29f:21, 2400:cb00:2049:1::a29f:7e2

Answer: ns4.cloudflare.com
162.159.1.33, 162.159.8.55, 2400:cb00:2049:1::a29f:121, 2400:cb00:2049:1::a29f:837

Answer: ns5.cloudflare.com
162.159.2.9, 162.159.9.55, 2400:cb00:2049:1::a29f:209, 2400:cb00:2049:1::a29f:937

Answer: ns6.cloudflare.com
162.159.3.11, 162.159.5.6, 2400:cb00:2049:1::a29f:30b, 2400:cb00:2049:1::a29f:506

Answer: ns7.cloudflare.com
162.159.4.8
4
ns05.jpmorganchase.com: 159.53.110.152
NS
b.gtld-servers.net (2001:503:231d::2:30)

Answer: ns0087.secondary.cloudflare.com
162.159.32.88, 2606:4700:51::a29f:2058

Answer: ns0134.secondary.cloudflare.com
162.159.33.9, 2606:4700:59::a29f:2109

Answer: ns06.jpmorganchase.com
159.53.110.153

Answer: ns1.jpmorganchase.com
159.53.46.53

Answer: ns2.jpmorganchase.com
159.53.78.53
5
ns0119.secondary.cloudflare.com: 162.159.32.120
A
ns3.cloudflare.com (2400:cb00:2049:1::a29f:21)
6
ns0119.secondary.cloudflare.com: 2606:4700:51::a29f:2078
AAAA
ns3.cloudflare.com (2400:cb00:2049:1::a29f:21)
7
ns0140.secondary.cloudflare.com: 162.159.33.15
A
ns3.cloudflare.com (2400:cb00:2049:1::a29f:21)
8
ns0140.secondary.cloudflare.com: 2606:4700:59::a29f:210f
AAAA
ns3.cloudflare.com (2400:cb00:2049:1::a29f:21)


13. CAA - Entries

DomainnameflagNameValue∑ Queries∑ Timeout
gtm.www.chase.com.akadns.net



1
0
www.chase.com.akadns.net
0

no CAA entry found
1
0
chase.com.akadns.net
0

no CAA entry found
1
0
com.akadns.net
0

no CAA entry found
1
0
www.chase.com



1
0
akadns.net
0

no CAA entry found
1
0
chase.com
5
issue
digicert.com
1
0

5
issue
entrust.net
1
0
com
0

no CAA entry found
1
0
net
0

no CAA entry found
1
0


14. TXT - Entries

DomainnameTXT EntryStatus∑ Queries∑ Timeout
chase.com
atlassian-domain-verification\u003dpD6ozLCGDinP/R+vd5R9hpoPCSOmTFTHfWPK633PXEtELa5KlVDw4w1Pnn02aTdC
ok
1
0
chase.com
facebook-domain-verification=vfe3eq2579x3hyeix7vo7csi6vse7b
ok
1
0
chase.com
IOUmBzHRjemcu6DZn5mwbJ78OU8ekbX4InsX/3c1ftVxCZ9jvtPmGyfvzcuzv2e0caXQh/yn21tNd2IP/wPEtg==
ok
1
0
chase.com
mongodb-site-verification=Hv9t2qoiCc8JUbkArcFdSnuo0Zw87sEc
ok
1
0
chase.com
qe+bCO4edmExrjDAX/+hi+k7AbuuybmlCb+/C2jI30/OU4FFIxWG/HW1gMmiQekVkgU0iEI4QeQP3jIkMtV5kA==
ok
1
0
www.chase.com


1
0
_acme-challenge.chase.com
v=spf1 -all
missing entry or wrong length
1
0
gtm.www.chase.com.akadns.net


1
0
_acme-challenge.www.chase.com

Name Error - The domain name does not exist
1
0
_acme-challenge.chase.com.chase.com

Name Error - The domain name does not exist
1
0
_acme-challenge.www.chase.com.chase.com

Name Error - The domain name does not exist
1
0
_acme-challenge.www.chase.com.www.chase.com

Name Error - The domain name does not exist
1
0
_acme-challenge.gtm.www.chase.com.akadns.net

Name Error - The domain name does not exist
1
0
_acme-challenge.gtm.www.chase.com.akadns.net.gtm.www.chase.com.akadns.net

Name Error - The domain name does not exist
1
0


15. DomainService - Entries

TypeDomainPrefValueDNS-errornum AnswersStatusDescription
MX

chase.com
10
cluster14.us.messagelabs.com
04ok

A


67.219.250.210
03ok

A


67.219.247.200
03ok

A


67.219.246.221
03ok

CNAME


00ok
MX

chase.com
20
cluster14.us.messagelabs.com
04ok

A


67.219.247.200
03ok

A


67.219.246.221
03ok

A


67.219.250.210
03ok

CNAME


00ok
MX

chase.com
30
cluster14.us.messagelabs.com
04ok

A


67.219.250.210
03ok

A


67.219.246.221
03ok

A


67.219.247.200
03ok

CNAME


00ok
MX

chase.com
40
cluster14a.us.messagelabs.com
04ok

A


67.219.250.210
03ok

A


67.219.246.221
03ok

A


67.219.247.200
03ok

CNAME


00ok
_mta-sts
TXT
_mta-sts.chase.com

v=spf1 -all
2A MTA-STS TXT Entry (Mail Transfer Agent Strict Transport Security) must start with "'v=STSv1". Do you really want to create a MTA-STS? Or is it the effect of a wildcard * DNS?
_dmarc
TXT
_dmarc.chase.com

v=DMARC1; p=reject; pct=100; rua=mailto:d@rua.agari.com; ruf=mailto:d@ruf.agari.com;
01ok



16. Cipher Suites




Skipped, CDN used or too many ip addresses






17. Portchecks

No open Ports <> 80 / 443 found, so no additional Ports checked.



Permalink: https://check-your-website.server-daten.de/?i=895238dd-a45c-4582-9575-a06b161e030b


Last Result: https://check-your-website.server-daten.de/?q=chase.com - 2024-03-05 01:11:27


Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=chase.com" target="_blank">Check this Site: chase.com</a>

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro