Check DNS, Urls + Redirects, Certificates and Content of your Website



N

No trusted Certificate

Checked:
19.08.2020 15:58:20


Older results


1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
csmbakerysolutions.com
A
34.225.173.27
Ashburn/Virginia/United States (US) - Amazon.com, Inc.
Hostname: ec2-34-225-173-27.compute-1.amazonaws.com
yes
1
0

AAAA

yes


www.csmbakerysolutions.com
CNAME
www.csmbakerysolutions.com.cdn.cloudflare.net
yes
1
0

CNAME
csmbakerysolutions-prod3-901543862.us-east-1.elb.amazonaws.com
yes


www.csmbakerysolutions.com
A
3.223.93.132
Ashburn/Virginia/United States (US) - Amazon Technologies Inc.
No Hostname found
no



A
54.173.78.161
Ashburn/Virginia/United States (US) - Amazon.com, Inc.
No Hostname found
no


*.csmbakerysolutions.com
A

yes



AAAA

yes



CNAME

yes



2. DNSSEC

Zone (*)DNSSEC - Informations

Zone: (root)
(root)
1 DS RR published



DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=



Status: Valid because published



2 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 8, KeyTag 46594, Flags 256



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 31.08.2020, 00:00:00 +, Signature-Inception: 10.08.2020, 00:00:00 +, KeyTag 20326, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: com
com
1 DS RR in the parent zone found



DS with Algorithm 8, KeyTag 30909, DigestType 2 and Digest 4tPJFvbe6scylOgmj7WIUESoM/xUWViPSpGEz8QaV2Y=



1 RRSIG RR to validate DS RR found



RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 01.09.2020, 05:00:00 +, Signature-Inception: 19.08.2020, 04:00:00 +, KeyTag 46594, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 46594 used to validate the DS RRSet in the parent zone



2 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 24966, Flags 256



Public Key with Algorithm 8, KeyTag 30909, Flags 257 (SEP = Secure Entry Point)



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 28.08.2020, 18:24:21 +, Signature-Inception: 13.08.2020, 18:19:21 +, KeyTag 30909, Signer-Name: com



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 30909 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 30909, DigestType 2 and Digest "4tPJFvbe6scylOgmj7WIUESoM/xUWViPSpGEz8QaV2Y=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: csmbakerysolutions.com
csmbakerysolutions.com
0 DS RR in the parent zone found



DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "r6bqsp6r67utsmbfsla65nqu5lif8dte" between the hashed NSEC3-owner "r6bqqsgdc08ji5q1562au5oocnsfam46" and the hashed NextOwner "r6brsg1pqssl6va7db0qok6t367olqb9". So the parent zone confirmes the not-existence of a DS RR.
Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner r6bqqsgdc08ji5q1562au5oocnsfam46.com., Algorithm: 8, 2 Labels, original TTL: 86400 sec, Signature-expiration: 25.08.2020, 04:56:27 +, Signature-Inception: 18.08.2020, 03:46:27 +, KeyTag 24966, Signer-Name: com



DS-Query in the parent zone sends valid NSEC3 RR with the Hash "ck0pojmg874ljref7efn8430qvit8bsm" as Owner. That's the Hash of "com" with the NextHashedOwnerName "ck0q1gin43n1arrc9osm6qpqr81h5m9a". So that domain name is the Closest Encloser of "csmbakerysolutions.com". Opt-Out: True.
Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner ck0pojmg874ljref7efn8430qvit8bsm.com., Algorithm: 8, 2 Labels, original TTL: 86400 sec, Signature-expiration: 25.08.2020, 04:42:55 +, Signature-Inception: 18.08.2020, 03:32:55 +, KeyTag 24966, Signer-Name: com



0 DNSKEY RR found




Zone: www.csmbakerysolutions.com
www.csmbakerysolutions.com
0 DS RR in the parent zone found

Zone: (root)
(root)
1 DS RR published



DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=



Status: Valid because published



2 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 8, KeyTag 46594, Flags 256



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 31.08.2020, 00:00:00 +, Signature-Inception: 10.08.2020, 00:00:00 +, KeyTag 20326, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: net
net
1 DS RR in the parent zone found



DS with Algorithm 8, KeyTag 35886, DigestType 2 and Digest eGKyf19Rbr4ZaARE1M5edimBkxhCxGXwAjZAHYvZc+4=



1 RRSIG RR to validate DS RR found



RRSIG-Owner net., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 01.09.2020, 05:00:00 +, Signature-Inception: 19.08.2020, 04:00:00 +, KeyTag 46594, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 46594 used to validate the DS RRSet in the parent zone



2 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 35886, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 8, KeyTag 56519, Flags 256



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner net., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 27.08.2020, 16:28:30 +, Signature-Inception: 12.08.2020, 16:23:30 +, KeyTag 35886, Signer-Name: net



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 35886 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 35886, DigestType 2 and Digest "eGKyf19Rbr4ZaARE1M5edimBkxhCxGXwAjZAHYvZc+4=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: cloudflare.net
cloudflare.net
1 DS RR in the parent zone found



DS with Algorithm 13, KeyTag 2371, DigestType 2 and Digest kPcQoQfaUe14El0wpocEzzwDCK/QG/zXBX1L0Dtixos=



1 RRSIG RR to validate DS RR found



RRSIG-Owner cloudflare.net., Algorithm: 8, 2 Labels, original TTL: 86400 sec, Signature-expiration: 23.08.2020, 06:37:38 +, Signature-Inception: 16.08.2020, 05:27:38 +, KeyTag 56519, Signer-Name: net



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 56519 used to validate the DS RRSet in the parent zone



2 DNSKEY RR found



Public Key with Algorithm 13, KeyTag 2371, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 13, KeyTag 34505, Flags 256



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner cloudflare.net., Algorithm: 13, 2 Labels, original TTL: 3600 sec, Signature-expiration: 10.09.2020, 16:26:52 +, Signature-Inception: 12.07.2020, 16:26:52 +, KeyTag 2371, Signer-Name: cloudflare.net



Status: Good - Algorithmus 13 and DNSKEY with KeyTag 2371 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 2371, DigestType 2 and Digest "kPcQoQfaUe14El0wpocEzzwDCK/QG/zXBX1L0Dtixos=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: cdn.cloudflare.net
cdn.cloudflare.net
0 DS RR in the parent zone found



DS-Query in the parent zone has a valid NSEC RR as result with the domain name between the NSEC-Owner "cdn.cloudflare.net" and the NextOwner "\000.cdn.cloudflare.net". So the parent zone confirmes the non-existence of a DS RR.
Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, CERT, SSHFP, RRSIG, NSEC, TLSA, HIP, 61, 99, CAA



0 DNSKEY RR found




Zone: com.cdn.cloudflare.net
com.cdn.cloudflare.net
0 DS RR in the parent zone found



DS-Query in the parent zone has a valid NSEC RR as result with the domain name between the NSEC-Owner "com.cdn.cloudflare.net" and the NextOwner "\000.com.cdn.cloudflare.net". So the parent zone confirmes the non-existence of a DS RR.
Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, CERT, SSHFP, RRSIG, NSEC, TLSA, HIP, 61, 99, CAA



0 DNSKEY RR found




Zone: csmbakerysolutions.com.cdn.cloudflare.net
csmbakerysolutions.com.cdn.cloudflare.net
0 DS RR in the parent zone found



DS-Query in the parent zone has a valid NSEC RR as result with the domain name between the NSEC-Owner "csmbakerysolutions.com.cdn.cloudflare.net" and the NextOwner "\000.csmbakerysolutions.com.cdn.cloudflare.net". So the parent zone confirmes the non-existence of a DS RR.
Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, CERT, SSHFP, RRSIG, NSEC, TLSA, HIP, 61, 99, CAA



0 DNSKEY RR found




Zone: www.csmbakerysolutions.com.cdn.cloudflare.net
www.csmbakerysolutions.com.cdn.cloudflare.net
0 DS RR in the parent zone found



0 DNSKEY RR found




3. Name Servers

DomainNameserverNS-IP
csmbakerysolutions.com
  ns1.openprovider.nl / pdns-eu-central-1-04.op-prod.net
52.57.114.204
Frankfurt am Main/Hesse/Germany (DE) - Amazon Technologies Inc.


 
2a05:d014:f80:6e00:bde7:af96:9434:75d5
Frankfurt am Main/Hesse/Germany (DE) - Amazon.com, Inc.


  ns2.openprovider.be / pdns-eu-west-1-03.op-prod.net
52.214.115.96
Dublin/Leinster/Ireland (IE) - Amazon Technologies Inc.


 
2a05:d018:61d:bd00:21bc:c938:d548:dab1
Dublin/Leinster/Ireland (IE) - Amazon.com, Inc.


  ns3.openprovider.eu / ip-10-0-0-127.eu-west-2.compute.internal
52.56.134.244
London/England/United Kingdom (GB) - Amazon Technologies Inc.


 
2a05:d01c:433:e000:e62c:faa3:9834:41e7
London/England/United Kingdom (GB) - Amazon.com, Inc.

com
  a.gtld-servers.net


  b.gtld-servers.net


  c.gtld-servers.net


  d.gtld-servers.net


  e.gtld-servers.net


  f.gtld-servers.net


  g.gtld-servers.net


  h.gtld-servers.net


  i.gtld-servers.net


  j.gtld-servers.net


  k.gtld-servers.net


  l.gtld-servers.net


  m.gtld-servers.net


www.csmbakerysolutions.com.cdn.cloudflare.net
  ns1.cloudflare.net / 67m35
173.245.59.31
Montreal/Quebec/Canada (CA) - Cloudflare, Inc.


 
2400:cb00:2049:1::adf5:3b1f
Columbus/North Carolina/United States (US) - CLOUDFLARE

csmbakerysolutions.com.cdn.cloudflare.net
  ns1.cloudflare.net / 67m29
173.245.59.31
Montreal/Quebec/Canada (CA) - Cloudflare, Inc.


 
2400:cb00:2049:1::adf5:3b1f
Columbus/North Carolina/United States (US) - CLOUDFLARE

com.cdn.cloudflare.net
  ns1.cloudflare.net / 67m34
173.245.59.31
Montreal/Quebec/Canada (CA) - Cloudflare, Inc.


 
2400:cb00:2049:1::adf5:3b1f
Columbus/North Carolina/United States (US) - CLOUDFLARE

cdn.cloudflare.net
  ns1.cloudflare.net / 67m36
173.245.59.31
Montreal/Quebec/Canada (CA) - Cloudflare, Inc.


 
2400:cb00:2049:1::adf5:3b1f
Columbus/North Carolina/United States (US) - CLOUDFLARE

cloudflare.net
  ns1.cloudflare.net / 67m30
173.245.59.31
Montreal/Quebec/Canada (CA) - Cloudflare, Inc.


 
2400:cb00:2049:1::adf5:3b1f
Columbus/North Carolina/United States (US) - CLOUDFLARE


  ns2.cloudflare.net / 67m36
198.41.222.131
Montreal/Quebec/Canada (CA) - Cloudflare, Inc.


 
2400:cb00:2049:1::c629:de83
Columbus/North Carolina/United States (US) - CLOUDFLARE


  ns3.cloudflare.net / 67m33
198.41.222.31
Montreal/Quebec/Canada (CA) - Cloudflare, Inc.


 
2400:cb00:2049:1::c629:de1f
Columbus/North Carolina/United States (US) - CLOUDFLARE


  ns4.cloudflare.net / 67m35
198.41.223.131
Montreal/Quebec/Canada (CA) - Cloudflare, Inc.


 
2400:cb00:2049:1::c629:df83
Columbus/North Carolina/United States (US) - CLOUDFLARE


  ns5.cloudflare.net / 67m35
198.41.223.31
Montreal/Quebec/Canada (CA) - Cloudflare, Inc.


 
2400:cb00:2049:1::c629:df1f
Columbus/North Carolina/United States (US) - CLOUDFLARE

net
  a.gtld-servers.net


  b.gtld-servers.net


  c.gtld-servers.net


  d.gtld-servers.net


  e.gtld-servers.net


  f.gtld-servers.net


  g.gtld-servers.net


  h.gtld-servers.net


  i.gtld-servers.net


  j.gtld-servers.net


  k.gtld-servers.net


  l.gtld-servers.net


  m.gtld-servers.net


4. SOA-Entries


Domain:com
Zone-Name:com
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1597845482
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:13


Domain:csmbakerysolutions.com
Zone-Name:csmbakerysolutions.com
Primary:ns1.openprovider.nl
Mail:dns.openprovider.eu
Serial:2020081001
Refresh:10800
Retry:3600
Expire:604800
TTL:3600
num Entries:6



Domain:net
Zone-Name:net
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1597845498
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:12


Domain:net
Zone-Name:net
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1597845513
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:1


Domain:cloudflare.net
Zone-Name:cloudflare.net
Primary:ns1.cloudflare.net
Mail:dns.cloudflare.com
Serial:2034882981
Refresh:10000
Retry:2400
Expire:604800
TTL:3600
num Entries:10


Domain:cdn.cloudflare.net
Zone-Name:cloudflare.net
Primary:ns1.cloudflare.net
Mail:dns.cloudflare.com
Serial:2034882981
Refresh:10000
Retry:2400
Expire:604800
TTL:3600
num Entries:2


Domain:com.cdn.cloudflare.net
Zone-Name:cloudflare.net
Primary:ns1.cloudflare.net
Mail:dns.cloudflare.com
Serial:2034882981
Refresh:10000
Retry:2400
Expire:604800
TTL:3600
num Entries:2


Domain:csmbakerysolutions.com.cdn.cloudflare.net
Zone-Name:cloudflare.net
Primary:ns1.cloudflare.net
Mail:dns.cloudflare.com
Serial:1597845544
Refresh:10000
Retry:2400
Expire:604800
TTL:3600
num Entries:2


CNAME - SOA
Domain:www.csmbakerysolutions.com.cdn.cloudflare.net
CNAME-Zone-Name:www.csmbakerysolutions.com.cdn.cloudflare.net
CNAME:csmbakerysolutions-prod3-901543862.us-east-1.elb.amazonaws.com
num Entries:2


5. Screenshots

Startaddress: https://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html, address used: https://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html, Screenshot created 2020-08-19 16:03:37 +00:0

Mobil (412px x 732px)

592 milliseconds

Screenshot mobile - https://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
Mobil + Landscape (732px x 412px)

563 milliseconds

Screenshot mobile landscape - https://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
Screen (1280px x 1680px)

2552 milliseconds

Screenshot Desktop - https://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html

Mobile- and other Chrome-Checks

widthheight
visual Viewport396732
content Size3962956

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

Chrome-Connection: secure. secure connection settings. The connection to this site is encrypted and authenticated using TLS 1.2, ECDHE_RSA with P-256, and AES_128_GCM.

Chrome-Resources : secure. all served securely. All resources on this page are served securely.

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://csmbakerysolutions.com/
34.225.173.27
301
https://www.csmbakerysolutions.com/
Html is minified: 108.19 %
0.220
E
Server: nginx/1.10.1
Date: Wed, 19 Aug 2020 13:59:48 GMT
Content-Type: text/html
Content-Length: 185
Connection: close
Location: https://www.csmbakerysolutions.com/

• http://www.csmbakerysolutions.com/
3.223.93.132
302
http://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
Html is minified: 100.00 %
0.220

Cache-control: no-cache="set-cookie"
Content-Type: text/html; charset=iso-8859-1
Date: Wed, 19 Aug 2020 13:59:49 GMT
Location: http://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
Server: Apache
Set-Cookie: AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B51BF09C899C3ECDC042E6F3F532674C0657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
X-Dispatcher: dispatcher2useast1
X-Vhost: csmbakerysolutions.com
Content-Length: 252
Connection: Close

• http://www.csmbakerysolutions.com/
54.173.78.161
302
http://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
Html is minified: 100.00 %
0.220

Cache-control: no-cache="set-cookie"
Content-Type: text/html; charset=iso-8859-1
Date: Wed, 19 Aug 2020 13:59:49 GMT
Location: http://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
Server: Apache
Set-Cookie: AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF50657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
X-Dispatcher: dispatcher2useast1
X-Vhost: csmbakerysolutions.com
Content-Length: 252
Connection: Close

• http://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html

301
https://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
Html is minified: 100.00 %
0.280

Cache-control: no-cache="set-cookie"
Content-Type: text/html; charset=iso-8859-1
Date: Wed, 19 Aug 2020 14:00:22 GMT
Location: https://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
Server: Apache
Set-Cookie: AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF528215DF828727E26918F8CF0DC2DD17759335D49469595075F87ACD13AF56968;PATH=/;MAX-AGE=900
X-Dispatcher: dispatcher1useast1
X-Vhost: csmbakerysolutions.com
Content-Length: 277
Connection: Close

• https://csmbakerysolutions.com/
34.225.173.27
301
https://www.csmbakerysolutions.com/
Html is minified: 108.19 %
4.780
N
Certificate error: RemoteCertificateChainErrors
Server: nginx/1.10.1
Date: Wed, 19 Aug 2020 13:59:49 GMT
Content-Type: text/html
Content-Length: 185
Connection: close
Location: https://www.csmbakerysolutions.com/

• https://www.csmbakerysolutions.com/
3.223.93.132
302
http://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
Html is minified: 100.00 %
4.577
F
Cache-control: no-cache="set-cookie"
Content-Type: text/html; charset=iso-8859-1
Date: Wed, 19 Aug 2020 13:59:55 GMT
Location: http://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
Server: Apache
Set-Cookie: AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B51BF09C899C3ECDC042E6F3F532674C0657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900,AWSELBCORS=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B51BF09C899C3ECDC042E6F3F532674C0657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900;SECURE;SAMESITE=None
X-Dispatcher: dispatcher2useast1
X-Vhost: csmbakerysolutions.com
Content-Length: 252
Connection: Close

• https://www.csmbakerysolutions.com/
54.173.78.161
302
http://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
Html is minified: 100.00 %
4.577
F
Cache-control: no-cache="set-cookie"
Content-Type: text/html; charset=iso-8859-1
Date: Wed, 19 Aug 2020 14:00:00 GMT
Location: http://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
Server: Apache
Set-Cookie: AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF50657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900,AWSELBCORS=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF50657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900;SECURE;SAMESITE=None
X-Dispatcher: dispatcher2useast1
X-Vhost: csmbakerysolutions.com
Content-Length: 252
Connection: Close

• https://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
GZip used - 5055 / 28771 - 82.43 %
Inline-JavaScript (∑/total): 3/1502 Inline-CSS (∑/total): 1/654
200

Html is minified: 147.06 %
4.656
B
Accept-Ranges: bytes
Cache-control: no-cache="set-cookie"
Content-Encoding: gzip
Content-Type: text/html;charset=utf-8
Date: Wed, 19 Aug 2020 14:00:28 GMT
ETag: "7063-5ad3a899eee72-gzip"
Last-Modified: Wed, 19 Aug 2020 12:56:52 GMT
Server: Apache
Set-Cookie: AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF50657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900,AWSELBCORS=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF50657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900;SECURE;SAMESITE=None
Vary: Accept-Encoding,User-Agent
X-Content-Type-Options: nosniff
X-Dispatcher: dispatcher2useast1
X-Frame-Options: SAMEORIGIN
X-Vhost: csmbakerysolutions.com
Content-Length: 5055
Connection: Close

• http://csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
34.225.173.27
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
301
https://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Html is minified: 108.19 %
0.233
E
Visible Content: 301 Moved Permanently nginx/1.10.1
Server: nginx/1.10.1
Date: Wed, 19 Aug 2020 14:00:05 GMT
Content-Type: text/html
Content-Length: 185
Connection: close
Location: https://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

• http://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
3.223.93.132
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
301
https://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Html is minified: 100.00 %
0.216

Visible Content: Moved Permanently The document has moved here .
Cache-control: no-cache="set-cookie"
Content-Type: text/html; charset=iso-8859-1
Date: Wed, 19 Aug 2020 14:00:05 GMT
Location: https://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: Apache
Set-Cookie: AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B51BF09C899C3ECDC042E6F3F532674C0657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
X-Dispatcher: dispatcher2useast1
X-Vhost: csmbakerysolutions.com
Content-Length: 312
Connection: Close

• http://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
54.173.78.161
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
301
https://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Html is minified: 100.00 %
0.216

Visible Content: Moved Permanently The document has moved here .
Cache-control: no-cache="set-cookie"
Content-Type: text/html; charset=iso-8859-1
Date: Wed, 19 Aug 2020 14:00:05 GMT
Location: https://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: Apache
Set-Cookie: AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF528215DF828727E26918F8CF0DC2DD17759335D49469595075F87ACD13AF56968;PATH=/;MAX-AGE=900
X-Dispatcher: dispatcher1useast1
X-Vhost: csmbakerysolutions.com
Content-Length: 312
Connection: Close

• https://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 100.00 %
4.594
B
Not Found
Visible Content: Not Found The requested URL /.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de was not found on this server.
Cache-control: no-cache="set-cookie"
Content-Type: text/html; charset=iso-8859-1
Date: Wed, 19 Aug 2020 14:00:22 GMT
Server: Apache
Set-Cookie: AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF50657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900,AWSELBCORS=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF50657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900;SECURE;SAMESITE=None
X-Dispatcher: dispatcher2useast1
X-Vhost: csmbakerysolutions.com
Content-Length: 267
Connection: Close

• https://34.225.173.27/
34.225.173.27
301
https://www.csmbakerysolutions.com/
Html is minified: 108.19 %
4.780
N
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Server: nginx/1.10.1
Date: Wed, 19 Aug 2020 14:00:06 GMT
Content-Type: text/html
Content-Length: 185
Connection: close
Location: https://www.csmbakerysolutions.com/

• https://3.223.93.132/
3.223.93.132
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 1/8677
403

Html is minified: 2721.99 %
4.576
N
Forbidden
Certificate error: RemoteCertificateNameMismatch
small visible content (num chars: 17)
403 Are you lost?
Accept-Ranges: bytes
Cache-control: no-cache="set-cookie"
Content-Type: text/html; charset=UTF-8
Date: Wed, 19 Aug 2020 14:00:11 GMT
ETag: "2442-5922f147c3b4c"
Last-Modified: Tue, 10 Sep 2019 08:56:28 GMT
Server: Apache
Set-Cookie: AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B51BF09C899C3ECDC042E6F3F532674C0657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900,AWSELBCORS=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B51BF09C899C3ECDC042E6F3F532674C0657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900;SECURE;SAMESITE=None
X-Dispatcher: dispatcher2useast1
X-Vhost: catch-all
Content-Length: 9282
Connection: Close

• https://54.173.78.161/
54.173.78.161
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 1/8677
403

Html is minified: 2721.99 %
4.610
N
Forbidden
Certificate error: RemoteCertificateNameMismatch
small visible content (num chars: 17)
403 Are you lost?
Accept-Ranges: bytes
Cache-control: no-cache="set-cookie"
Content-Type: text/html; charset=UTF-8
Date: Wed, 19 Aug 2020 14:00:17 GMT
ETag: "2442-5922f1481c197"
Last-Modified: Tue, 10 Sep 2019 08:56:28 GMT
Server: Apache
Set-Cookie: AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF528215DF828727E26918F8CF0DC2DD17759335D49469595075F87ACD13AF56968;PATH=/;MAX-AGE=900,AWSELBCORS=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF528215DF828727E26918F8CF0DC2DD17759335D49469595075F87ACD13AF56968;PATH=/;MAX-AGE=900;SECURE;SAMESITE=None
X-Dispatcher: dispatcher1useast1
X-Vhost: catch-all
Content-Length: 9282
Connection: Close

7. Comments


1. General Results, most used to calculate the result

Aname "csmbakerysolutions.com" is domain, public suffix is ".com", top-level-domain is ".com", top-level-domain-type is "generic", tld-manager is "VeriSign Global Registry Services", num .com-domains preloaded: 51456 (complete: 129392)
Agood: All ip addresses are public addresses
Warning: Only one ip address found: csmbakerysolutions.com has only one ip address.
Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: csmbakerysolutions.com has no ipv6 address.
Agood: No asked Authoritative Name Server had a timeout
Agood: destination is https
Agood - only one version with Http-Status 200
Agood: one preferred version: www is preferred
HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
AGood: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
Bhttps://csmbakerysolutions.com/ 34.225.173.27
301

Missing HSTS-Header
Bhttps://www.csmbakerysolutions.com/ 3.223.93.132
302

Missing HSTS-Header
Bhttps://www.csmbakerysolutions.com/ 54.173.78.161
302

Missing HSTS-Header
Bhttps://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
200

Missing HSTS-Header
Bhttps://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
404

Missing HSTS-Header
http://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
301
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF528215DF828727E26918F8CF0DC2DD17759335D49469595075F87ACD13AF56968;PATH=/;MAX-AGE=900
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
http://www.csmbakerysolutions.com/ 3.223.93.132
302
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B51BF09C899C3ECDC042E6F3F532674C0657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
http://www.csmbakerysolutions.com/ 54.173.78.161
302
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF50657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
http://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 3.223.93.132
301
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B51BF09C899C3ECDC042E6F3F532674C0657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
http://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 54.173.78.161
301
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF528215DF828727E26918F8CF0DC2DD17759335D49469595075F87ACD13AF56968;PATH=/;MAX-AGE=900
Fatal: Cookie sent via http. Never send Cookies / Session-Cookies via http. If a user uses an insecure WLan and if the same cookie is used to managed the authenticated session, it's possible to hack that user. Same with HttpOnly - without https that's only decorative.
Bhttps://www.csmbakerysolutions.com/ 3.223.93.132
302
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B51BF09C899C3ECDC042E6F3F532674C0657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
Cookie sent via https, but not marked as secure
Bhttps://www.csmbakerysolutions.com/ 54.173.78.161
302
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF50657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
Cookie sent via https, but not marked as secure
Bhttps://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
200
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF50657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
Cookie sent via https, but not marked as secure
Bhttps://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
404
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF50657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
Cookie sent via https, but not marked as secure
Bhttps://3.223.93.132/ 3.223.93.132
403
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B51BF09C899C3ECDC042E6F3F532674C0657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
Cookie sent via https, but not marked as secure
Bhttps://54.173.78.161/ 54.173.78.161
403
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF528215DF828727E26918F8CF0DC2DD17759335D49469595075F87ACD13AF56968;PATH=/;MAX-AGE=900
Cookie sent via https, but not marked as secure
Bhttp://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
301
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF528215DF828727E26918F8CF0DC2DD17759335D49469595075F87ACD13AF56968;PATH=/;MAX-AGE=900
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttp://www.csmbakerysolutions.com/ 3.223.93.132
302
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B51BF09C899C3ECDC042E6F3F532674C0657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttp://www.csmbakerysolutions.com/ 54.173.78.161
302
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF50657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://www.csmbakerysolutions.com/ 3.223.93.132
302
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B51BF09C899C3ECDC042E6F3F532674C0657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://www.csmbakerysolutions.com/ 54.173.78.161
302
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF50657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
200
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF50657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttp://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 3.223.93.132
301
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B51BF09C899C3ECDC042E6F3F532674C0657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttp://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 54.173.78.161
301
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF528215DF828727E26918F8CF0DC2DD17759335D49469595075F87ACD13AF56968;PATH=/;MAX-AGE=900
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
404
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF50657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://3.223.93.132/ 3.223.93.132
403
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B51BF09C899C3ECDC042E6F3F532674C0657657359E48CFF6CF217CD00AC9E00FF0D729F55D6AC130AE5169777360688;PATH=/;MAX-AGE=900
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://54.173.78.161/ 54.173.78.161
403
AWSELB=55D9A3670E6B01D0D456B0010787E66B6FB2A76CF0B4599110E29007BCBFA7F6D4B09EBFF528215DF828727E26918F8CF0DC2DD17759335D49469595075F87ACD13AF56968;PATH=/;MAX-AGE=900
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Ehttp://csmbakerysolutions.com/ 34.225.173.27
301
https://www.csmbakerysolutions.com/
Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
Fhttps://www.csmbakerysolutions.com/ 3.223.93.132
302
http://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
wrong redirect https - http - never redirect https to http
Fhttps://www.csmbakerysolutions.com/ 54.173.78.161
302
http://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
wrong redirect https - http - never redirect https to http
Mhttps://3.223.93.132/ 3.223.93.132
403

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://54.173.78.161/ 54.173.78.161
403

Misconfiguration - main pages should never send http status 400 - 499
Nhttps://csmbakerysolutions.com/ 34.225.173.27
301
https://www.csmbakerysolutions.com/
Error - Certificate isn't trusted, RemoteCertificateChainErrors
Nhttps://34.225.173.27/ 34.225.173.27
301
https://www.csmbakerysolutions.com/
Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Nhttps://3.223.93.132/ 3.223.93.132
403

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nhttps://54.173.78.161/ 54.173.78.161
403

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
OOld connection: RSA Key Exchange is unsecure. Use Diffie-Hellman or Elliptic Curve Diffi-Hellmann Key Exchange to support Forward Secrecy
OOld connection: SHA1 as Hash Algorithm is deprecated. Switch to SHA256 or SHA384. If your certificate has SHA256, first check your domain via ssllabs.com and update weak Cipher Suites. Forward Secrecy support is required. The part "Cipher Suites" should have a preference. First Cipher Suite with SHA instead of SHA256 or higher - that's the problem, change that. If that doesn't help, check if there is an old Firewall / router or something else, that supports only SHA1. Update that component.
Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are the same. So that domain doesn't require Server Name Indication (SNI), it's the primary certificate of that set of ip addresses.: Domain csmbakerysolutions.com, 1 ip addresses, 1 different http results.

2. DNS- and NameServer - Checks

AInfo:: 12 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 3 Name Servers.
AInfo:: 12 Queries complete, 12 with IPv6, 0 with IPv4.
AGood: All DNS Queries done via IPv6.
Ok (4 - 8):: An average of 4.0 queries per domain name server required to find all ip addresses of all name servers.
AInfo:: 3 different Name Servers found: ns1.openprovider.nl, ns2.openprovider.be, ns3.openprovider.eu, 3 Name Servers included in Delegation: ns1.openprovider.nl, ns2.openprovider.be, ns3.openprovider.eu, 3 Name Servers included in 1 Zone definitions: ns1.openprovider.nl, ns2.openprovider.be, ns3.openprovider.eu, 1 Name Servers listed in SOA.Primary: ns1.openprovider.nl.
AGood: Only one SOA.Primary Name Server found.: ns1.openprovider.nl.
AGood: SOA.Primary Name Server included in the delegation set.: ns1.openprovider.nl.
AGood: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: ns1.openprovider.nl, ns2.openprovider.be, ns3.openprovider.eu
AGood: All Name Server Domain Names have a Public Suffix.
AGood: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
AGood: All Name Server ip addresses are public.
AGood: Minimal 2 different name servers (public suffix and public ip address) found: 3 different Name Servers found
AGood: All name servers have ipv4- and ipv6-addresses.: 3 different Name Servers found
AGood: Name servers with different Top Level Domains / Public Suffix List entries found: 3 Name Servers, 3 Top Level Domains: nl, eu, be
AGood: Name Servers with different domain names found.: 3 different Domains found
AGood: Name servers with different Country locations found: 3 Name Servers, 3 Countries: DE, GB, IE
AInfo: Ipv4-Subnet-list: 3 Name Servers, 1 different subnets (first Byte): 52., 3 different subnets (first two Bytes): 52.214., 52.56., 52.57., 3 different subnets (first three Bytes): 52.214.115., 52.56.134., 52.57.114.
AGood: Name Server IPv4-addresses from different subnet found:
AInfo: IPv6-Subnet-list: 3 Name Servers with IPv6, 1 different subnets (first block): 2a05:, 3 different subnets (first two blocks): 2a05:d014:, 2a05:d018:, 2a05:d01c:, 3 different subnets (first three blocks): 2a05:d014:0f80:, 2a05:d018:061d:, 2a05:d01c:0433:, 3 different subnets (first four blocks): 2a05:d014:0f80:6e00:, 2a05:d018:061d:bd00:, 2a05:d01c:0433:e000:
AGood: Name Server IPv6 addresses from different subnets found.
AGood: Nameserver supports TCP connections: 6 good Nameserver
AGood: Nameserver supports Echo Capitalization: 6 good Nameserver
AGood: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 6 good Nameserver
AGood: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 6 good Nameserver
Nameserver doesn't pass all EDNS-Checks: ns1.cloudflare.net / 173.245.59.31: OP100: SOA expected, but NOT found, NOERR expectend and NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. FLAGS: SOA expected, but NOT found, NOERR expectend and NOERR found, Version 0 expectend and found. V1: ok. V1OP100: ok. V1FLAGS: ok. DNSSEC: SOA expected, but NOT found, NOERR expectend and NOERR found, Version 0 expectend and found. V1DNSSEC: ok. NSID: SOA expected, but NOT found, NOERR expectend and NOERR found, Version 0 expectend and found (67m35). COOKIE: SOA expected, but NOT found, NOERR expectend and NOERR found, Version 0 expectend and found. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns1.cloudflare.net / 2400:cb00:2049:1::adf5:3b1f: OP100: SOA expected, but NOT found, NOERR expectend and NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. FLAGS: SOA expected, but NOT found, NOERR expectend and NOERR found, Version 0 expectend and found. V1: ok. V1OP100: ok. V1FLAGS: ok. DNSSEC: SOA expected, but NOT found, NOERR expectend and NOERR found, Version 0 expectend and found. V1DNSSEC: ok. NSID: SOA expected, but NOT found, NOERR expectend and NOERR found, Version 0 expectend and found (67m30). COOKIE: SOA expected, but NOT found, NOERR expectend and NOERR found, Version 0 expectend and found. CLIENTSUBNET: ok.
AGood: All SOA have the same Serial Number
Agood: CAA entries found, creating certificate is limited: digicert.com is allowed to create certificates
Agood: CAA entries found, creating certificate is limited: digicert.com is allowed to create wildcard-certificates

3. Content- and Performance-critical Checks

AGood: All checks /.well-known/acme-challenge/random-filename without redirects answer with the expected http status 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge should work. If it doesn't work: Check your vHost configuration (apachectl -S, httpd -S, nginx -T). Every combination of port and ServerName / ServerAlias (Apache) or Server (Nginx) must be unique. Merge duplicated entries in one vHost. If you use an IIS, extensionless files must be allowed in the /.well-known/acme-challenge subdirectory. Create a web.config in that directory. Content: <configuration><system.webServer><staticContent><mimeMap fileExtension="." mimeType="text/plain" /></staticContent></system.webServer></configuration>. If you have a redirect http ⇒ https, that's ok, Letsencrypt follows such redirects to port 80 / 443 (same or other server). There must be a certificate. But the certificate may be expired, self signed or with a not matching domain name. Checking the validation file Letsencrypt ignores such certificate errors. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
AGood: Every https result with status 200 supports GZip.
https://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
200

Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
https://www.csmbakerysolutions.com/content/csmbakerysolutions/en.html
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 1 script elements without defer/async.
AGood: All CSS / JavaScript files are sent with GZip. That reduces the content of the files. 2 external CSS / JavaScript files found
AGood: All images with internal compression not sent via GZip. Images (.png, .jpg) are already compressed, so an additional GZip isn't helpful. 31 images (type image/png, image/jpg) found without additional GZip. Not required because these images are already compressed
Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 2 external CSS / JavaScript files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 0 with Cache-Control max-age too short (minimum 7 days), 0 with Cache-Control long enough, 2 complete.
Warning: Images with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 33 image files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 0 with Cache-Control max-age too short (minimum 7 days), 0 with Cache-Control long enough, 33 complete.
AGood: All checked attribute values are enclosed in quotation marks (" or ').
AGood: Some img-elements have a valid alt-attribute.: 33 img-elements found, 12 img-elements with correct alt-attributes (defined, not an empty value).
Wrong: img-elements without alt-attribute or empty alt-attribute found. The alt-attribute ("alternative") is required and should describe the img. So Screenreader and search engines are able to use these informations.: 21 img-elements without alt-attribute, 0 img-elements with empty alt-attribute found.
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
https://www.csmbakerysolutions.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
404
4.594 seconds
Warning: 404 needs more then one second
AInfo: Different Server-Headers found
ADuration: 324660 milliseconds, 324.660 seconds


8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
csmbakerysolutions.com
34.225.173.27
443
Certificate/chain invalid
Tls12
RsaKeyX
2048
Aes256
256
Sha1
error checking OCSP stapling
weak
csmbakerysolutions.com
34.225.173.27
443
Certificate/chain invalid
Tls12

RsaKeyX
2048
Aes256
256
Sha1
error checking OCSP stapling
weak
no http/2 via ALPN 
Tls.1.2
Tls.1.1
Tls.1.0
no http/2 via ALPN
Tls.1.2
Tls.1.1
Tls.1.0
Chain - incomplete
1CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL

2CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US


www.csmbakerysolutions.com
3.223.93.132
443
ok
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
error checking OCSP stapling
ok

www.csmbakerysolutions.com
3.223.93.132
443
ok
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
error checking OCSP stapling
ok
no http/2 via ALPN 
No SNI required - domain included in main certificate
Tls.1.2
no Tls.1.1
no Tls.1.0
no http/2 via ALPN
No SNI required - domain included in main certificate
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain - duplicate certificates
1CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL

2CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL

3CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US


www.csmbakerysolutions.com
54.173.78.161
443
ok
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
error checking OCSP stapling
ok

www.csmbakerysolutions.com
54.173.78.161
443
ok
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
error checking OCSP stapling
ok
no http/2 via ALPN 
No SNI required - domain included in main certificate
Tls.1.2
no Tls.1.1
no Tls.1.0
no http/2 via ALPN
No SNI required - domain included in main certificate
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain - duplicate certificates
1CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL

2CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL

3CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US


www.csmbakerysolutions.com
www.csmbakerysolutions.com
443
ok
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
error checking OCSP stapling
ok

www.csmbakerysolutions.com
www.csmbakerysolutions.com
443
ok
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
error checking OCSP stapling
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no http/2 via ALPN
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain - duplicate certificates
1CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL

2CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL

3CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US


3.223.93.132
3.223.93.132
443
name does not match
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
error checking OCSP stapling
ok

3.223.93.132
3.223.93.132
443
name does not match
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
error checking OCSP stapling
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain - duplicate certificates
1CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL

2CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL

3CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US


34.225.173.27
34.225.173.27
443
Certificate/chain invalid and wrong name
Tls12
RsaKeyX
2048
Aes256
256
Sha1
error checking OCSP stapling
weak

34.225.173.27
34.225.173.27
443
Certificate/chain invalid and wrong name
Tls12

RsaKeyX
2048
Aes256
256
Sha1
error checking OCSP stapling
weak
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
Chain - incomplete
1CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL

2CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US


54.173.78.161
54.173.78.161
443
name does not match
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
error checking OCSP stapling
ok

54.173.78.161
54.173.78.161
443
name does not match
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
error checking OCSP stapling
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain - duplicate certificates
1CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL

2CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL

3CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US


9. Certificates

1.
1.
CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL
08.03.2019
08.03.2020
845 days expired
csmbakerysolutions.com, www.csmbakerysolutions.com, author.csmbakerysolutions.com, portal.csmbakerysolutions.com, origin.csmbakerysolutions.com, brillinc.com, www.brillinc.com - 7 entries
1.
1.
CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL
08.03.2019

08.03.2020
845 days expired
csmbakerysolutions.com, www.csmbakerysolutions.com, author.csmbakerysolutions.com, portal.csmbakerysolutions.com, origin.csmbakerysolutions.com, brillinc.com, www.brillinc.com - 7 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:090449B16A8BEE08D34BDBF1084CE265
Thumbprint:AFB1CF2524B3BBF7716E7BD57758B2F7D9E9726C
SHA256 / Certificate:DNFcbgkEI3Mk7HYpZQ50WxVSiB8A7rMd5zaGbgzUDp4=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):c1b285c461e2f8559d364c58c4d4c55cfb33451278f033feb40f3acfa15af53e
SHA256 hex / Subject Public Key Information (SPKI):c1b285c461e2f8559d364c58c4d4c55cfb33451278f033feb40f3acfa15af53e
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Server Authentication (1.3.6.1.5.5.7.3.1), Client Authentication (1.3.6.1.5.5.7.3.2)

NotTimeValid: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

2.
CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL
08.03.2019
08.03.2020
845 days expired
csmbakerysolutions.com, www.csmbakerysolutions.com, author.csmbakerysolutions.com, portal.csmbakerysolutions.com, origin.csmbakerysolutions.com, brillinc.com, www.brillinc.com - 7 entries

2.
CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL
08.03.2019

08.03.2020
845 days expired
csmbakerysolutions.com, www.csmbakerysolutions.com, author.csmbakerysolutions.com, portal.csmbakerysolutions.com, origin.csmbakerysolutions.com, brillinc.com, www.brillinc.com - 7 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:090449B16A8BEE08D34BDBF1084CE265
Thumbprint:AFB1CF2524B3BBF7716E7BD57758B2F7D9E9726C
SHA256 / Certificate:DNFcbgkEI3Mk7HYpZQ50WxVSiB8A7rMd5zaGbgzUDp4=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):c1b285c461e2f8559d364c58c4d4c55cfb33451278f033feb40f3acfa15af53e
SHA256 hex / Subject Public Key Information (SPKI):c1b285c461e2f8559d364c58c4d4c55cfb33451278f033feb40f3acfa15af53e
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Server Authentication (1.3.6.1.5.5.7.3.1), Client Authentication (1.3.6.1.5.5.7.3.2)

NotTimeValid: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

3.
CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US
08.03.2013
08.03.2023
expires in 250 days


3.
CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US
08.03.2013

08.03.2023
expires in 250 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:01FDA3EB6ECA75C888438B724BCFBC91
Thumbprint:1FB86B1168EC743154062E8C9CC5B171A4B7CCB4
SHA256 / Certificate:FUxDPEkZKcXvaG6DjjI2ZKAOag2CLMyVj7TasD5JoI8=
SHA256 hex / Cert (DANE * 0 1):154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f
SHA256 hex / PublicKey (DANE * 1 1):e6426f344330d0a8eb080bbb7976391d976fc824b5dc16c0d15246d5148ff75c
SHA256 hex / Subject Public Key Information (SPKI):e6426f344330d0a8eb080bbb7976391d976fc824b5dc16c0d15246d5148ff75c
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


4.
CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US
08.03.2013
08.03.2023
expires in 250 days


4.
CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US
08.03.2013

08.03.2023
expires in 250 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:01FDA3EB6ECA75C888438B724BCFBC91
Thumbprint:1FB86B1168EC743154062E8C9CC5B171A4B7CCB4
SHA256 / Certificate:FUxDPEkZKcXvaG6DjjI2ZKAOag2CLMyVj7TasD5JoI8=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):e6426f344330d0a8eb080bbb7976391d976fc824b5dc16c0d15246d5148ff75c
SHA256 hex / Subject Public Key Information (SPKI):e6426f344330d0a8eb080bbb7976391d976fc824b5dc16c0d15246d5148ff75c
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


5.
CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
10.11.2006
10.11.2031
expires in 3419 days


5.
CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
10.11.2006

10.11.2031
expires in 3419 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:083BE056904246B1A1756AC95991C74A
Thumbprint:A8985D3A65E5E5C4B2D7D66D40C6DD2FB19C5436
SHA256 / Certificate:Q0ig6URMeMsmXgWNXolEtNhPlmK9Jtslf4k0pEPHAWE=
SHA256 hex / Cert (DANE * 0 1):4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161
SHA256 hex / PublicKey (DANE * 1 1):aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SHA256 hex / Subject Public Key Information (SPKI):aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:



6.
CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
07.12.2016
10.05.2025
expires in 1044 days


6.
CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
07.12.2016

10.05.2025
expires in 1044 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:0F5BC3A176CB789E2020C7893C8167B4
Thumbprint:FB20FA8A6A93B375F054814F9E00273EA51A6138
SHA256 / Certificate:bay7iUUTex2tQhGwQ2774G8SrONpBJc7Ra4ldAgj02k=
SHA256 hex / Cert (DANE * 0 1):6dacbb8945137b1dad4211b0436efbe06f12ace36904973b45ae25740823d369
SHA256 hex / PublicKey (DANE * 1 1):aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SHA256 hex / Subject Public Key Information (SPKI):aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


7.
CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE
12.05.2000
13.05.2025
expires in 1047 days


7.
CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE
12.05.2000

13.05.2025
expires in 1047 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:020000B9
Thumbprint:D4DE20D05E66FC53FE1A50882C78DB2852CAE474
SHA256 / Certificate:Fq9XqfZ2sKsSYJWqXrre8iqzERnWRKyVzUuT2/Pyaus=
SHA256 hex / Cert (DANE * 0 1):16af57a9f676b0ab126095aa5ebadef22ab31119d644ac95cd4b93dbf3f26aeb
SHA256 hex / PublicKey (DANE * 1 1):63d9af9b47b1064d49a10e7b7fd566dbc8caa399459bfc2829c571ad8c6ef34a
SHA256 hex / Subject Public Key Information (SPKI):63d9af9b47b1064d49a10e7b7fd566dbc8caa399459bfc2829c571ad8c6ef34a
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


2.
1.
CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL
06.12.2019
05.12.2020
573 days expired
csmbakerysolutions.com, www.csmbakerysolutions.com, author.csmbakerysolutions.com, portal.csmbakerysolutions.com, origin.csmbakerysolutions.com, brillinc.com, www.brillinc.com, brill3dculinarystudio.com, www.brill3dculinarystudio.com - 9 entries
2.
1.
CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL
06.12.2019

05.12.2020
573 days expired
csmbakerysolutions.com, www.csmbakerysolutions.com, author.csmbakerysolutions.com, portal.csmbakerysolutions.com, origin.csmbakerysolutions.com, brillinc.com, www.brillinc.com, brill3dculinarystudio.com, www.brill3dculinarystudio.com - 9 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:0B80381866ABC95B9C3031ED210536F3
Thumbprint:B8B5138291D5E7EB79D45E179DAFF2EF0CB0F704
SHA256 / Certificate:nDm3dO8ROeATuEAUAv7C2q/yBUUu/ie2YfoDbJfXvRM=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):bb96c154d79fefe3ab1a7f6fb675c981c8d24219986e2bb6f7e972886f44bf4f
SHA256 hex / Subject Public Key Information (SPKI):bb96c154d79fefe3ab1a7f6fb675c981c8d24219986e2bb6f7e972886f44bf4f
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL
06.12.2019
05.12.2020
573 days expired
csmbakerysolutions.com, www.csmbakerysolutions.com, author.csmbakerysolutions.com, portal.csmbakerysolutions.com, origin.csmbakerysolutions.com, brillinc.com, www.brillinc.com, brill3dculinarystudio.com, www.brill3dculinarystudio.com - 9 entries

2.
CN=csmbakerysolutions.com, OU=CIM, O=CSM Bakery Solutions Europe Holding B.V., L=Amsterdam, C=NL
06.12.2019

05.12.2020
573 days expired
csmbakerysolutions.com, www.csmbakerysolutions.com, author.csmbakerysolutions.com, portal.csmbakerysolutions.com, origin.csmbakerysolutions.com, brillinc.com, www.brillinc.com, brill3dculinarystudio.com, www.brill3dculinarystudio.com - 9 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:0B80381866ABC95B9C3031ED210536F3
Thumbprint:B8B5138291D5E7EB79D45E179DAFF2EF0CB0F704
SHA256 / Certificate:nDm3dO8ROeATuEAUAv7C2q/yBUUu/ie2YfoDbJfXvRM=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):bb96c154d79fefe3ab1a7f6fb675c981c8d24219986e2bb6f7e972886f44bf4f
SHA256 hex / Subject Public Key Information (SPKI):bb96c154d79fefe3ab1a7f6fb675c981c8d24219986e2bb6f7e972886f44bf4f
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


3.
CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US
08.03.2013
08.03.2023
expires in 250 days


3.
CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US
08.03.2013

08.03.2023
expires in 250 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:01FDA3EB6ECA75C888438B724BCFBC91
Thumbprint:1FB86B1168EC743154062E8C9CC5B171A4B7CCB4
SHA256 / Certificate:FUxDPEkZKcXvaG6DjjI2ZKAOag2CLMyVj7TasD5JoI8=
SHA256 hex / Cert (DANE * 0 1):154c433c491929c5ef686e838e323664a00e6a0d822ccc958fb4dab03e49a08f
SHA256 hex / PublicKey (DANE * 1 1):e6426f344330d0a8eb080bbb7976391d976fc824b5dc16c0d15246d5148ff75c
SHA256 hex / Subject Public Key Information (SPKI):e6426f344330d0a8eb080bbb7976391d976fc824b5dc16c0d15246d5148ff75c
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


4.
CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US
08.03.2013
08.03.2023
expires in 250 days


4.
CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US
08.03.2013

08.03.2023
expires in 250 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:01FDA3EB6ECA75C888438B724BCFBC91
Thumbprint:1FB86B1168EC743154062E8C9CC5B171A4B7CCB4
SHA256 / Certificate:FUxDPEkZKcXvaG6DjjI2ZKAOag2CLMyVj7TasD5JoI8=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):e6426f344330d0a8eb080bbb7976391d976fc824b5dc16c0d15246d5148ff75c
SHA256 hex / Subject Public Key Information (SPKI):e6426f344330d0a8eb080bbb7976391d976fc824b5dc16c0d15246d5148ff75c
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


5.
CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
10.11.2006
10.11.2031
expires in 3419 days


5.
CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
10.11.2006

10.11.2031
expires in 3419 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:083BE056904246B1A1756AC95991C74A
Thumbprint:A8985D3A65E5E5C4B2D7D66D40C6DD2FB19C5436
SHA256 / Certificate:Q0ig6URMeMsmXgWNXolEtNhPlmK9Jtslf4k0pEPHAWE=
SHA256 hex / Cert (DANE * 0 1):4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161
SHA256 hex / PublicKey (DANE * 1 1):aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SHA256 hex / Subject Public Key Information (SPKI):aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:



6.
CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
07.12.2016
10.05.2025
expires in 1044 days


6.
CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
07.12.2016

10.05.2025
expires in 1044 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:0F5BC3A176CB789E2020C7893C8167B4
Thumbprint:FB20FA8A6A93B375F054814F9E00273EA51A6138
SHA256 / Certificate:bay7iUUTex2tQhGwQ2774G8SrONpBJc7Ra4ldAgj02k=
SHA256 hex / Cert (DANE * 0 1):6dacbb8945137b1dad4211b0436efbe06f12ace36904973b45ae25740823d369
SHA256 hex / PublicKey (DANE * 1 1):aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SHA256 hex / Subject Public Key Information (SPKI):aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


7.
CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE
12.05.2000
13.05.2025
expires in 1047 days


7.
CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE
12.05.2000

13.05.2025
expires in 1047 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:020000B9
Thumbprint:D4DE20D05E66FC53FE1A50882C78DB2852CAE474
SHA256 / Certificate:Fq9XqfZ2sKsSYJWqXrre8iqzERnWRKyVzUuT2/Pyaus=
SHA256 hex / Cert (DANE * 0 1):16af57a9f676b0ab126095aa5ebadef22ab31119d644ac95cd4b93dbf3f26aeb
SHA256 hex / PublicKey (DANE * 1 1):63d9af9b47b1064d49a10e7b7fd566dbc8caa399459bfc2829c571ad8c6ef34a
SHA256 hex / Subject Public Key Information (SPKI):63d9af9b47b1064d49a10e7b7fd566dbc8caa399459bfc2829c571ad8c6ef34a
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:



10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuerlast 7 daysactivenum Certs
CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US
0
0
3
CN=GlobalSign CloudSSL CA - SHA256 - G3, O=GlobalSign nv-sa, C=BE
0
0
2
CN=COMODO ECC Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester
0
0
1
CN=COMODO RSA Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester
0
0
1

CertSpotter-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
1685719944
leaf cert
CN=GlobalSign CloudSSL CA - SHA256 - G3, O=GlobalSign nv-sa, C=BE
2020-06-09 13:07:17
2021-04-17 22:09:54
*.4cabling.com.au, *.511tactical.com, *.brill3dculinarystudio.com, *.bulldog-dupont.com, *.celticfc.net, *.costumeboxusa.com, *.csmbakerysolutions.com, *.customify.co.uk, *.denmat.com, *.fishingrepublic.co.uk, *.htseating.com, *.icintracom.com, *.intellinetnetwork.com, *.izettletest.com, *.jaysonhome.com, *.luckydogdirect.com, *.master-7rqtwti-3tfyjf32gnnos.eu-3.magentosite.cloud, *.master-7rqtwti-4okpy766d5qbs.us-3.magentosite.cloud, *.master-7rqtwti-756scfpcr3iq4.us-3.magentosite.cloud, *.master-7rqtwti-bmtjqamn2abqg.eu-3.magentosite.cloud, *.master-7rqtwti-ew5pezcg5ylv2.eu-3.magentosite.cloud, *.master-7rqtwti-naq5ptrq5ubju.eu-3.magentosite.cloud, *.nkd.com, *.pelican.com, *.restaurantware.com, *.shopnational.com, *.smokealarmstore.com.au, *.smokiesaustralia.com.au, *.staging-5em2ouy-3tfyjf32gnnos.eu-3.magentosite.cloud, *.staging-5em2ouy-4okpy766d5qbs.us-3.magentosite.cloud, *.staging-5em2ouy-756scfpcr3iq4.us-3.magentosite.cloud, *.staging-5em2ouy-bmtjqamn2abqg.eu-3.magentosite.cloud, *.staging-5em2ouy-ew5pezcg5ylv2.eu-3.magentosite.cloud, *.staging-5em2ouy-s5ryl3xd4ven4.us-3.magentosite.cloud, *.staging-vdt2zeq-naq5ptrq5ubju.eu-3.magentosite.cloud, *.theworldofbaking.com, *.true-sports.com, *.vaprzon.com, *.xbyte.com, 4cabling.com.au, 511tactical.com, brill3dculinarystudio.com, bulldog-dupont.com, celticfc.net, celticsuperstore.co.uk, costumeboxusa.com, csmbakerysolutions.com, fishingrepublic.co.uk, htseating.com, icintracom.com, intellinetnetwork.com, izettletest.com, jaysonhome.com, kahunaverse.staging.nort.ca, luckydogdirect.com, magentocloud11.map.fastly.net, master-7rqtwti-3tfyjf32gnnos.eu-3.magentosite.cloud, master-7rqtwti-4okpy766d5qbs.us-3.magentosite.cloud, master-7rqtwti-756scfpcr3iq4.us-3.magentosite.cloud, master-7rqtwti-bmtjqamn2abqg.eu-3.magentosite.cloud, master-7rqtwti-ew5pezcg5ylv2.eu-3.magentosite.cloud, master-7rqtwti-naq5ptrq5ubju.eu-3.magentosite.cloud, nkd.com, pelican.com, pierrehardy.com, restaurantware.com, shopnational.com, smokealarmstore.com.au, smokiesaustralia.com.au, staging-5em2ouy-3tfyjf32gnnos.eu-3.magentosite.cloud, staging-5em2ouy-4okpy766d5qbs.us-3.magentosite.cloud, staging-5em2ouy-756scfpcr3iq4.us-3.magentosite.cloud, staging-5em2ouy-bmtjqamn2abqg.eu-3.magentosite.cloud, staging-5em2ouy-ew5pezcg5ylv2.eu-3.magentosite.cloud, staging-5em2ouy-s5ryl3xd4ven4.us-3.magentosite.cloud, staging-vdt2zeq-naq5ptrq5ubju.eu-3.magentosite.cloud, theworldofbaking.com, true-sports.com, vaprzon.com, www.pierrehardy.com - 80 entries


1685710530
leaf cert
CN=GlobalSign CloudSSL CA - SHA256 - G3, O=GlobalSign nv-sa, C=BE
2020-06-09 13:03:16
2021-04-17 22:09:54
*.4cabling.com.au, *.511tactical.com, *.bulldog-dupont.com, *.celticfc.net, *.costumeboxusa.com, *.csmbakerysolutions.com, *.customify.co.uk, *.denmat.com, *.fishingrepublic.co.uk, *.htseating.com, *.icintracom.com, *.intellinetnetwork.com, *.izettletest.com, *.jaysonhome.com, *.luckydogdirect.com, *.master-7rqtwti-3tfyjf32gnnos.eu-3.magentosite.cloud, *.master-7rqtwti-4okpy766d5qbs.us-3.magentosite.cloud, *.master-7rqtwti-756scfpcr3iq4.us-3.magentosite.cloud, *.master-7rqtwti-bmtjqamn2abqg.eu-3.magentosite.cloud, *.master-7rqtwti-ew5pezcg5ylv2.eu-3.magentosite.cloud, *.master-7rqtwti-naq5ptrq5ubju.eu-3.magentosite.cloud, *.nkd.com, *.pelican.com, *.restaurantware.com, *.shopnational.com, *.smokealarmstore.com.au, *.smokiesaustralia.com.au, *.staging-5em2ouy-3tfyjf32gnnos.eu-3.magentosite.cloud, *.staging-5em2ouy-4okpy766d5qbs.us-3.magentosite.cloud, *.staging-5em2ouy-756scfpcr3iq4.us-3.magentosite.cloud, *.staging-5em2ouy-bmtjqamn2abqg.eu-3.magentosite.cloud, *.staging-5em2ouy-ew5pezcg5ylv2.eu-3.magentosite.cloud, *.staging-5em2ouy-s5ryl3xd4ven4.us-3.magentosite.cloud, *.staging-vdt2zeq-naq5ptrq5ubju.eu-3.magentosite.cloud, *.theworldofbaking.com, *.true-sports.com, *.vaprzon.com, *.xbyte.com, 4cabling.com.au, 511tactical.com, brill3dculinarystudio.com, bulldog-dupont.com, celticfc.net, celticsuperstore.co.uk, costumeboxusa.com, csmbakerysolutions.com, fishingrepublic.co.uk, htseating.com, icintracom.com, intellinetnetwork.com, izettletest.com, jaysonhome.com, kahunaverse.staging.nort.ca, luckydogdirect.com, magentocloud11.map.fastly.net, master-7rqtwti-3tfyjf32gnnos.eu-3.magentosite.cloud, master-7rqtwti-4okpy766d5qbs.us-3.magentosite.cloud, master-7rqtwti-756scfpcr3iq4.us-3.magentosite.cloud, master-7rqtwti-bmtjqamn2abqg.eu-3.magentosite.cloud, master-7rqtwti-ew5pezcg5ylv2.eu-3.magentosite.cloud, master-7rqtwti-naq5ptrq5ubju.eu-3.magentosite.cloud, nkd.com, pelican.com, pierrehardy.com, restaurantware.com, shopnational.com, smokealarmstore.com.au, smokiesaustralia.com.au, staging-5em2ouy-3tfyjf32gnnos.eu-3.magentosite.cloud, staging-5em2ouy-4okpy766d5qbs.us-3.magentosite.cloud, staging-5em2ouy-756scfpcr3iq4.us-3.magentosite.cloud, staging-5em2ouy-bmtjqamn2abqg.eu-3.magentosite.cloud, staging-5em2ouy-ew5pezcg5ylv2.eu-3.magentosite.cloud, staging-5em2ouy-s5ryl3xd4ven4.us-3.magentosite.cloud, staging-vdt2zeq-naq5ptrq5ubju.eu-3.magentosite.cloud, theworldofbaking.com, true-sports.com, vaprzon.com, www.pierrehardy.com - 79 entries


1454486054
precert
CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US
2020-02-25 00:00:00
2021-02-24 12:00:00
author.csmbakerysolutions.com, brill3dculinarystudio.com, brillinc.com, csmbakerysolutions.com, origin.csmbakerysolutions.com, portal.csmbakerysolutions.com, www.brill3dculinarystudio.com, www.brillinc.com, www.csmbakerysolutions.com - 9 entries


1289245960
leaf cert
CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US
2019-12-06 00:00:00
2020-12-05 12:00:00
author.csmbakerysolutions.com, brill3dculinarystudio.com, brillinc.com, csmbakerysolutions.com, origin.csmbakerysolutions.com, portal.csmbakerysolutions.com, www.brill3dculinarystudio.com, www.brillinc.com, www.csmbakerysolutions.com - 9 entries


813384652
leaf cert
CN=COMODO RSA Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester
2019-03-16 00:00:00
2019-09-22 23:59:59
*.csmbakerysolutions.com, csmbakerysolutions.com, ssl513050.cloudflaressl.com - 3 entries


813366136
leaf cert
CN=COMODO ECC Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester
2019-03-16 00:00:00
2019-09-22 23:59:59
*.csmbakerysolutions.com, csmbakerysolutions.com, ssl513051.cloudflaressl.com - 3 entries


799742511
leaf cert
CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US
2019-03-08 00:00:00
2020-03-08 12:00:00
author.csmbakerysolutions.com, brillinc.com, csmbakerysolutions.com, origin.csmbakerysolutions.com, portal.csmbakerysolutions.com, www.brillinc.com, www.csmbakerysolutions.com - 7 entries



2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > 2019 are listed

Issuerlast 7 daysactivenum Certs
CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US
0
0
1

CRT-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
1284080033
leaf cert
CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US
2019-03-07 23:00:00
2020-03-08 11:00:00
author.csmbakerysolutions.com, brillinc.com, csmbakerysolutions.com, origin.csmbakerysolutions.com, portal.csmbakerysolutions.com, www.brillinc.com, www.csmbakerysolutions.com
7 entries



11. Html-Content - Entries

Summary

No data found or small Code-update

Details

Small Code Update - wait one minute


12. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: ns1.openprovider.nl, ns2.openprovider.be, ns3.openprovider.eu

QNr.DomainTypeNS used
1
nl
NS
b.root-servers.net (2001:500:200::b)

Answer: ns1.dns.nl, ns2.dns.nl, ns3.dns.nl
2
ns1.openprovider.nl
NS
ns1.dns.nl (2001:678:2c:0:194:0:28:53)

Answer: ns-eu-central-1.openprovider.eu, ns-eu-west-1.openprovider.eu, ns-eu-west-2.openprovider.eu
3
be
NS
k.root-servers.net (2001:7fd::1)

Answer: a.ns.dns.be, b.ns.dns.be, c.ns.dns.be, d.ns.dns.be, y.ns.dns.be, z.nsset.be
4
ns2.openprovider.be
NS
a.ns.dns.be (2001:678:9::1)

Answer: ns-eu-central-1.openprovider.eu, ns-eu-west-1.openprovider.eu, ns-eu-west-2.openprovider.eu
5
eu
NS
k.root-servers.net (2001:7fd::1)

Answer: nl.dns.eu, si.dns.eu, w.dns.eu, x.dns.eu, y.dns.eu
6
ns3.openprovider.eu
NS
si.dns.eu (2001:1470:8000:100::1)

Answer: ns-eu-central-1.openprovider.eu, ns-eu-west-1.openprovider.eu, ns-eu-west-2.openprovider.eu

Answer: ns-eu-central-1.openprovider.eu
18.194.228.62, 2a05:d014:f80:6e00:b20f:a574:7f25:31ad

Answer: ns-eu-west-1.openprovider.eu
2a05:d018:61d:bd00:c886:556d:56a4:db8b, 52.19.66.106

Answer: ns-eu-west-2.openprovider.eu
2a05:d01c:433:e000:9d6a:209f:a4ad:3c7, 52.56.180.255
7
ns1.openprovider.nl: 52.57.114.204
A
ns-eu-central-1.openprovider.eu (2a05:d014:f80:6e00:b20f:a574:7f25:31ad)
8
ns1.openprovider.nl: 2a05:d014:f80:6e00:bde7:af96:9434:75d5
AAAA
ns-eu-central-1.openprovider.eu (2a05:d014:f80:6e00:b20f:a574:7f25:31ad)
9
ns2.openprovider.be: 52.214.115.96
A
ns-eu-central-1.openprovider.eu (2a05:d014:f80:6e00:b20f:a574:7f25:31ad)
10
ns2.openprovider.be: 2a05:d018:61d:bd00:21bc:c938:d548:dab1
AAAA
ns-eu-central-1.openprovider.eu (2a05:d014:f80:6e00:b20f:a574:7f25:31ad)
11
ns3.openprovider.eu: 52.56.134.244
A
ns-eu-central-1.openprovider.eu (2a05:d014:f80:6e00:b20f:a574:7f25:31ad)
12
ns3.openprovider.eu: 2a05:d01c:433:e000:e62c:faa3:9834:41e7
AAAA
ns-eu-central-1.openprovider.eu (2a05:d014:f80:6e00:b20f:a574:7f25:31ad)


13. CAA - Entries

DomainnameflagNameValue∑ Queries∑ Timeout
www.csmbakerysolutions.com.cdn.cloudflare.net



1
0
csmbakerysolutions.com.cdn.cloudflare.net
0

no CAA entry found
1
0
www.csmbakerysolutions.com



1
0
com.cdn.cloudflare.net
0

no CAA entry found
1
0
csmbakerysolutions.com
5
issue
digicert.com
1
0

9
issuewild
digicert.com
1
0
cdn.cloudflare.net
0

no CAA entry found
1
0
cloudflare.net
0

no CAA entry found
1
0
com
0

no CAA entry found
1
0
net
0

no CAA entry found
1
0


14. TXT - Entries

DomainnameTXT EntryStatus∑ Queries∑ Timeout
csmbakerysolutions.com

ok
1
0
www.csmbakerysolutions.com


1
0
_acme-challenge.csmbakerysolutions.com
_globalsign-domain-verification=Xkb61WQcrtF9Qe8P9smoB4ajPntp1W_9m_gIRaavbO
missing entry or wrong length
1
0
_acme-challenge.www.csmbakerysolutions.com

Name Error - The domain name does not exist
1
0
www.csmbakerysolutions.com.cdn.cloudflare.net


1
0
_acme-challenge.www.csmbakerysolutions.com.cdn.cloudflare.net

missing entry or wrong length
1
0
_acme-challenge.csmbakerysolutions.com.csmbakerysolutions.com
_globalsign-domain-verification=Xkb61WQcrtF9Qe8P9smoB4ajPntp1W_9m_gIRaavbO
perhaps wrong
1
0
_acme-challenge.www.csmbakerysolutions.com.csmbakerysolutions.com
_globalsign-domain-verification=Xkb61WQcrtF9Qe8P9smoB4ajPntp1W_9m_gIRaavbO
perhaps wrong
1
0
_acme-challenge.www.csmbakerysolutions.com.www.csmbakerysolutions.com

Name Error - The domain name does not exist
1
0
_acme-challenge.www.csmbakerysolutions.com.cdn.cloudflare.net.csmbakerysolutions.com.cdn.cloudflare.net

perhaps wrong
1
0
_acme-challenge.www.csmbakerysolutions.com.cdn.cloudflare.net.www.csmbakerysolutions.com.cdn.cloudflare.net

perhaps wrong
1
0


15. Portchecks

Domain or IPPortDescriptionResultAnswer
csmbakerysolutions.com
21
FTP



csmbakerysolutions.com
21
FTP



csmbakerysolutions.com
22
SSH



csmbakerysolutions.com
22
SSH



csmbakerysolutions.com
25
SMTP



csmbakerysolutions.com
25
SMTP



csmbakerysolutions.com
53
DNS



csmbakerysolutions.com
53
DNS



csmbakerysolutions.com
110
POP3



csmbakerysolutions.com
110
POP3



csmbakerysolutions.com
143
IMAP



csmbakerysolutions.com
143
IMAP



csmbakerysolutions.com
465
SMTP (encrypted)



csmbakerysolutions.com
465
SMTP (encrypted)



csmbakerysolutions.com
587
SMTP (encrypted, submission)



csmbakerysolutions.com
587
SMTP (encrypted, submission)



csmbakerysolutions.com
993
IMAP (encrypted)



csmbakerysolutions.com
993
IMAP (encrypted)



csmbakerysolutions.com
995
POP3 (encrypted)



csmbakerysolutions.com
995
POP3 (encrypted)



csmbakerysolutions.com
1433
MS SQL



csmbakerysolutions.com
1433
MS SQL



csmbakerysolutions.com
2082
cPanel (http)



csmbakerysolutions.com
2082
cPanel (http)



csmbakerysolutions.com
2083
cPanel (https)



csmbakerysolutions.com
2083
cPanel (https)



csmbakerysolutions.com
2086
WHM (http)



csmbakerysolutions.com
2086
WHM (http)



csmbakerysolutions.com
2087
WHM (https)



csmbakerysolutions.com
2087
WHM (https)



csmbakerysolutions.com
2089
cPanel Licensing



csmbakerysolutions.com
2089
cPanel Licensing



csmbakerysolutions.com
2095
cPanel Webmail (http)



csmbakerysolutions.com
2095
cPanel Webmail (http)



csmbakerysolutions.com
2096
cPanel Webmail (https)



csmbakerysolutions.com
2096
cPanel Webmail (https)



csmbakerysolutions.com
2222
DirectAdmin (http)



csmbakerysolutions.com
2222
DirectAdmin (http)



csmbakerysolutions.com
2222
DirectAdmin (https)



csmbakerysolutions.com
2222
DirectAdmin (https)



csmbakerysolutions.com
3306
mySql



csmbakerysolutions.com
3306
mySql



csmbakerysolutions.com
5224
Plesk Licensing



csmbakerysolutions.com
5224
Plesk Licensing



csmbakerysolutions.com
5432
PostgreSQL



csmbakerysolutions.com
5432
PostgreSQL



csmbakerysolutions.com
8080
Ookla Speedtest (http)



csmbakerysolutions.com
8080
Ookla Speedtest (http)



csmbakerysolutions.com
8080
Ookla Speedtest (https)



csmbakerysolutions.com
8080
Ookla Speedtest (https)



csmbakerysolutions.com
8083
VestaCP http



csmbakerysolutions.com
8083
VestaCP http



csmbakerysolutions.com
8083
VestaCP https



csmbakerysolutions.com
8083
VestaCP https



csmbakerysolutions.com
8443
Plesk Administration (https)



csmbakerysolutions.com
8443
Plesk Administration (https)



csmbakerysolutions.com
8447
Plesk Installer + Updates



csmbakerysolutions.com
8447
Plesk Installer + Updates



csmbakerysolutions.com
8880
Plesk Administration (http)



csmbakerysolutions.com
8880
Plesk Administration (http)



csmbakerysolutions.com
10000
Webmin (http)



csmbakerysolutions.com
10000
Webmin (http)



csmbakerysolutions.com
10000
Webmin (https)



csmbakerysolutions.com
10000
Webmin (https)



www.csmbakerysolutions.com
21
FTP



www.csmbakerysolutions.com
21
FTP



www.csmbakerysolutions.com
22
SSH



www.csmbakerysolutions.com
22
SSH



www.csmbakerysolutions.com
25
SMTP



www.csmbakerysolutions.com
25
SMTP



www.csmbakerysolutions.com
53
DNS



www.csmbakerysolutions.com
53
DNS



www.csmbakerysolutions.com
110
POP3



www.csmbakerysolutions.com
110
POP3



www.csmbakerysolutions.com
143
IMAP



www.csmbakerysolutions.com
143
IMAP



www.csmbakerysolutions.com
465
SMTP (encrypted)



www.csmbakerysolutions.com
465
SMTP (encrypted)



www.csmbakerysolutions.com
587
SMTP (encrypted, submission)



www.csmbakerysolutions.com
587
SMTP (encrypted, submission)



www.csmbakerysolutions.com
993
IMAP (encrypted)



www.csmbakerysolutions.com
993
IMAP (encrypted)



www.csmbakerysolutions.com
995
POP3 (encrypted)



www.csmbakerysolutions.com
995
POP3 (encrypted)



www.csmbakerysolutions.com
1433
MS SQL



www.csmbakerysolutions.com
1433
MS SQL



www.csmbakerysolutions.com
2082
cPanel (http)



www.csmbakerysolutions.com
2082
cPanel (http)



www.csmbakerysolutions.com
2083
cPanel (https)



www.csmbakerysolutions.com
2083
cPanel (https)



www.csmbakerysolutions.com
2086
WHM (http)



www.csmbakerysolutions.com
2086
WHM (http)



www.csmbakerysolutions.com
2087
WHM (https)



www.csmbakerysolutions.com
2087
WHM (https)



www.csmbakerysolutions.com
2089
cPanel Licensing



www.csmbakerysolutions.com
2089
cPanel Licensing



www.csmbakerysolutions.com
2095
cPanel Webmail (http)



www.csmbakerysolutions.com
2095
cPanel Webmail (http)



www.csmbakerysolutions.com
2096
cPanel Webmail (https)



www.csmbakerysolutions.com
2096
cPanel Webmail (https)



www.csmbakerysolutions.com
2222
DirectAdmin (http)



www.csmbakerysolutions.com
2222
DirectAdmin (http)



www.csmbakerysolutions.com
2222
DirectAdmin (https)



www.csmbakerysolutions.com
2222
DirectAdmin (https)



www.csmbakerysolutions.com
3306
mySql



www.csmbakerysolutions.com
3306
mySql



www.csmbakerysolutions.com
5224
Plesk Licensing



www.csmbakerysolutions.com
5224
Plesk Licensing



www.csmbakerysolutions.com
5432
PostgreSQL



www.csmbakerysolutions.com
5432
PostgreSQL



www.csmbakerysolutions.com
8080
Ookla Speedtest (http)



www.csmbakerysolutions.com
8080
Ookla Speedtest (http)



www.csmbakerysolutions.com
8080
Ookla Speedtest (https)



www.csmbakerysolutions.com
8080
Ookla Speedtest (https)



www.csmbakerysolutions.com
8083
VestaCP http



www.csmbakerysolutions.com
8083
VestaCP http



www.csmbakerysolutions.com
8083
VestaCP https



www.csmbakerysolutions.com
8083
VestaCP https



www.csmbakerysolutions.com
8443
Plesk Administration (https)



www.csmbakerysolutions.com
8443
Plesk Administration (https)



www.csmbakerysolutions.com
8447
Plesk Installer + Updates



www.csmbakerysolutions.com
8447
Plesk Installer + Updates



www.csmbakerysolutions.com
8880
Plesk Administration (http)



www.csmbakerysolutions.com
8880
Plesk Administration (http)



www.csmbakerysolutions.com
10000
Webmin (http)



www.csmbakerysolutions.com
10000
Webmin (http)



www.csmbakerysolutions.com
10000
Webmin (https)



www.csmbakerysolutions.com
10000
Webmin (https)



3.223.93.132
21
FTP



3.223.93.132
21
FTP



3.223.93.132
22
SSH



3.223.93.132
22
SSH



3.223.93.132
25
SMTP



3.223.93.132
25
SMTP



3.223.93.132
53
DNS



3.223.93.132
53
DNS



3.223.93.132
110
POP3



3.223.93.132
110
POP3



3.223.93.132
143
IMAP



3.223.93.132
143
IMAP



3.223.93.132
465
SMTP (encrypted)



3.223.93.132
465
SMTP (encrypted)



3.223.93.132
587
SMTP (encrypted, submission)



3.223.93.132
587
SMTP (encrypted, submission)



3.223.93.132
993
IMAP (encrypted)



3.223.93.132
993
IMAP (encrypted)



3.223.93.132
995
POP3 (encrypted)



3.223.93.132
995
POP3 (encrypted)



3.223.93.132
1433
MS SQL



3.223.93.132
1433
MS SQL



3.223.93.132
2082
cPanel (http)



3.223.93.132
2082
cPanel (http)



3.223.93.132
2083
cPanel (https)



3.223.93.132
2083
cPanel (https)



3.223.93.132
2086
WHM (http)



3.223.93.132
2086
WHM (http)



3.223.93.132
2087
WHM (https)



3.223.93.132
2087
WHM (https)



3.223.93.132
2089
cPanel Licensing



3.223.93.132
2089
cPanel Licensing



3.223.93.132
2095
cPanel Webmail (http)



3.223.93.132
2095
cPanel Webmail (http)



3.223.93.132
2096
cPanel Webmail (https)



3.223.93.132
2096
cPanel Webmail (https)



3.223.93.132
2222
DirectAdmin (http)



3.223.93.132
2222
DirectAdmin (http)



3.223.93.132
2222
DirectAdmin (https)



3.223.93.132
2222
DirectAdmin (https)



3.223.93.132
3306
mySql



3.223.93.132
3306
mySql



3.223.93.132
5224
Plesk Licensing



3.223.93.132
5224
Plesk Licensing



3.223.93.132
5432
PostgreSQL



3.223.93.132
5432
PostgreSQL



3.223.93.132
8080
Ookla Speedtest (http)



3.223.93.132
8080
Ookla Speedtest (http)



3.223.93.132
8080
Ookla Speedtest (https)



3.223.93.132
8080
Ookla Speedtest (https)



3.223.93.132
8083
VestaCP http



3.223.93.132
8083
VestaCP http



3.223.93.132
8083
VestaCP https



3.223.93.132
8083
VestaCP https



3.223.93.132
8443
Plesk Administration (https)



3.223.93.132
8443
Plesk Administration (https)



3.223.93.132
8447
Plesk Installer + Updates



3.223.93.132
8447
Plesk Installer + Updates



3.223.93.132
8880
Plesk Administration (http)



3.223.93.132
8880
Plesk Administration (http)



3.223.93.132
10000
Webmin (http)



3.223.93.132
10000
Webmin (http)



3.223.93.132
10000
Webmin (https)



3.223.93.132
10000
Webmin (https)



34.225.173.27
21
FTP



34.225.173.27
21
FTP



34.225.173.27
22
SSH



34.225.173.27
22
SSH



34.225.173.27
25
SMTP



34.225.173.27
25
SMTP



34.225.173.27
53
DNS



34.225.173.27
53
DNS



34.225.173.27
110
POP3



34.225.173.27
110
POP3



34.225.173.27
143
IMAP



34.225.173.27
143
IMAP



34.225.173.27
465
SMTP (encrypted)



34.225.173.27
465
SMTP (encrypted)



34.225.173.27
587
SMTP (encrypted, submission)



34.225.173.27
587
SMTP (encrypted, submission)



34.225.173.27
993
IMAP (encrypted)



34.225.173.27
993
IMAP (encrypted)



34.225.173.27
995
POP3 (encrypted)



34.225.173.27
995
POP3 (encrypted)



34.225.173.27
1433
MS SQL



34.225.173.27
1433
MS SQL



34.225.173.27
2082
cPanel (http)



34.225.173.27
2082
cPanel (http)



34.225.173.27
2083
cPanel (https)



34.225.173.27
2083
cPanel (https)



34.225.173.27
2086
WHM (http)



34.225.173.27
2086
WHM (http)



34.225.173.27
2087
WHM (https)



34.225.173.27
2087
WHM (https)



34.225.173.27
2089
cPanel Licensing



34.225.173.27
2089
cPanel Licensing



34.225.173.27
2095
cPanel Webmail (http)



34.225.173.27
2095
cPanel Webmail (http)



34.225.173.27
2096
cPanel Webmail (https)



34.225.173.27
2096
cPanel Webmail (https)



34.225.173.27
2222
DirectAdmin (http)



34.225.173.27
2222
DirectAdmin (http)



34.225.173.27
2222
DirectAdmin (https)



34.225.173.27
2222
DirectAdmin (https)



34.225.173.27
3306
mySql



34.225.173.27
3306
mySql



34.225.173.27
5224
Plesk Licensing



34.225.173.27
5224
Plesk Licensing



34.225.173.27
5432
PostgreSQL



34.225.173.27
5432
PostgreSQL



34.225.173.27
8080
Ookla Speedtest (http)



34.225.173.27
8080
Ookla Speedtest (http)



34.225.173.27
8080
Ookla Speedtest (https)



34.225.173.27
8080
Ookla Speedtest (https)



34.225.173.27
8083
VestaCP http



34.225.173.27
8083
VestaCP http



34.225.173.27
8083
VestaCP https



34.225.173.27
8083
VestaCP https



34.225.173.27
8443
Plesk Administration (https)



34.225.173.27
8443
Plesk Administration (https)



34.225.173.27
8447
Plesk Installer + Updates



34.225.173.27
8447
Plesk Installer + Updates



34.225.173.27
8880
Plesk Administration (http)



34.225.173.27
8880
Plesk Administration (http)



34.225.173.27
10000
Webmin (http)



34.225.173.27
10000
Webmin (http)



34.225.173.27
10000
Webmin (https)



34.225.173.27
10000
Webmin (https)



54.173.78.161
21
FTP



54.173.78.161
21
FTP



54.173.78.161
22
SSH



54.173.78.161
22
SSH



54.173.78.161
25
SMTP



54.173.78.161
25
SMTP



54.173.78.161
53
DNS



54.173.78.161
53
DNS



54.173.78.161
110
POP3



54.173.78.161
110
POP3



54.173.78.161
143
IMAP



54.173.78.161
143
IMAP



54.173.78.161
465
SMTP (encrypted)



54.173.78.161
465
SMTP (encrypted)



54.173.78.161
587
SMTP (encrypted, submission)



54.173.78.161
587
SMTP (encrypted, submission)



54.173.78.161
993
IMAP (encrypted)



54.173.78.161
993
IMAP (encrypted)



54.173.78.161
995
POP3 (encrypted)



54.173.78.161
995
POP3 (encrypted)



54.173.78.161
1433
MS SQL



54.173.78.161
1433
MS SQL



54.173.78.161
2082
cPanel (http)



54.173.78.161
2082
cPanel (http)



54.173.78.161
2083
cPanel (https)



54.173.78.161
2083
cPanel (https)



54.173.78.161
2086
WHM (http)



54.173.78.161
2086
WHM (http)



54.173.78.161
2087
WHM (https)



54.173.78.161
2087
WHM (https)



54.173.78.161
2089
cPanel Licensing



54.173.78.161
2089
cPanel Licensing



54.173.78.161
2095
cPanel Webmail (http)



54.173.78.161
2095
cPanel Webmail (http)



54.173.78.161
2096
cPanel Webmail (https)



54.173.78.161
2096
cPanel Webmail (https)



54.173.78.161
2222
DirectAdmin (http)



54.173.78.161
2222
DirectAdmin (http)



54.173.78.161
2222
DirectAdmin (https)



54.173.78.161
2222
DirectAdmin (https)



54.173.78.161
3306
mySql



54.173.78.161
3306
mySql



54.173.78.161
5224
Plesk Licensing



54.173.78.161
5224
Plesk Licensing



54.173.78.161
5432
PostgreSQL



54.173.78.161
5432
PostgreSQL



54.173.78.161
8080
Ookla Speedtest (http)



54.173.78.161
8080
Ookla Speedtest (http)



54.173.78.161
8080
Ookla Speedtest (https)



54.173.78.161
8080
Ookla Speedtest (https)



54.173.78.161
8083
VestaCP http



54.173.78.161
8083
VestaCP http



54.173.78.161
8083
VestaCP https



54.173.78.161
8083
VestaCP https



54.173.78.161
8443
Plesk Administration (https)



54.173.78.161
8443
Plesk Administration (https)



54.173.78.161
8447
Plesk Installer + Updates



54.173.78.161
8447
Plesk Installer + Updates



54.173.78.161
8880
Plesk Administration (http)



54.173.78.161
8880
Plesk Administration (http)



54.173.78.161
10000
Webmin (http)



54.173.78.161
10000
Webmin (http)



54.173.78.161
10000
Webmin (https)



54.173.78.161
10000
Webmin (https)





Permalink: https://check-your-website.server-daten.de/?i=a3ffdf0a-ca79-4945-8fba-f5a4c3999ceb


Last Result: https://check-your-website.server-daten.de/?q=csmbakerysolutions.com - 2020-08-19 15:58:20


Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=csmbakerysolutions.com" target="_blank">Check this Site: csmbakerysolutions.com</a>