Check DNS, Urls + Redirects, Certificates and Content of your Website



N

No trusted Certificate

Checked:
04.05.2021 14:31:58


Older results

No older results found


1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
fenix.bariumlive.net
A
212.237.150.22
Norrmalm/Stockholm County/Sweden (SE) - Elastx AB
No Hostname found
yes
1
0

A
212.237.150.195
Norrmalm/Stockholm County/Sweden (SE) - Elastx AB
No Hostname found
yes
1
0

A
212.237.150.246
Norrmalm/Stockholm County/Sweden (SE) - Elastx AB
No Hostname found
yes
1
0

AAAA

yes


www.fenix.bariumlive.net
A
212.237.150.22
Norrmalm/Stockholm County/Sweden (SE) - Elastx AB
No Hostname found
yes
1
0

A
212.237.150.195
Norrmalm/Stockholm County/Sweden (SE) - Elastx AB
No Hostname found
yes
1
0

A
212.237.150.246
Norrmalm/Stockholm County/Sweden (SE) - Elastx AB
No Hostname found
yes
1
0

AAAA

yes


*.bariumlive.net
A
212.237.150.246
yes



A
212.237.150.22
yes



A
212.237.150.195
yes



AAAA

yes



CNAME

yes


*.fenix.bariumlive.net
A
212.237.150.195
yes



A
212.237.150.22
yes



A
212.237.150.246
yes



AAAA

yes



CNAME

yes



2. DNSSEC

Zone (*)DNSSEC - Informations

Zone: (root)
(root)
1 DS RR published



DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=



Status: Valid because published



2 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 14631, Flags 256



Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 22.05.2021, 00:00:00 +, Signature-Inception: 01.05.2021, 00:00:00 +, KeyTag 20326, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: net
net
1 DS RR in the parent zone found



DS with Algorithm 8, KeyTag 35886, DigestType 2 and Digest eGKyf19Rbr4ZaARE1M5edimBkxhCxGXwAjZAHYvZc+4=



1 RRSIG RR to validate DS RR found



RRSIG-Owner net., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 17.05.2021, 05:00:00 +, Signature-Inception: 04.05.2021, 04:00:00 +, KeyTag 14631, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 14631 used to validate the DS RRSet in the parent zone



2 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 6203, Flags 256



Public Key with Algorithm 8, KeyTag 35886, Flags 257 (SEP = Secure Entry Point)



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner net., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 14.05.2021, 16:28:30 +, Signature-Inception: 29.04.2021, 16:23:30 +, KeyTag 35886, Signer-Name: net



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 35886 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 35886, DigestType 2 and Digest "eGKyf19Rbr4ZaARE1M5edimBkxhCxGXwAjZAHYvZc+4=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: bariumlive.net
bariumlive.net
0 DS RR in the parent zone found



DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "islcst17kvi57bud70v1a4idmq5qtj4a" between the hashed NSEC3-owner "islcrr0bq9at8q9t5jhlf76ba5bdr8bg" and the hashed NextOwner "isles4lb00umedb1ep307rbs4bk2g41a". So the parent zone confirmes the not-existence of a DS RR.
Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner islcrr0bq9at8q9t5jhlf76ba5bdr8bg.net., Algorithm: 8, 2 Labels, original TTL: 86400 sec, Signature-expiration: 08.05.2021, 05:27:07 +, Signature-Inception: 01.05.2021, 04:17:07 +, KeyTag 6203, Signer-Name: net



DS-Query in the parent zone sends valid NSEC3 RR with the Hash "a1rt98bs5qgc9nfi51s9hci47uljg6jh" as Owner. That's the Hash of "net" with the NextHashedOwnerName "a1ruuffjkct2q54p78f8ejgj8jbk7i8b". So that domain name is the Closest Encloser of "bariumlive.net". Opt-Out: True.
Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner a1rt98bs5qgc9nfi51s9hci47uljg6jh.net., Algorithm: 8, 2 Labels, original TTL: 86400 sec, Signature-expiration: 08.05.2021, 05:31:14 +, Signature-Inception: 01.05.2021, 04:21:14 +, KeyTag 6203, Signer-Name: net



0 DNSKEY RR found




Zone: fenix.bariumlive.net
fenix.bariumlive.net
0 DS RR in the parent zone found



0 DNSKEY RR found




Zone: www.fenix.bariumlive.net
www.fenix.bariumlive.net
0 DS RR in the parent zone found


3. Name Servers

DomainNameserverNS-IP
www.fenix.bariumlive.net
  ns-1246.awsdns-27.org / 09ce1c1d88db6d4ed06ff56455dd7337 -

fenix.bariumlive.net
  ns-1246.awsdns-27.org / 09ce1c1d88db6d4ed06ff56455dd7337 -
205.251.196.222
London/England/United Kingdom (GB) - Amazon.com


 
2600:9000:5304:de00::1
Seattle/Washington/United States (US) - Amazon.com

bariumlive.net
  ns-1246.awsdns-27.org / 09ce1c1d88db6d4ed06ff56455dd7337 -
205.251.196.222
London/England/United Kingdom (GB) - Amazon.com


 
2600:9000:5304:de00::1
Seattle/Washington/United States (US) - Amazon.com


  ns-1594.awsdns-07.co.uk / a0f37f80c2a5a1df0ab8f5f3437d716b -
205.251.198.58
Seattle/Washington/United States (US) - Amazon.com


 
2600:9000:5306:3a00::1
Seattle/Washington/United States (US) - Amazon.com


  ns-348.awsdns-43.com / 5ee3f3fc12f7d9048b7a4ae67d8cbab0 -
205.251.193.92
Paris/Île-de-France/France (FR) - Amazon.com


 
2600:9000:5301:5c00::1
Seattle/Washington/United States (US) - Amazon.com


  ns-555.awsdns-05.net / 247151882262ffdae0eb85e6de495a64 -
205.251.194.43
Seattle/Washington/United States (US) - Amazon.com


 
2600:9000:5302:2b00::1
Seattle/Washington/United States (US) - Amazon.com

net
  a.gtld-servers.net / nnn1-fra8


  b.gtld-servers.net / nnn1-eltxl2


  c.gtld-servers.net / nnn1-fra8


  d.gtld-servers.net / nnn1-fra8


  e.gtld-servers.net / nnn1-fra8


  f.gtld-servers.net / nnn1-ams6


  g.gtld-servers.net / nnn1-ams6


  h.gtld-servers.net / nnn1-ams6


  i.gtld-servers.net / nnn1-ams6


  j.gtld-servers.net / nnn1-ein3


  k.gtld-servers.net / nnn1-ein2


  l.gtld-servers.net / nnn1-ein3


  m.gtld-servers.net / nnn1-ein3


4. SOA-Entries


Domain:net
Zone-Name:net
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1620131496
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:10


Domain:net
Zone-Name:net
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1620131511
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:3


Domain:bariumlive.net
Zone-Name:bariumlive.net
Primary:ns-1246.awsdns-27.org
Mail:awsdns-hostmaster.amazon.com
Serial:1
Refresh:7200
Retry:900
Expire:1209600
TTL:86400
num Entries:8


Domain:fenix.bariumlive.net
Zone-Name:bariumlive.net
Primary:ns-1246.awsdns-27.org
Mail:awsdns-hostmaster.amazon.com
Serial:1
Refresh:7200
Retry:900
Expire:1209600
TTL:86400
num Entries:2


Domain:www.fenix.bariumlive.net
Zone-Name:bariumlive.net
Primary:ns-1246.awsdns-27.org
Mail:awsdns-hostmaster.amazon.com
Serial:1
Refresh:7200
Retry:900
Expire:1209600
TTL:86400
num Entries:1


5. Screenshots

Startaddress: https://fenix.bariumlive.net, address used: https://accounts.google.com/ServiceLogin?continue=https%3A%2F%2Faccounts.google.com%2Fsignin%2Foauth%2Flegacy%2Fconsent%3Fauthuser%3Dunknown%26part%3DAJi8hAOCD-Hi-YhW8n6OQrM0lrboCwfFsNHk12jbEtCQzrVmdQnfTGwmh4bKTSWvhdyybVK-fAM1SORHFFApmaiM7dNL7lkPqQ02XGSLYSz5sY3y5W-JutI8YB7B-EB7U4gPUAXZZ8nMxHrKcG1d-kwjhxp5OSGR6QvLjdEXy9-A3dLqT4m8aX6eNu_q4wAAZ9s7g0QTWrd0DW_YVMAlK4kYkdIa46aIHz0VsIOHGSQkndclvSHXb62_xEjvMGhdOTJRz3kMmbv4FjUZUJ8n5nCPxgRnUjab3CFK7VJkcIXjFaVSua1B8OqrOKdMMN_8Y50QKv8_5IJR0h26QfGgaJT679iUi4hbergwvYkGlz646Cm8o4H3vxipduAuFinOk88vH8AvfMhJLea10UV8_SMvQOAkzXf3iOEDsGxKnuup3HYDyN4p8WStAJN9fNFD8LDyMMdspCp2%26as%3DS839630862%253A1620131671868688%23&sacu=1&oauth=1&rip=1, Screenshot created 2021-05-04 14:34:31 +00:0

Mobil (412px x 732px)

315 milliseconds

Screenshot mobile - https://accounts.google.com/ServiceLogin?continue=https%3A%2F%2Faccounts.google.com%2Fsignin%2Foauth%2Flegacy%2Fconsent%3Fauthuser%3Dunknown%26part%3DAJi8hAOCD-Hi-YhW8n6OQrM0lrboCwfFsNHk12jbEtCQzrVmdQnfTGwmh4bKTSWvhdyybVK-fAM1SORHFFApmaiM7dNL7lkPqQ02XGSLYSz5sY3y5W-JutI8YB7B-EB7U4gPUAXZZ8nMxHrKcG1d-kwjhxp5OSGR6QvLjdEXy9-A3dLqT4m8aX6eNu_q4wAAZ9s7g0QTWrd0DW_YVMAlK4kYkdIa46aIHz0VsIOHGSQkndclvSHXb62_xEjvMGhdOTJRz3kMmbv4FjUZUJ8n5nCPxgRnUjab3CFK7VJkcIXjFaVSua1B8OqrOKdMMN_8Y50QKv8_5IJR0h26QfGgaJT679iUi4hbergwvYkGlz646Cm8o4H3vxipduAuFinOk88vH8AvfMhJLea10UV8_SMvQOAkzXf3iOEDsGxKnuup3HYDyN4p8WStAJN9fNFD8LDyMMdspCp2%26as%3DS839630862%253A1620131671868688%23&sacu=1&oauth=1&rip=1
Mobil + Landscape (732px x 412px)

347 milliseconds

Screenshot mobile landscape - https://accounts.google.com/ServiceLogin?continue=https%3A%2F%2Faccounts.google.com%2Fsignin%2Foauth%2Flegacy%2Fconsent%3Fauthuser%3Dunknown%26part%3DAJi8hAOCD-Hi-YhW8n6OQrM0lrboCwfFsNHk12jbEtCQzrVmdQnfTGwmh4bKTSWvhdyybVK-fAM1SORHFFApmaiM7dNL7lkPqQ02XGSLYSz5sY3y5W-JutI8YB7B-EB7U4gPUAXZZ8nMxHrKcG1d-kwjhxp5OSGR6QvLjdEXy9-A3dLqT4m8aX6eNu_q4wAAZ9s7g0QTWrd0DW_YVMAlK4kYkdIa46aIHz0VsIOHGSQkndclvSHXb62_xEjvMGhdOTJRz3kMmbv4FjUZUJ8n5nCPxgRnUjab3CFK7VJkcIXjFaVSua1B8OqrOKdMMN_8Y50QKv8_5IJR0h26QfGgaJT679iUi4hbergwvYkGlz646Cm8o4H3vxipduAuFinOk88vH8AvfMhJLea10UV8_SMvQOAkzXf3iOEDsGxKnuup3HYDyN4p8WStAJN9fNFD8LDyMMdspCp2%26as%3DS839630862%253A1620131671868688%23&sacu=1&oauth=1&rip=1
Screen (1280px x 1680px)

635 milliseconds

Screenshot Desktop - https://accounts.google.com/ServiceLogin?continue=https%3A%2F%2Faccounts.google.com%2Fsignin%2Foauth%2Flegacy%2Fconsent%3Fauthuser%3Dunknown%26part%3DAJi8hAOCD-Hi-YhW8n6OQrM0lrboCwfFsNHk12jbEtCQzrVmdQnfTGwmh4bKTSWvhdyybVK-fAM1SORHFFApmaiM7dNL7lkPqQ02XGSLYSz5sY3y5W-JutI8YB7B-EB7U4gPUAXZZ8nMxHrKcG1d-kwjhxp5OSGR6QvLjdEXy9-A3dLqT4m8aX6eNu_q4wAAZ9s7g0QTWrd0DW_YVMAlK4kYkdIa46aIHz0VsIOHGSQkndclvSHXb62_xEjvMGhdOTJRz3kMmbv4FjUZUJ8n5nCPxgRnUjab3CFK7VJkcIXjFaVSua1B8OqrOKdMMN_8Y50QKv8_5IJR0h26QfGgaJT679iUi4hbergwvYkGlz646Cm8o4H3vxipduAuFinOk88vH8AvfMhJLea10UV8_SMvQOAkzXf3iOEDsGxKnuup3HYDyN4p8WStAJN9fNFD8LDyMMdspCp2%26as%3DS839630862%253A1620131671868688%23&sacu=1&oauth=1&rip=1

Mobile- and other Chrome-Checks

widthheight
visual Viewport412732
content Size412732

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

Chrome-Connection: secure. secure connection settings. The connection to this site is encrypted and authenticated using QUIC, X25519, and AES_128_GCM.

Chrome-Resources : secure. all served securely. All resources on this page are served securely.

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://fenix.bariumlive.net/
212.237.150.22
308
https://fenix.bariumlive.net
Html is minified: 109.33 %
0.076
A
Date: Tue, 04 May 2021 12:33:13 GMT
Content-Type: text/html
Content-Length: 164
Connection: close
Location: https://fenix.bariumlive.net

• http://fenix.bariumlive.net/
212.237.150.195
308
https://fenix.bariumlive.net
Html is minified: 109.33 %
0.070
A
Date: Tue, 04 May 2021 12:33:13 GMT
Content-Type: text/html
Content-Length: 164
Connection: close
Location: https://fenix.bariumlive.net

• http://fenix.bariumlive.net/
212.237.150.246
308
https://fenix.bariumlive.net
Html is minified: 109.33 %
0.053
A
Date: Tue, 04 May 2021 12:33:13 GMT
Content-Type: text/html
Content-Length: 164
Connection: close
Location: https://fenix.bariumlive.net

• http://www.fenix.bariumlive.net/
212.237.150.22
404

Html is minified: 100.00 %
0.070
M
Not Found
Date: Tue, 04 May 2021 12:33:13 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 21
Connection: close

• http://www.fenix.bariumlive.net/
212.237.150.195
404

Html is minified: 100.00 %
0.070
M
Not Found
Date: Tue, 04 May 2021 12:33:13 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 21
Connection: close

• http://www.fenix.bariumlive.net/
212.237.150.246
404

Html is minified: 100.00 %
0.070
M
Not Found
Date: Tue, 04 May 2021 12:33:13 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 21
Connection: close

• https://fenix.bariumlive.net/
212.237.150.22 No GZip used - 503 / 674 - 74.63 % possible
Inline-JavaScript (∑/total): 1/0 Inline-CSS (∑/total): 1/165
200

Html is minified: 136.44 %
2.416
B
small visible content (num chars: 0)
Date: Tue, 04 May 2021 12:33:17 GMT
Content-Type: text/html
Content-Length: 674
Connection: close
Set-Cookie: INGRESSCOOKIE=1620131598.468.1020508.386291; Path=/; Secure; HttpOnly
Last-Modified: Mon, 03 May 2021 08:35:15 GMT
Expires: Tue, 04 May 2021 12:33:17 GMT
Cache-Control: max-age=0,no-cache, no-store, public, must-revalidate, proxy-revalidate
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
Feature-Policy: 'none'
Permissions-Policy: geolocation=();midi=();notifications=();push=();sync-xhr=();microphone=();camera=();magnetometer=();gyroscope=();speaker=(self);vibrate=();fullscreen=(self);payment=();
Accept-Ranges: bytes
Strict-Transport-Security: max-age=15724800; includeSubDomains

• https://fenix.bariumlive.net/
212.237.150.195 No GZip used - 503 / 674 - 74.63 % possible
Inline-JavaScript (∑/total): 1/0 Inline-CSS (∑/total): 1/165
200

Html is minified: 136.44 %
2.727
B
small visible content (num chars: 0)
Date: Tue, 04 May 2021 12:33:14 GMT
Content-Type: text/html
Content-Length: 674
Connection: close
Set-Cookie: INGRESSCOOKIE=1620131595.066.1358846.641310; Path=/; Secure; HttpOnly
Last-Modified: Mon, 03 May 2021 08:35:15 GMT
Expires: Tue, 04 May 2021 12:33:14 GMT
Cache-Control: max-age=0,no-cache, no-store, public, must-revalidate, proxy-revalidate
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
Feature-Policy: 'none'
Permissions-Policy: geolocation=();midi=();notifications=();push=();sync-xhr=();microphone=();camera=();magnetometer=();gyroscope=();speaker=(self);vibrate=();fullscreen=(self);payment=();
Accept-Ranges: bytes
Strict-Transport-Security: max-age=15724800; includeSubDomains

• https://fenix.bariumlive.net/
212.237.150.246 No GZip used - 503 / 674 - 74.63 % possible
Inline-JavaScript (∑/total): 1/0 Inline-CSS (∑/total): 1/165
200

Html is minified: 136.44 %
2.430
B
small visible content (num chars: 0)
Date: Tue, 04 May 2021 12:33:20 GMT
Content-Type: text/html
Content-Length: 674
Connection: close
Set-Cookie: INGRESSCOOKIE=1620131601.583.2070265.554686; Path=/; Secure; HttpOnly
Last-Modified: Mon, 03 May 2021 08:35:15 GMT
Expires: Tue, 04 May 2021 12:33:20 GMT
Cache-Control: max-age=0,no-cache, no-store, public, must-revalidate, proxy-revalidate
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
Feature-Policy: 'none'
Permissions-Policy: geolocation=();midi=();notifications=();push=();sync-xhr=();microphone=();camera=();magnetometer=();gyroscope=();speaker=(self);vibrate=();fullscreen=(self);payment=();
Accept-Ranges: bytes
Strict-Transport-Security: max-age=15724800; includeSubDomains

• https://www.fenix.bariumlive.net/
212.237.150.22
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 100.00 %
2.417
N
Not Found
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
small visible content (num chars: 21)
default backend - 404
Date: Tue, 04 May 2021 12:33:27 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 21
Connection: close
Strict-Transport-Security: max-age=15724800; includeSubDomains

• https://www.fenix.bariumlive.net/
212.237.150.195
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 100.00 %
2.413
N
Not Found
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
small visible content (num chars: 21)
default backend - 404
Date: Tue, 04 May 2021 12:33:23 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 21
Connection: close
Strict-Transport-Security: max-age=15724800; includeSubDomains

• https://www.fenix.bariumlive.net/
212.237.150.246
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 100.00 %
2.424
N
Not Found
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
small visible content (num chars: 21)
default backend - 404
Date: Tue, 04 May 2021 12:33:30 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 21
Connection: close
Strict-Transport-Security: max-age=15724800; includeSubDomains

• https://fenix.bariumlive.net
No GZip used - 503 / 674 - 74.63 % possible
Inline-JavaScript (∑/total): 1/0 Inline-CSS (∑/total): 1/165
200

Html is minified: 136.44 %
2.446
B
small visible content (num chars: 0)
Date: Tue, 04 May 2021 12:33:43 GMT
Content-Type: text/html
Content-Length: 674
Connection: close
Set-Cookie: INGRESSCOOKIE=1620131624.776.1020502.675060; Path=/; Secure; HttpOnly
Last-Modified: Mon, 03 May 2021 08:35:15 GMT
Expires: Tue, 04 May 2021 12:33:43 GMT
Cache-Control: max-age=0,no-cache, no-store, public, must-revalidate, proxy-revalidate
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
Feature-Policy: 'none'
Permissions-Policy: geolocation=();midi=();notifications=();push=();sync-xhr=();microphone=();camera=();magnetometer=();gyroscope=();speaker=(self);vibrate=();fullscreen=(self);payment=();
Accept-Ranges: bytes
Strict-Transport-Security: max-age=15724800; includeSubDomains

• http://fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
212.237.150.22
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
308
https://fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Html is minified: 109.33 %
0.060
A
Visible Content: 308 Permanent Redirect nginx
Date: Tue, 04 May 2021 12:33:33 GMT
Content-Type: text/html
Content-Length: 164
Connection: close
Location: https://fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

• http://fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
212.237.150.195
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
308
https://fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Html is minified: 109.33 %
0.060
A
Visible Content: 308 Permanent Redirect nginx
Date: Tue, 04 May 2021 12:33:33 GMT
Content-Type: text/html
Content-Length: 164
Connection: close
Location: https://fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

• http://fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
212.237.150.246
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
308
https://fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Html is minified: 109.33 %
0.063
A
Visible Content: 308 Permanent Redirect nginx
Date: Tue, 04 May 2021 12:33:33 GMT
Content-Type: text/html
Content-Length: 164
Connection: close
Location: https://fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

• http://www.fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
212.237.150.22
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 100.00 %
0.060
A
Not Found
Visible Content: default backend - 404
Date: Tue, 04 May 2021 12:33:34 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 21
Connection: close

• http://www.fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
212.237.150.195
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 100.00 %
0.070
A
Not Found
Visible Content: default backend - 404
Date: Tue, 04 May 2021 12:33:33 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 21
Connection: close

• http://www.fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
212.237.150.246
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 100.00 %
0.060
A
Not Found
Visible Content: default backend - 404
Date: Tue, 04 May 2021 12:33:34 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 21
Connection: close

• https://fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
No GZip used - 503 / 674 - 74.63 % possible
Inline-JavaScript (∑/total): 1/0 Inline-CSS (∑/total): 1/165
200

Html is minified: 136.44 %
2.373

Visible Content:
Info: Html-Content with meta and/or script, may be a problem creating a Letsencrypt certificate using http-01 validation
Date: Tue, 04 May 2021 12:33:46 GMT
Content-Type: text/html
Content-Length: 674
Connection: close
Set-Cookie: INGRESSCOOKIE=1620131627.951.1020507.802142; Path=/; Secure; HttpOnly
Last-Modified: Mon, 03 May 2021 08:35:15 GMT
Expires: Tue, 04 May 2021 12:33:46 GMT
Cache-Control: max-age=0,no-cache, no-store, public, must-revalidate, proxy-revalidate
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
Feature-Policy: 'none'
Permissions-Policy: geolocation=();midi=();notifications=();push=();sync-xhr=();microphone=();camera=();magnetometer=();gyroscope=();speaker=(self);vibrate=();fullscreen=(self);payment=();
Accept-Ranges: bytes
Strict-Transport-Security: max-age=15724800; includeSubDomains

• https://212.237.150.22/
212.237.150.22
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 100.00 %
2.414
N
Not Found
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
small visible content (num chars: 21)
default backend - 404
Date: Tue, 04 May 2021 12:33:37 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 21
Connection: close
Strict-Transport-Security: max-age=15724800; includeSubDomains

• https://212.237.150.195/
212.237.150.195
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 100.00 %
2.403
N
Not Found
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
small visible content (num chars: 21)
default backend - 404
Date: Tue, 04 May 2021 12:33:34 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 21
Connection: close
Strict-Transport-Security: max-age=15724800; includeSubDomains

• https://212.237.150.246/
212.237.150.246
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 100.00 %
2.444
N
Not Found
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
small visible content (num chars: 21)
default backend - 404
Date: Tue, 04 May 2021 12:33:40 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 21
Connection: close
Strict-Transport-Security: max-age=15724800; includeSubDomains

7. Comments


1. General Results, most used to calculate the result

Aname "fenix.bariumlive.net" is subdomain, public suffix is ".net", top-level-domain is ".net", top-level-domain-type is "generic", tld-manager is "VeriSign Global Registry Services", num .net-domains preloaded: 6448 (complete: 151507)
Agood: All ip addresses are public addresses
AGood: Minimal 2 ip addresses per domain name found: fenix.bariumlive.net has 3 different ip addresses (authoritative).
AGood: Minimal 2 ip addresses per domain name found: www.fenix.bariumlive.net has 3 different ip addresses (authoritative).
Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: fenix.bariumlive.net has no ipv6 address.
Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: www.fenix.bariumlive.net has no ipv6 address.
Agood: No asked Authoritative Name Server had a timeout
Agood: destination is https
AGood: No cookie sent via http.
Agood: every cookie sent via https is marked as secure
Agood: every https has a Strict Transport Security Header
Agood: HSTS has includeSubdomains - directive
HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
AGood: Some urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset):12 complete Content-Type - header (17 urls)
https://fenix.bariumlive.net


Url with incomplete Content-Type - header - missing charset
https://fenix.bariumlive.net/ 212.237.150.22


Url with incomplete Content-Type - header - missing charset
https://fenix.bariumlive.net/ 212.237.150.195


Url with incomplete Content-Type - header - missing charset
https://fenix.bariumlive.net/ 212.237.150.246


Url with incomplete Content-Type - header - missing charset
https://fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de


Url with incomplete Content-Type - header - missing charset
Bwarning: HSTS max-age is too short - minimum 31536000 = 365 days required, 15724800 seconds = 182 days found
Bhttps://fenix.bariumlive.net
200
INGRESSCOOKIE=1620131624.776.1020502.675060; Path=/; Secure; HttpOnly
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://fenix.bariumlive.net/ 212.237.150.22
200
INGRESSCOOKIE=1620131598.468.1020508.386291; Path=/; Secure; HttpOnly
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://fenix.bariumlive.net/ 212.237.150.195
200
INGRESSCOOKIE=1620131595.066.1358846.641310; Path=/; Secure; HttpOnly
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://fenix.bariumlive.net/ 212.237.150.246
200
INGRESSCOOKIE=1620131601.583.2070265.554686; Path=/; Secure; HttpOnly
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200
INGRESSCOOKIE=1620131627.951.1020507.802142; Path=/; Secure; HttpOnly
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
CError - more then one version with Http-Status 200. After all redirects, all users (and search engines) should see the same https url: Non-www or www, but not both with http status 200.
Chttps://fenix.bariumlive.net/ 212.237.150.22

https://fenix.bariumlive.net
Error - redirect destination with a missing / at the end found. So two http status 200 results, only difference: An ending /. Perhaps missing "/" in the redirect rule. May be a problem redirecting folders and files.
Chttps://fenix.bariumlive.net/ 212.237.150.195

https://fenix.bariumlive.net
Error - redirect destination with a missing / at the end found. So two http status 200 results, only difference: An ending /. Perhaps missing "/" in the redirect rule. May be a problem redirecting folders and files.
Chttps://fenix.bariumlive.net/ 212.237.150.246

https://fenix.bariumlive.net
Error - redirect destination with a missing / at the end found. So two http status 200 results, only difference: An ending /. Perhaps missing "/" in the redirect rule. May be a problem redirecting folders and files.
Mhttp://www.fenix.bariumlive.net/ 212.237.150.22
404

Misconfiguration - main pages should never send http status 400 - 499
Mhttp://www.fenix.bariumlive.net/ 212.237.150.195
404

Misconfiguration - main pages should never send http status 400 - 499
Mhttp://www.fenix.bariumlive.net/ 212.237.150.246
404

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://www.fenix.bariumlive.net/ 212.237.150.22
404

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://www.fenix.bariumlive.net/ 212.237.150.195
404

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://www.fenix.bariumlive.net/ 212.237.150.246
404

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://212.237.150.22/ 212.237.150.22
404

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://212.237.150.195/ 212.237.150.195
404

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://212.237.150.246/ 212.237.150.246
404

Misconfiguration - main pages should never send http status 400 - 499
Nhttps://www.fenix.bariumlive.net/ 212.237.150.22
404

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Nhttps://www.fenix.bariumlive.net/ 212.237.150.195
404

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Nhttps://www.fenix.bariumlive.net/ 212.237.150.246
404

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Nhttps://212.237.150.22/ 212.237.150.22
404

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Nhttps://212.237.150.195/ 212.237.150.195
404

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Nhttps://212.237.150.246/ 212.237.150.246
404

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
AGood: More then one ip address per domain name found, checking all ip addresses the same http status and the same certificate found: Domain fenix.bariumlive.net, 3 ip addresses.
AGood: More then one ip address per domain name found, checking all ip addresses the same http status and the same certificate found: Domain www.fenix.bariumlive.net, 3 ip addresses.
Warning: More then one ip address per domain name found, checking all ip addresses the same http status, but different certificates found: Domain fenix.bariumlive.net, 3 ip addresses, 3 certificates.
Warning: More then one ip address per domain name found, checking all ip addresses the same http status, but different certificates found: Domain www.fenix.bariumlive.net, 3 ip addresses, 3 certificates.
Info: Checking the ip addresses of that domain name not exact one certificate found. So it's impossible to check if that domain requires Server Name Indication (SNI).: Domain fenix.bariumlive.net, 3 ip addresses.
Info: Checking the ip addresses of that domain name not exact one certificate found. So it's impossible to check if that domain requires Server Name Indication (SNI).: Domain www.fenix.bariumlive.net, 3 ip addresses.

2. DNS- and NameServer - Checks

AInfo:: 16 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 4 Name Servers.
AInfo:: 16 Queries complete, 15 with IPv6, 1 with IPv4.
Warning: Only some DNS Queries done via ipv6. IPv6 is the future, so the name servers of your name servers should have ipv6 addresses.
Ok (4 - 8):: An average of 4.0 queries per domain name server required to find all ip addresses of all name servers.
AInfo:: 4 different Name Servers found: ns-1246.awsdns-27.org, ns-1594.awsdns-07.co.uk, ns-348.awsdns-43.com, ns-555.awsdns-05.net, 4 Name Servers included in Delegation: ns-1246.awsdns-27.org, ns-1594.awsdns-07.co.uk, ns-348.awsdns-43.com, ns-555.awsdns-05.net, 4 Name Servers included in 1 Zone definitions: ns-1246.awsdns-27.org, ns-1594.awsdns-07.co.uk, ns-348.awsdns-43.com, ns-555.awsdns-05.net, 1 Name Servers listed in SOA.Primary: ns-1246.awsdns-27.org.
AGood: Only one SOA.Primary Name Server found.: ns-1246.awsdns-27.org.
AGood: SOA.Primary Name Server included in the delegation set.: ns-1246.awsdns-27.org.
AGood: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: ns-1246.awsdns-27.org, ns-1594.awsdns-07.co.uk, ns-348.awsdns-43.com, ns-555.awsdns-05.net
AGood: All Name Server Domain Names have a Public Suffix.
AGood: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
AGood: All Name Server ip addresses are public.
AGood: Minimal 2 different name servers (public suffix and public ip address) found: 4 different Name Servers found
AGood: All name servers have ipv4- and ipv6-addresses.: 4 different Name Servers found
AGood: Name servers with different Top Level Domains / Public Suffix List entries found: 4 Name Servers, 4 Top Level Domains: org, net, com, co.uk
AGood: Name Servers with different domain names found.: 4 different Domains found
AGood: Name servers with different Country locations found: 4 Name Servers, 3 Countries: FR, GB, US
AInfo: Ipv4-Subnet-list: 4 Name Servers, 1 different subnets (first Byte): 205., 1 different subnets (first two Bytes): 205.251., 4 different subnets (first three Bytes): 205.251.193., 205.251.194., 205.251.196., 205.251.198.
AGood: Name Server IPv4-addresses from different subnet found:
AInfo: IPv6-Subnet-list: 4 Name Servers with IPv6, 1 different subnets (first block): 2600:, 1 different subnets (first two blocks): 2600:9000:, 4 different subnets (first three blocks): 2600:9000:5301:, 2600:9000:5302:, 2600:9000:5304:, 2600:9000:5306:, 4 different subnets (first four blocks): 2600:9000:5301:5c00:, 2600:9000:5302:2b00:, 2600:9000:5304:de00:, 2600:9000:5306:3a00:
AGood: Name Server IPv6 addresses from different subnets found.
AGood: Nameserver supports TCP connections: 2 good Nameserver
AGood: Nameserver supports Echo Capitalization: 2 good Nameserver
AGood: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 2 good Nameserver
AGood: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 2 good Nameserver
AGood: All SOA have the same Serial Number
Warning: No CAA entry with issue/issuewild found, every CAA can create a certificate. Read https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization to learn some basics about the idea of CAA. Your name server must support such an entry. Not all dns providers support CAA entries.

3. Content- and Performance-critical Checks

https://fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200

Warning: Not existing ACME-file, but Server sends 200, not 404 or redirect. May be a problem creating a Letsencrypt certificate. Checking /.well-known/acme-challenge/random-filename - a http status 404 - Not Found - is expected. If your server sends content and a http status 200, the validation file (87 bytes, token, dot and the hash of the public part of the account key) may be invisible, so Letsencrypt can't validate your domain. If it is an application that sends this content, perhaps create an exception, so /.well-known/acme-challenge sends raw files. Or create a redirect to another domain and / or port 443, but your Letsencrypt client must support such a solution. Certbot: Use webroot as authenticator - https://certbot.eff.org/docs/using.html Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
https://fenix.bariumlive.net
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://fenix.bariumlive.net/ 212.237.150.22
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://fenix.bariumlive.net/ 212.237.150.195
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://fenix.bariumlive.net/ 212.237.150.246
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://fenix.bariumlive.net
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://fenix.bariumlive.net/ 212.237.150.22
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://fenix.bariumlive.net/ 212.237.150.195
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://fenix.bariumlive.net/ 212.237.150.246
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
AGood: Every https connection via port 443 supports the http/2 protocol via ALPN.
AGood: Some script Elements (type text/javascript) with a src-Attribute have a defer / async - Attribute. So loading and executing these JavaScripts doesn't block parsing and rendering the Html-Output.
https://fenix.bariumlive.net
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 1 script elements without defer/async.
https://fenix.bariumlive.net/ 212.237.150.22
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 1 script elements without defer/async.
https://fenix.bariumlive.net/ 212.237.150.195
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 1 script elements without defer/async.
https://fenix.bariumlive.net/ 212.237.150.246
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 1 script elements without defer/async.
https://fenix.bariumlive.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 1 script elements without defer/async.
Warning: CSS / JavaScript found without GZip support. Send these ressources with GZip. 15 external CSS / JavaScript files without GZip found - 0 with GZip, 15 complete
Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 0 external CSS / JavaScript files without Cache-Control-Header, 15 with Cache-Control, but no max-age, 0 with Cache-Control max-age too short (minimum 7 days), 0 with Cache-Control long enough, 15 complete.
AGood: All checked attribute values are enclosed in quotation marks (" or ').
AInfo: No img element found, no alt attribute checked
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
https://www.fenix.bariumlive.net/ 212.237.150.22
404
2.417 seconds
Warning: 404 needs more then one second
https://www.fenix.bariumlive.net/ 212.237.150.195
404
2.413 seconds
Warning: 404 needs more then one second
https://www.fenix.bariumlive.net/ 212.237.150.246
404
2.424 seconds
Warning: 404 needs more then one second
https://212.237.150.22/ 212.237.150.22
404
2.414 seconds
Warning: 404 needs more then one second
https://212.237.150.195/ 212.237.150.195
404
2.403 seconds
Warning: 404 needs more then one second
https://212.237.150.246/ 212.237.150.246
404
2.444 seconds
Warning: 404 needs more then one second
ADuration: 159150 milliseconds, 159.150 seconds


8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
fenix.bariumlive.net
fenix.bariumlive.net
443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
fenix.bariumlive.net
fenix.bariumlive.net
443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain (complete)
1CN=*.bariumlive.net

2CN=R3, O=Let's Encrypt, C=US


fenix.bariumlive.net
212.237.150.22
443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

fenix.bariumlive.net
212.237.150.22
443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain (complete)
1CN=*.bariumlive.net

2CN=R3, O=Let's Encrypt, C=US


fenix.bariumlive.net
212.237.150.195
443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

fenix.bariumlive.net
212.237.150.195
443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain (complete)
1CN=*.bariumlive.net

2CN=R3, O=Let's Encrypt, C=US


fenix.bariumlive.net
212.237.150.246
443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

fenix.bariumlive.net
212.237.150.246
443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain (complete)
1CN=*.bariumlive.net

2CN=R3, O=Let's Encrypt, C=US


www.fenix.bariumlive.net
212.237.150.22
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

www.fenix.bariumlive.net
212.237.150.22
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
Self signed certificate
1CN=Kubernetes Ingress Controller Fake Certificate, O=Acme Co


www.fenix.bariumlive.net
212.237.150.195
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

www.fenix.bariumlive.net
212.237.150.195
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
Self signed certificate
1CN=Kubernetes Ingress Controller Fake Certificate, O=Acme Co


www.fenix.bariumlive.net
212.237.150.246
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

www.fenix.bariumlive.net
212.237.150.246
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
Self signed certificate
1CN=Kubernetes Ingress Controller Fake Certificate, O=Acme Co


212.237.150.22
212.237.150.22
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

212.237.150.22
212.237.150.22
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
Self signed certificate
1CN=Kubernetes Ingress Controller Fake Certificate, O=Acme Co


212.237.150.195
212.237.150.195
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

212.237.150.195
212.237.150.195
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
Self signed certificate
1CN=Kubernetes Ingress Controller Fake Certificate, O=Acme Co


212.237.150.246
212.237.150.246
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

212.237.150.246
212.237.150.246
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
Self signed certificate
1CN=Kubernetes Ingress Controller Fake Certificate, O=Acme Co


9. Certificates

1.
1.
CN=*.bariumlive.net
04.05.2021
02.08.2021
expires in 81 days
*.bariumlive.net - 1 entry
1.
1.
CN=*.bariumlive.net
04.05.2021

02.08.2021
expires in 81 days
*.bariumlive.net - 1 entry

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:04BE387318D9866ADED53AF462E8057F7CA8
Thumbprint:9E2B0EFD91D8F9B5031B0DDB14BD91DA8C910CBA
SHA256 / Certificate:J9brIlkngkc1TVxIrm8feQC4NgXKIwF6Q7dsaJVZ/bc=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):3a74e8419fa10dbc7e084cd8f78e1beae274c9cbe46a8c368099c8a2cdbfe0e1
SHA256 hex / Subject Public Key Information (SPKI):a741ce8bc198e21c134ead02e83587841ec5add1aa1dd3466fd8dffcf91601d9
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://r3.o.lencr.org
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=R3, O=Let's Encrypt, C=US
07.10.2020
29.09.2021
expires in 139 days


2.
CN=R3, O=Let's Encrypt, C=US
07.10.2020

29.09.2021
expires in 139 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:400175048314A4C8218C84A90C16CDDF
Thumbprint:48504E974C0DAC5B5CD476C8202274B24C8C7172
SHA256 / Certificate:cwwb3NhfV85dwLunM+XxulqSWyp3HWQKJvekVCJNrTs=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


3.
CN=DST Root CA X3, O=Digital Signature Trust Co.
30.09.2000
30.09.2021
expires in 140 days


3.
CN=DST Root CA X3, O=Digital Signature Trust Co.
30.09.2000

30.09.2021
expires in 140 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:44AFB080D6A327BA893039862EF8406B
Thumbprint:DAC9024F54D8F6DF94935FB1732638CA6AD77C13
SHA256 / Certificate:BocmAzGnJAPZCfEF5pvPDTLhvSST/8bZIG0RvNZ3Bzk=
SHA256 hex / Cert (DANE * 0 1):0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739
SHA256 hex / PublicKey (DANE * 1 1):563b3caf8cfef34c2335caf560a7a95906e8488462eb75ac59784830df9e5b2b
SHA256 hex / Subject Public Key Information (SPKI):29cc40db5e2de462a311cbbafaa1dc466960002335ecdf3317f2cd05c1d0bedf
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


2.
1.
CN=Kubernetes Ingress Controller Fake Certificate, O=Acme Co
30.03.2021
30.03.2022
expires in 321 days
ingress.local - 1 entry
2.
1.
CN=Kubernetes Ingress Controller Fake Certificate, O=Acme Co
30.03.2021

30.03.2022
expires in 321 days
ingress.local - 1 entry

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:009F3265C802C330F9443FD6FC3528135E
Thumbprint:A46738479C6661539F75D87B24AE53212DE2C740
SHA256 / Certificate:D4ri2x92W198ogbUoqrXjtJR7Hg1kb96hgJLUkY75fk=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):3242a34e863a982be97d009341a2650c0982e8fd10ca973898a9e2282f85b743
SHA256 hex / Subject Public Key Information (SPKI):975022dc3e2cbe2413587cbe2e57965ae2579eb305a3e87888b5f651030bc1c8
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

UntrustedRoot: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.

3.
1.
CN=Kubernetes Ingress Controller Fake Certificate, O=Acme Co
07.04.2021
07.04.2022
expires in 329 days
ingress.local - 1 entry
3.
1.
CN=Kubernetes Ingress Controller Fake Certificate, O=Acme Co
07.04.2021

07.04.2022
expires in 329 days
ingress.local - 1 entry

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:00EBD4BC27486097FB057CE6275BCAD576
Thumbprint:F2421BE83EEDE34F942104F86283BA517B7616AF
SHA256 / Certificate:kgXUBSkis3mKaA2o6JE6z7YB95L/ur8d7zZrDFn0K0A=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):11218de995ea7c53fdc908d3faa0724c8674345c31a1bec35ff8bad444f091c3
SHA256 hex / Subject Public Key Information (SPKI):5df5fd117d0099c4ceb53e8aa321d0a4333e2280d8ffd26eb5c3573f75e710b8
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

UntrustedRoot: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.

4.
1.
CN=Kubernetes Ingress Controller Fake Certificate, O=Acme Co
10.03.2021
10.03.2022
expires in 301 days
ingress.local - 1 entry
4.
1.
CN=Kubernetes Ingress Controller Fake Certificate, O=Acme Co
10.03.2021

10.03.2022
expires in 301 days
ingress.local - 1 entry

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:5AC244EAA5465FB37D80984892D9B408
Thumbprint:001ABF976BDDC37780D913C5E32B41FB925B3DA8
SHA256 / Certificate:s0KVbZEaI+tMougJqt9gojRIRT23EKF0MH2KXOuFYeA=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):5652c0b172d8f32d4dddbe193ce5ec7f353cc01dc7909fc233f05c3c3542cc0d
SHA256 hex / Subject Public Key Information (SPKI):caf2ddf9ed8dbffcb0afb2f327ced34f490654c0f2d0912c96f0c54fc7595ffb
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

UntrustedRoot: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.


10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

No CertSpotter - CT-Log entries found


2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > 2019 are listed

Issuerlast 7 daysactivenum Certs
CN=R3, O=Let's Encrypt, C=US
0 /0 new
6
7
CN=Amazon, OU=Server CA 1B, O=Amazon, C=US
0
0
1

CRT-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
4472250024
leaf cert
CN=R3, O=Let's Encrypt, C=US
2021-05-04 08:45:25
2021-08-02 08:45:25
*.bariumlive.net
1 entries


4472237517
precert
CN=R3, O=Let's Encrypt, C=US
2021-05-04 08:41:25
2021-08-02 08:41:25
*.bariumlive.net
1 entries


4472229960
leaf cert
CN=R3, O=Let's Encrypt, C=US
2021-05-04 08:39:18
2021-08-02 08:39:18
*.bariumlive.net
1 entries


4472175309
leaf cert
CN=R3, O=Let's Encrypt, C=US
2021-05-04 08:24:14
2021-08-02 08:24:14
*.bariumlive.net
1 entries


4472020997
precert
CN=R3, O=Let's Encrypt, C=US
2021-05-04 07:41:09
2021-08-02 07:41:09
*.bariumlive.net
1 entries


4334261780
precert
CN=R3, O=Let's Encrypt, C=US
2021-04-06 04:33:41
2021-07-05 04:33:41
*.bariumlive.net
1 entries


3897133787
precert
CN=R3, O=Let's Encrypt, C=US
2021-01-08 14:03:27
2021-04-08 13:03:27
*.bariumlive.net
1 entries


2673495109
precert
CN=Amazon, OU=Server CA 1B, O=Amazon, C=US
2020-04-05 22:00:00
2021-05-06 10:00:00
*.bariumlive.net
1 entries



11. Html-Content - Entries

Summary

Subresource Integrity (SRI)
DomainnameHtmlElementrel/property∑ size∑ problems∑ int.∑ ext.∑ Origin poss.∑ SRI ParseErrors∑ SRI valid∑ SRI missing
https://fenix.bariumlive.net
meta
other
3

0


0
0
0


script

3
707,047 Bytes
0
3
0
0
0
0

https://fenix.bariumlive.net/
212.237.150.22
meta
other
3

0


0
0
0


script

3
707,047 Bytes
0
3
0
0
0
0

https://fenix.bariumlive.net/
212.237.150.195
meta
other
3

0


0
0
0


script

3
707,047 Bytes
0
3
0
0
0
0

https://fenix.bariumlive.net/
212.237.150.246
meta
other
3

0


0
0
0


script

3
707,047 Bytes
0
3
0
0
0
0

Details

DomainnameHtml-Elementname/equiv/ property/relhref/src/contentHttpStatusmsgStatus
https://fenix.bariumlive.net

meta

UTF-8


1
ok








meta
X-UA-Compatible
ie=edge


1
ok








meta
viewport
width=device-width,initial-scale=1,maximum-scale=1,user-scalable=no


1
ok








script
src
/js/316.76eb29d629ca390c5c18.bundle.js
200

1
ok
defer attribute found application/javascript, X-Content-Type-Options nosniff found

Cache-Control: no-cache, no-store, public, must-revalidate, proxy-revalidate - max-age missing.
GZip required: 616287 Bytes




local SRI possible, possible hash-values:

sha256-zmWkqi+JaK8IWLJjw2HkjV3ODBCAlPZgm2nsx0yb+yE=
sha384-iPpB5EaGHr2RhodXy4dhAyMyNuh1HU36gUIxD7QCrGXujbIzEHPPEpd68P4Kh9Vz
sha512-NbK3ieTyVDX6AQ/kK5Gq/Vc7ANdHp+AdSPD/q12K54CKKQdLyW2jxppEbbmKq0SSNysUVZjtG05KFSDeoFzC7Q==

<script src="/js/316.76eb29d629ca390c5c18.bundle.js" crossorigin="anonymous" integrity="sha256-zmWkqi+JaK8IWLJjw2HkjV3ODBCAlPZgm2nsx0yb+yE=" />




script
src
/js/main.a3884e505fa77b61d9cb.bundle.js
200

1
ok
defer attribute found application/javascript, X-Content-Type-Options nosniff found

Cache-Control: no-cache, no-store, public, must-revalidate, proxy-revalidate - max-age missing.
GZip required: 90760 Bytes




local SRI possible, possible hash-values:

sha256-rToStJoopMPxR4BF5iJX0u9fIH4qbQW7lZdtpHoOwi0=
sha384-OwTVlp97IyzsIn72T0Yq2E16qrYv+FzpyCz7DagSY2xpEkZ/kgEnzL8hV1OH51/3
sha512-qdIKv+LQwt45MklLlXaTJ2h+fkyPf7zY0ZAq65XPPsRVRrMWFPmtf/OQDVUWr20281pm8wbsdu4EkY2/nnGPEA==

<script src="/js/main.a3884e505fa77b61d9cb.bundle.js" crossorigin="anonymous" integrity="sha256-rToStJoopMPxR4BF5iJX0u9fIH4qbQW7lZdtpHoOwi0=" />




script
src
/keycloak/keycloak.min.js
200

1
ok
Missing defer / async attribute. text/javascript, X-Content-Type-Options nosniff found

Cache-Control: no-store - max-age missing.
GZip required: 38572 Bytes




local SRI possible, possible hash-values:

sha256-ymwxpOWp1GTEJCIokWY8wZgUGQ17qWhY/3iQAMSSX24=
sha384-dfYy/xfduwE+m9gwPhPQql/Qg0KznZjdb6ae2atlwhq645/84c6rbws3QUOj3lOD
sha512-n71W/Ppim95+fcKmxPda6Zjnef4Wi0utZVc0DgCZOIVaNpVxCUDjUByY/qVhHryXkIJRJ5V88imMBjUoPC34HA==

<script src="/keycloak/keycloak.min.js" crossorigin="anonymous" integrity="sha256-ymwxpOWp1GTEJCIokWY8wZgUGQ17qWhY/3iQAMSSX24=" />



212.237.150.22
meta

UTF-8


1
ok








meta
X-UA-Compatible
ie=edge


1
ok








meta
viewport
width=device-width,initial-scale=1,maximum-scale=1,user-scalable=no


1
ok








script
src
/js/316.76eb29d629ca390c5c18.bundle.js
200

1
ok
defer attribute found application/javascript, X-Content-Type-Options nosniff found

Cache-Control: no-cache, no-store, public, must-revalidate, proxy-revalidate - max-age missing.
GZip required: 616287 Bytes




local SRI possible, possible hash-values:

sha256-zmWkqi+JaK8IWLJjw2HkjV3ODBCAlPZgm2nsx0yb+yE=
sha384-iPpB5EaGHr2RhodXy4dhAyMyNuh1HU36gUIxD7QCrGXujbIzEHPPEpd68P4Kh9Vz
sha512-NbK3ieTyVDX6AQ/kK5Gq/Vc7ANdHp+AdSPD/q12K54CKKQdLyW2jxppEbbmKq0SSNysUVZjtG05KFSDeoFzC7Q==

<script src="/js/316.76eb29d629ca390c5c18.bundle.js" crossorigin="anonymous" integrity="sha256-zmWkqi+JaK8IWLJjw2HkjV3ODBCAlPZgm2nsx0yb+yE=" />




script
src
/js/main.a3884e505fa77b61d9cb.bundle.js
200

1
ok
defer attribute found application/javascript, X-Content-Type-Options nosniff found

Cache-Control: no-cache, no-store, public, must-revalidate, proxy-revalidate - max-age missing.
GZip required: 90760 Bytes




local SRI possible, possible hash-values:

sha256-rToStJoopMPxR4BF5iJX0u9fIH4qbQW7lZdtpHoOwi0=
sha384-OwTVlp97IyzsIn72T0Yq2E16qrYv+FzpyCz7DagSY2xpEkZ/kgEnzL8hV1OH51/3
sha512-qdIKv+LQwt45MklLlXaTJ2h+fkyPf7zY0ZAq65XPPsRVRrMWFPmtf/OQDVUWr20281pm8wbsdu4EkY2/nnGPEA==

<script src="/js/main.a3884e505fa77b61d9cb.bundle.js" crossorigin="anonymous" integrity="sha256-rToStJoopMPxR4BF5iJX0u9fIH4qbQW7lZdtpHoOwi0=" />




script
src
/keycloak/keycloak.min.js
200

1
ok
Missing defer / async attribute. text/javascript, X-Content-Type-Options nosniff found

Cache-Control: no-store - max-age missing.
GZip required: 38572 Bytes




local SRI possible, possible hash-values:

sha256-ymwxpOWp1GTEJCIokWY8wZgUGQ17qWhY/3iQAMSSX24=
sha384-dfYy/xfduwE+m9gwPhPQql/Qg0KznZjdb6ae2atlwhq645/84c6rbws3QUOj3lOD
sha512-n71W/Ppim95+fcKmxPda6Zjnef4Wi0utZVc0DgCZOIVaNpVxCUDjUByY/qVhHryXkIJRJ5V88imMBjUoPC34HA==

<script src="/keycloak/keycloak.min.js" crossorigin="anonymous" integrity="sha256-ymwxpOWp1GTEJCIokWY8wZgUGQ17qWhY/3iQAMSSX24=" />



https://fenix.bariumlive.net/
212.237.150.195
meta

UTF-8


1
ok








meta
X-UA-Compatible
ie=edge


1
ok








meta
viewport
width=device-width,initial-scale=1,maximum-scale=1,user-scalable=no


1
ok








script
src
/js/316.76eb29d629ca390c5c18.bundle.js
200

1
ok
defer attribute found application/javascript, X-Content-Type-Options nosniff found

Cache-Control: no-cache, no-store, public, must-revalidate, proxy-revalidate - max-age missing.
GZip required: 616287 Bytes




local SRI possible, possible hash-values:

sha256-zmWkqi+JaK8IWLJjw2HkjV3ODBCAlPZgm2nsx0yb+yE=
sha384-iPpB5EaGHr2RhodXy4dhAyMyNuh1HU36gUIxD7QCrGXujbIzEHPPEpd68P4Kh9Vz
sha512-NbK3ieTyVDX6AQ/kK5Gq/Vc7ANdHp+AdSPD/q12K54CKKQdLyW2jxppEbbmKq0SSNysUVZjtG05KFSDeoFzC7Q==

<script src="/js/316.76eb29d629ca390c5c18.bundle.js" crossorigin="anonymous" integrity="sha256-zmWkqi+JaK8IWLJjw2HkjV3ODBCAlPZgm2nsx0yb+yE=" />




script
src
/js/main.a3884e505fa77b61d9cb.bundle.js
200

1
ok
defer attribute found application/javascript, X-Content-Type-Options nosniff found

Cache-Control: no-cache, no-store, public, must-revalidate, proxy-revalidate - max-age missing.
GZip required: 90760 Bytes




local SRI possible, possible hash-values:

sha256-rToStJoopMPxR4BF5iJX0u9fIH4qbQW7lZdtpHoOwi0=
sha384-OwTVlp97IyzsIn72T0Yq2E16qrYv+FzpyCz7DagSY2xpEkZ/kgEnzL8hV1OH51/3
sha512-qdIKv+LQwt45MklLlXaTJ2h+fkyPf7zY0ZAq65XPPsRVRrMWFPmtf/OQDVUWr20281pm8wbsdu4EkY2/nnGPEA==

<script src="/js/main.a3884e505fa77b61d9cb.bundle.js" crossorigin="anonymous" integrity="sha256-rToStJoopMPxR4BF5iJX0u9fIH4qbQW7lZdtpHoOwi0=" />




script
src
/keycloak/keycloak.min.js
200

1
ok
Missing defer / async attribute. text/javascript, X-Content-Type-Options nosniff found

Cache-Control: no-store - max-age missing.
GZip required: 38572 Bytes




local SRI possible, possible hash-values:

sha256-ymwxpOWp1GTEJCIokWY8wZgUGQ17qWhY/3iQAMSSX24=
sha384-dfYy/xfduwE+m9gwPhPQql/Qg0KznZjdb6ae2atlwhq645/84c6rbws3QUOj3lOD
sha512-n71W/Ppim95+fcKmxPda6Zjnef4Wi0utZVc0DgCZOIVaNpVxCUDjUByY/qVhHryXkIJRJ5V88imMBjUoPC34HA==

<script src="/keycloak/keycloak.min.js" crossorigin="anonymous" integrity="sha256-ymwxpOWp1GTEJCIokWY8wZgUGQ17qWhY/3iQAMSSX24=" />



212.237.150.246
meta

UTF-8


1
ok








meta
X-UA-Compatible
ie=edge


1
ok








meta
viewport
width=device-width,initial-scale=1,maximum-scale=1,user-scalable=no


1
ok








script
src
/js/316.76eb29d629ca390c5c18.bundle.js
200

1
ok
defer attribute found application/javascript, X-Content-Type-Options nosniff found

Cache-Control: no-cache, no-store, public, must-revalidate, proxy-revalidate - max-age missing.
GZip required: 616287 Bytes




local SRI possible, possible hash-values:

sha256-zmWkqi+JaK8IWLJjw2HkjV3ODBCAlPZgm2nsx0yb+yE=
sha384-iPpB5EaGHr2RhodXy4dhAyMyNuh1HU36gUIxD7QCrGXujbIzEHPPEpd68P4Kh9Vz
sha512-NbK3ieTyVDX6AQ/kK5Gq/Vc7ANdHp+AdSPD/q12K54CKKQdLyW2jxppEbbmKq0SSNysUVZjtG05KFSDeoFzC7Q==

<script src="/js/316.76eb29d629ca390c5c18.bundle.js" crossorigin="anonymous" integrity="sha256-zmWkqi+JaK8IWLJjw2HkjV3ODBCAlPZgm2nsx0yb+yE=" />




script
src
/js/main.a3884e505fa77b61d9cb.bundle.js
200

1
ok
defer attribute found application/javascript, X-Content-Type-Options nosniff found

Cache-Control: no-cache, no-store, public, must-revalidate, proxy-revalidate - max-age missing.
GZip required: 90760 Bytes




local SRI possible, possible hash-values:

sha256-rToStJoopMPxR4BF5iJX0u9fIH4qbQW7lZdtpHoOwi0=
sha384-OwTVlp97IyzsIn72T0Yq2E16qrYv+FzpyCz7DagSY2xpEkZ/kgEnzL8hV1OH51/3
sha512-qdIKv+LQwt45MklLlXaTJ2h+fkyPf7zY0ZAq65XPPsRVRrMWFPmtf/OQDVUWr20281pm8wbsdu4EkY2/nnGPEA==

<script src="/js/main.a3884e505fa77b61d9cb.bundle.js" crossorigin="anonymous" integrity="sha256-rToStJoopMPxR4BF5iJX0u9fIH4qbQW7lZdtpHoOwi0=" />




script
src
/keycloak/keycloak.min.js
200

1
ok
Missing defer / async attribute. text/javascript, X-Content-Type-Options nosniff found

Cache-Control: no-store - max-age missing.
GZip required: 38572 Bytes




local SRI possible, possible hash-values:

sha256-ymwxpOWp1GTEJCIokWY8wZgUGQ17qWhY/3iQAMSSX24=
sha384-dfYy/xfduwE+m9gwPhPQql/Qg0KznZjdb6ae2atlwhq645/84c6rbws3QUOj3lOD
sha512-n71W/Ppim95+fcKmxPda6Zjnef4Wi0utZVc0DgCZOIVaNpVxCUDjUByY/qVhHryXkIJRJ5V88imMBjUoPC34HA==

<script src="/keycloak/keycloak.min.js" crossorigin="anonymous" integrity="sha256-ymwxpOWp1GTEJCIokWY8wZgUGQ17qWhY/3iQAMSSX24=" />




12. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: ns-1246.awsdns-27.org, ns-1594.awsdns-07.co.uk, ns-348.awsdns-43.com, ns-555.awsdns-05.net

QNr.DomainTypeNS used
1
org
NS
d.root-servers.net (2001:500:2d::d)

Answer: a0.org.afilias-nst.info, a2.org.afilias-nst.info, b0.org.afilias-nst.org, b2.org.afilias-nst.org, c0.org.afilias-nst.info, d0.org.afilias-nst.org
2
ns-1246.awsdns-27.org
NS
a0.org.afilias-nst.info (2001:500:e::1)

Answer: g-ns-1054.awsdns-27.org, g-ns-155.awsdns-27.org, g-ns-1627.awsdns-27.org, g-ns-733.awsdns-27.org

Answer: g-ns-1054.awsdns-27.org
205.251.196.30, 2600:9000:5304:1e00::1

Answer: g-ns-155.awsdns-27.org
205.251.192.155, 2600:9000:5300:9b00::1

Answer: g-ns-1627.awsdns-27.org
205.251.198.91, 2600:9000:5306:5b00::1

Answer: g-ns-733.awsdns-27.org
205.251.194.221, 2600:9000:5302:dd00::1
3
uk
NS
e.root-servers.net (2001:500:a8::e)

Answer: dns1.nic.uk, dns2.nic.uk, dns3.nic.uk, dns4.nic.uk, nsa.nic.uk, nsb.nic.uk, nsc.nic.uk, nsd.nic.uk
4
ns-1594.awsdns-07.co.uk
NS
dns1.nic.uk (2a01:618:400::1)

Answer: g-ns-1482.awsdns-07.co.uk, g-ns-1803.awsdns-07.co.uk, g-ns-327.awsdns-07.co.uk, g-ns-903.awsdns-07.co.uk

Answer: g-ns-1482.awsdns-07.co.uk
205.251.197.202, 2600:9000:5305:ca00::1

Answer: g-ns-1803.awsdns-07.co.uk
205.251.199.11, 2600:9000:5307:b00::1

Answer: g-ns-327.awsdns-07.co.uk
205.251.193.71, 2600:9000:5301:4700::1

Answer: g-ns-903.awsdns-07.co.uk
205.251.195.135, 2600:9000:5303:8700::1
5
com
NS
f.root-servers.net (2001:500:2f::f)

Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
6
ns-348.awsdns-43.com
NS
b.gtld-servers.net (192.33.14.30)

Answer: g-ns-1195.awsdns-43.com, g-ns-1771.awsdns-43.com, g-ns-44.awsdns-43.com, g-ns-619.awsdns-43.com

Answer: g-ns-1195.awsdns-43.com
205.251.196.171, 2600:9000:5304:ab00::1

Answer: g-ns-1771.awsdns-43.com
205.251.198.235, 2600:9000:5306:eb00::1

Answer: g-ns-44.awsdns-43.com
205.251.192.44, 2600:9000:5300:2c00::1

Answer: g-ns-619.awsdns-43.com
205.251.194.107, 2600:9000:5302:6b00::1
7
net
NS
b.root-servers.net (2001:500:200::b)

Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
8
ns-555.awsdns-05.net
NS
a.gtld-servers.net (2001:503:a83e::2:30)

Answer: g-ns-1349.awsdns-05.net, g-ns-1925.awsdns-05.net, g-ns-454.awsdns-05.net, g-ns-775.awsdns-05.net

Answer: g-ns-1349.awsdns-05.net
205.251.197.69, 2600:9000:5305:4500::1

Answer: g-ns-1925.awsdns-05.net
205.251.199.133, 2600:9000:5307:8500::1

Answer: g-ns-454.awsdns-05.net
205.251.193.198, 2600:9000:5301:c600::1

Answer: g-ns-775.awsdns-05.net
205.251.195.7, 2600:9000:5303:700::1
9
ns-1246.awsdns-27.org: 205.251.196.222
A
g-ns-1054.awsdns-27.org (2600:9000:5304:1e00::1)
10
ns-1246.awsdns-27.org: 2600:9000:5304:de00::1
AAAA
g-ns-1054.awsdns-27.org (2600:9000:5304:1e00::1)
11
ns-1594.awsdns-07.co.uk: 205.251.198.58
A
g-ns-1482.awsdns-07.co.uk (2600:9000:5305:ca00::1)
12
ns-1594.awsdns-07.co.uk: 2600:9000:5306:3a00::1
AAAA
g-ns-1482.awsdns-07.co.uk (2600:9000:5305:ca00::1)
13
ns-348.awsdns-43.com: 205.251.193.92
A
g-ns-1195.awsdns-43.com (2600:9000:5304:ab00::1)
14
ns-348.awsdns-43.com: 2600:9000:5301:5c00::1
AAAA
g-ns-1195.awsdns-43.com (2600:9000:5304:ab00::1)
15
ns-555.awsdns-05.net: 205.251.194.43
A
g-ns-1349.awsdns-05.net (2600:9000:5305:4500::1)
16
ns-555.awsdns-05.net: 2600:9000:5302:2b00::1
AAAA
g-ns-1349.awsdns-05.net (2600:9000:5305:4500::1)


13. CAA - Entries

DomainnameflagNameValue∑ Queries∑ Timeout
www.fenix.bariumlive.net
0

no CAA entry found
1
0
fenix.bariumlive.net
0

no CAA entry found
1
0
bariumlive.net
0

no CAA entry found
1
0
net
0

no CAA entry found
1
0


14. TXT - Entries

DomainnameTXT EntryStatus∑ Queries∑ Timeout
bariumlive.net

ok
1
0
fenix.bariumlive.net

ok
1
0
www.fenix.bariumlive.net

ok
1
0
_acme-challenge.fenix.bariumlive.net

missing entry or wrong length
1
0
_acme-challenge.www.fenix.bariumlive.net

missing entry or wrong length
1
0
_acme-challenge.fenix.bariumlive.net.bariumlive.net

perhaps wrong
1
0
_acme-challenge.fenix.bariumlive.net.fenix.bariumlive.net

perhaps wrong
1
0
_acme-challenge.www.fenix.bariumlive.net.fenix.bariumlive.net

perhaps wrong
1
0
_acme-challenge.www.fenix.bariumlive.net.www.fenix.bariumlive.net

perhaps wrong
1
0


15. Portchecks

No Port checks



Permalink: https://check-your-website.server-daten.de/?i=28fb148b-8bc1-4e59-9d1e-e51e7f465acc


Last Result: https://check-your-website.server-daten.de/?q=fenix.bariumlive.net - 2021-05-04 14:31:58


Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=fenix.bariumlive.net" target="_blank">Check this Site: fenix.bariumlive.net</a>