Check DNS, Urls + Redirects, Certificates and Content of your Website

...

skip EDNS-Check

skip Content-Check

check links

old / weak connection

Checked:
30.01.2026 13:06:23

Older results

O - 11.02.2025 02:28:05

O - 10.01.2025 16:16:43

O - 21.01.2023 06:38:39

1. IP-Addresses

Host	Type	IP-Address	is auth.	∑ Queries	∑ Timeout
joker.com	A	194.245.148.200 Frankfurt am Main/Hesse/Germany (DE) - CSL Computer Service Langenbach GmbH Hostname: www.joker.com	yes	1	0
	AAAA		yes
www.joker.com	A	194.245.148.200 Frankfurt am Main/Hesse/Germany (DE) - CSL Computer Service Langenbach GmbH Hostname: www.joker.com	yes	1	0
	AAAA		yes
*.joker.com	A	Name Error	yes
	AAAA	Name Error	yes
	CNAME	Name Error	yes

2. DNSSEC

Zone (*)	DNSSEC - Informations

Zone: (root)
(root)	1 DS RR published


	DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=


	• Status: Valid because published


	3 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 21831, Flags 256


	Public Key with Algorithm 8, KeyTag 38696, Flags 257 (SEP = Secure Entry Point)


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 11.02.2026, 00:00:00 +, Signature-Inception: 21.01.2026, 00:00:00 +, KeyTag 20326, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: com
com	1 DS RR in the parent zone found


	DS with Algorithm 13, KeyTag 19718, DigestType 2 and Digest isuwzSj0ElCoCkkTiUJNNBUi2Uaw2gwCkfLT13HXgFo=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 12.02.2026, 05:00:00 +, Signature-Inception: 30.01.2026, 04:00:00 +, KeyTag 21831, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 21831 used to validate the DS RRSet in the parent zone


	2 DNSKEY RR found


	Public Key with Algorithm 13, KeyTag 19718, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 13, KeyTag 35511, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner com., Algorithm: 13, 1 Labels, original TTL: 86400 sec, Signature-expiration: 11.02.2026, 15:02:35 +, Signature-Inception: 27.01.2026, 14:57:35 +, KeyTag 19718, Signer-Name: com


	• Status: Good - Algorithmus 13 and DNSKEY with KeyTag 19718 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 19718, DigestType 2 and Digest "isuwzSj0ElCoCkkTiUJNNBUi2Uaw2gwCkfLT13HXgFo=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: joker.com
joker.com	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "u7p2f8qhh44hksgjvfujimq48k3rhvj5" between the hashed NSEC3-owner "u7p2dorhdp587clqkv70brrfpcugc5t1" and the hashed NextOwner "u7p2flv7cafkkuksqvkabhdtduovifps". So the parent zone confirmes the not-existence of a DS RR. Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner u7p2dorhdp587clqkv70brrfpcugc5t1.com., Algorithm: 13, 2 Labels, original TTL: 900 sec, Signature-expiration: 04.02.2026, 01:48:22 +, Signature-Inception: 28.01.2026, 00:38:22 +, KeyTag 35511, Signer-Name: com


	DS-Query in the parent zone sends valid NSEC3 RR with the Hash "ck0pojmg874ljref7efn8430qvit8bsm" as Owner. That's the Hash of "com" with the NextHashedOwnerName "ck0q3udg8cekkae7rukpgct1dvssh8ll". So that domain name is the Closest Encloser of "joker.com". Opt-Out: True. Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner ck0pojmg874ljref7efn8430qvit8bsm.com., Algorithm: 13, 2 Labels, original TTL: 900 sec, Signature-expiration: 03.02.2026, 00:27:13 +, Signature-Inception: 26.01.2026, 23:17:13 +, KeyTag 35511, Signer-Name: com


	0 DNSKEY RR found




Zone: www.joker.com
www.joker.com	0 DS RR in the parent zone found

3. Name Servers

Domain	Nameserver	NS-IP
www.joker.com	• x.ns.joker.com / dns		•
joker.com	• x.ns.joker.com / dns	194.245.103.13 Düsseldorf/North Rhine-Westphalia/Germany (DE) - CSL-GMBH	•
	• y.ns.joker.com / dns	23.88.49.189 Nuremberg/Bavaria/Germany (DE) - Hetzner Online GmbH	•
	•	2a01:4f8:c0c:165b::1 Nuremberg/Bavaria/Germany (DE) - Hetzner	•
	• z.ns.joker.com / dns	192.95.37.184 Montreal/Quebec/Canada (CA) - OVH SAS	•
	•	2607:5300:203:7e6d::2222 Montreal/Quebec/Canada (CA) - OVH SAS	•
com	• a.gtld-servers.net / nnn1-defra-5		•
	• b.gtld-servers.net / nnn1-elwaw4		•
	• c.gtld-servers.net / nnn1-par6		•
	• d.gtld-servers.net / nnn1-defra-5		•
	• e.gtld-servers.net / nnn1-defra-5		•
	• f.gtld-servers.net / nnn1-defra-4		•
	• g.gtld-servers.net / nnn1-defra-4		•
	• h.gtld-servers.net / nnn1-defra-4		•
	• i.gtld-servers.net / nnn1-defra-4		•
	• j.gtld-servers.net / nnn1-frmrs-2		•
	• k.gtld-servers.net / nnn1-frmrs-2		•
	• l.gtld-servers.net / nnn1-frmrs-2		•
	• m.gtld-servers.net / nnn1-frmrs-2		•

4. SOA-Entries

Domain:	com
Zone-Name:	com
Primary:	a.gtld-servers.net
Mail:	nstld.verisign-grs.com
Serial:	1769774754
Refresh:	1800
Retry:	900
Expire:	604800
TTL:	900
num Entries:	1

Domain:	com
Zone-Name:	com
Primary:	a.gtld-servers.net
Mail:	nstld.verisign-grs.com
Serial:	1769774769
Refresh:	1800
Retry:	900
Expire:	604800
TTL:	900
num Entries:	12

Domain:	joker.com
Zone-Name:	joker.com
Primary:	x.ns.joker.com
Mail:	hostmaster.joker.com
Serial:	2026011934
Refresh:	14400
Retry:	3600
Expire:	1209600
TTL:	300
num Entries:	5

Domain:	www.joker.com
Zone-Name:	joker.com
Primary:	x.ns.joker.com
Mail:	hostmaster.joker.com
Serial:	2026011934
Refresh:	14400
Retry:	3600
Expire:	1209600
TTL:	300
num Entries:	1

5. Screenshots

Startaddress: https://joker.com/, address used: https://joker.com/, Screenshot created 2026-01-30 13:13:06 +00:0

Mobil (412px x 732px)

676 milliseconds

Mobil + Landscape (732px x 412px)

598 milliseconds

Screenshot mobile landscape - https://joker.com/

Screen (1280px x 1680px)

1007 milliseconds

Mobile- and other Chrome-Checks

	width	height
visual Viewport	397	732
content Size	397	3097

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

6. Url-Checks

show header:

Domainname	Http-Status	redirect	Sec.	G
• http://joker.com/ 194.245.148.200	302	https://joker.com/ Html is minified: 100.00 %	0.040	A
Location: https://joker.com/
Content-Type: text/html
Content-Length: 154

• http://www.joker.com/ 194.245.148.200	302	https://joker.com/ Html is minified: 100.00 %	0.023	E
Location: https://joker.com/
Content-Type: text/html
Content-Length: 154

• https://www.joker.com/ 194.245.148.200	301	https://joker.com/ Html is minified: 109.46 %	3.370	B
Date: Fri, 30 Jan 2026 12:07:14 GMT
Connection: keep-alive
Location: https://joker.com/
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: *
Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private
Set-Cookie: ZLBSYS=WEB1; expires=Fri, 30-Jan-2026 12:17:14 GMT; path=/; secure; HttpOnly
Content-Type: text/html
Content-Length: 162

• https://joker.com/ 194.245.148.200 gzip used - 21156 / 88584 - 76.12 % Inline-JavaScript (∑/total): 1/514 Inline-CSS (∑/total): 0/0	200	Html is minified: 179.81 % Other inline scripts (∑/total): 0/0	3.570	I
Date: Fri, 30 Jan 2026 12:07:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: Joker_Session=d652ih1ri34a1m0jnrns4of8ec; path=/; secure; HttpOnly,ZLBSYS=WEB1; expires=Fri, 30-Jan-2026 12:17:09 GMT; path=/; secure; HttpOnly
Cache-Control: no-store, must-revalidate, no-cache
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=31536000
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Content-Encoding: gzip
Content-Length: 21156

• http://joker.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 194.245.148.200 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	302	https://joker.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 100.00 % Other inline scripts (∑/total): 0/0	0.040	A
Visible Content:
Location: https://joker.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Content-Type: text/html
Content-Length: 292

• http://www.joker.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 194.245.148.200 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	302	https://joker.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 100.00 % Other inline scripts (∑/total): 0/0	0.026	E
Visible Content:
Location: https://joker.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Content-Type: text/html
Content-Length: 292

• https://joker.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de gzip used - 21156 / 88584 - 76.12 % Inline-JavaScript (∑/total): 1/514 Inline-CSS (∑/total): 0/0	404	Html is minified: 179.81 % Other inline scripts (∑/total): 0/0	3.306	B
Not Found
Visible Content:
Date: Fri, 30 Jan 2026 12:07:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: Joker_Session=k35gddi0ogcc1ekohqk86q3o1s; path=/; secure; HttpOnly,ZLBSYS=WEB1; expires=Fri, 30-Jan-2026 12:17:25 GMT; path=/; secure; HttpOnly
Cache-Control: no-store, must-revalidate, no-cache
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: *
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Content-Encoding: gzip
Content-Length: 21156

• https://194.245.148.200/ 194.245.148.200 gzip used - 21156 / 88584 - 76.12 % Inline-JavaScript (∑/total): 1/514 Inline-CSS (∑/total): 0/0	200	Html is minified: 179.81 % Other inline scripts (∑/total): 0/0	3.523	N
Certificate error: RemoteCertificateNameMismatch
Date: Fri, 30 Jan 2026 12:07:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: Joker_Session=1pm9mrqfhtcml03ekpvm8rvrhe; path=/; secure; HttpOnly,ZLBSYS=WEB1; expires=Fri, 30-Jan-2026 12:17:20 GMT; path=/; secure; HttpOnly
Cache-Control: no-store, must-revalidate, no-cache
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=31536000
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Content-Encoding: gzip
Content-Length: 21156

7. Comments

	1. General Results, most used to calculate the result
A	name "joker.com" is domain, public suffix is ".com", top-level-domain is ".com", top-level-domain-type is "generic", tld-manager is "VeriSign Global Registry Services", num .com-domains preloaded: 108094 (complete: 276475)
A	Good: All ip addresses are public addresses
	Warning: Only one ip address found: joker.com has only one ip address.
	Warning: Only one ip address found: www.joker.com has only one ip address.
	Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: joker.com has no ipv6 address.
	Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: www.joker.com has no ipv6 address.
A	Good: No asked Authoritative Name Server had a timeout
A	Good: destination is https
A	Good - only one version with Http-Status 200
A	Good: one preferred version: non-www is preferred
A	Good: No cookie sent via http.
A	Good: every cookie sent via https is marked as secure
	HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
A	Good: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
A	http://joker.com/ 194.245.148.200	302	https://joker.com/	Correct redirect http - https with the same domain name
B	https://www.joker.com/ 194.245.148.200	301		Missing HSTS-Header
B	https://joker.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	404		Missing HSTS-Header
B	https://joker.com/ 194.245.148.200	200	Joker_Session=d652ih1ri34a1m0jnrns4of8ec; path=/; secure; HttpOnly	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://joker.com/ 194.245.148.200	200	ZLBSYS=WEB1; expires=Fri, 30-Jan-2026 12:17:09 GMT; path=/; secure; HttpOnly	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://www.joker.com/ 194.245.148.200	301	ZLBSYS=WEB1; expires=Fri, 30-Jan-2026 12:17:14 GMT; path=/; secure; HttpOnly	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://joker.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	404	Joker_Session=k35gddi0ogcc1ekohqk86q3o1s; path=/; secure; HttpOnly	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://joker.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	404	ZLBSYS=WEB1; expires=Fri, 30-Jan-2026 12:17:25 GMT; path=/; secure; HttpOnly	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://194.245.148.200/ 194.245.148.200	200	Joker_Session=1pm9mrqfhtcml03ekpvm8rvrhe; path=/; secure; HttpOnly	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
B	https://194.245.148.200/ 194.245.148.200	200	ZLBSYS=WEB1; expires=Fri, 30-Jan-2026 12:17:20 GMT; path=/; secure; HttpOnly	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
E	http://www.joker.com/ 194.245.148.200	302	https://joker.com/	Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
I	https://joker.com/ 194.245.148.200	200		Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
I	https://joker.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	404		Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
N	https://194.245.148.200/ 194.245.148.200	200		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
O	joker.com / 194.245.148.200 / 443			Old connection: Cipher Suites without Forward Secrecy (FS) found. Remove all of these Cipher Suites, use only Cipher Suites with Forward Secrecy: Starting with ECDHE- or DHE - the last "E" says: "ephemeral". Or use Tls.1.3, then all Cipher Suites use FS. 16 Cipher Suites without Forward Secrecy found
O	www.joker.com / 194.245.148.200 / 443			Old connection: Cipher Suites without Forward Secrecy (FS) found. Remove all of these Cipher Suites, use only Cipher Suites with Forward Secrecy: Starting with ECDHE- or DHE - the last "E" says: "ephemeral". Or use Tls.1.3, then all Cipher Suites use FS. 16 Cipher Suites without Forward Secrecy found
	Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are the same. So that domain doesn't require Server Name Indication (SNI), it's the primary certificate of that set of ip addresses.: Domain joker.com, 1 ip addresses, 1 different http results.
	Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are the same. So that domain doesn't require Server Name Indication (SNI), it's the primary certificate of that set of ip addresses.: Domain www.joker.com, 1 ip addresses, 1 different http results.
B	No _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Read the result of server-daten.de (Url-Checks, Comments, Connections and DomainServiceRecords) to see a complete definition. Domainname: _mta-sts.joker.com
	2. Header-Checks
A	joker.com 194.245.148.200	X-Content-Type-Options		Ok: Header without syntax errors found: nosniff
A		X-Frame-Options		Ok: Header without syntax errors found: SAMEORIGIN
B				Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A		X-Xss-Protection		Ok: Header without syntax errors found: 1; mode=block
B				Info: Header is deprecated. May not longer work in modern browsers. 1; mode=block
F	joker.com 194.245.148.200	Content-Security-Policy		Critical: Missing Header:
F	joker.com 194.245.148.200	Referrer-Policy		Critical: Missing Header:
F	joker.com 194.245.148.200	Permissions-Policy		Critical: Missing Header:
B	joker.com 194.245.148.200	Cross-Origin-Embedder-Policy		Info: Missing Header
B	joker.com 194.245.148.200	Cross-Origin-Opener-Policy		Info: Missing Header
B	joker.com 194.245.148.200	Cross-Origin-Resource-Policy		Info: Missing Header
	3. DNS- and NameServer - Checks
A	Info:: 2 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 3 Name Servers.
A	Info:: 2 Queries complete, 2 with IPv6, 0 with IPv4.
A	Good: All DNS Queries done via IPv6.
A	Good: Some ip addresses of name servers found with the minimum of two DNS Queries. One to find the TLD-Zone, one to ask the TLD-Zone.x.ns.joker.com (194.245.103.13), y.ns.joker.com (23.88.49.189, 2a01:4f8:c0c:165b::1), z.ns.joker.com (192.95.37.184, 2607:5300:203:7e6d::2222)
A	Good (1 - 3.0):: An average of 0.7 queries per domain name server required to find all ip addresses of all name servers.
A	Info:: 3 different Name Servers found: x.ns.joker.com, y.ns.joker.com, z.ns.joker.com, 3 Name Servers included in Delegation: x.ns.joker.com, y.ns.joker.com, z.ns.joker.com, 3 Name Servers included in 1 Zone definitions: x.ns.joker.com, y.ns.joker.com, z.ns.joker.com, 1 Name Servers listed in SOA.Primary: x.ns.joker.com.
A	Good: Only one SOA.Primary Name Server found.: x.ns.joker.com.
A	Good: SOA.Primary Name Server included in the delegation set.: x.ns.joker.com.
A	Good: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: x.ns.joker.com, y.ns.joker.com, z.ns.joker.com
A	Good: All Name Server Domain Names have a Public Suffix.
A	Good: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
A	Good: All Name Server ip addresses are public.
A	Good: Minimal 2 different name servers (public suffix and public ip address) found: 3 different Name Servers found
A	Good: Some Name Servers have IPv6 addresses: 2 Name Servers with IPv6 found (1 Name Servers without IPv6)
	Warning: All Name Servers have the same Top Level Domain / Public Suffix. If there is a problem with that Top Level Domain, your domain may be affected. Better: Use Name Servers with different top level domains.: 3 Name Servers, 1 Top Level Domain: com
	Warning: All Name Servers have the same domain name. If there is a problem with that domain name (or with the name servers of that domain name), your domain may be affected. Better: Use Name Servers with different domain names / different top level domains.: Only one domain name used: joker.com
A	Good: Name servers with different Country locations found: 3 Name Servers, 2 Countries: CA, DE
A	Info: Ipv4-Subnet-list: 3 Name Servers, 3 different subnets (first Byte): 192., 194., 23., 3 different subnets (first two Bytes): 192.95., 194.245., 23.88., 3 different subnets (first three Bytes): 192.95.37., 194.245.103., 23.88.49.
A	Excellent: Every Name Server IPv4-address starts with an unique Byte.
A	Info: IPv6-Subnet-list: 2 Name Servers with IPv6, 2 different subnets (first block): 2607:, 2a01:, 2 different subnets (first two blocks): 2607:5300:, 2a01:04f8:, 2 different subnets (first three blocks): 2607:5300:0203:, 2a01:04f8:0c0c:, 2 different subnets (first four blocks): 2607:5300:0203:7e6d:, 2a01:04f8:0c0c:165b:
A	Excellent: Every Name Server IPv6-address starts with an unique Hex-block
A	Good: Nameserver supports TCP connections: 5 good Nameserver
A	Good: Nameserver supports Echo Capitalization: 5 good Nameserver
X	Fatal error: Nameserver doesn't support EDNS with max. 512 Byte Udp payload or sends more then 512 Bytes: z.ns.joker.com
A	Good: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 5 good Nameserver
A	Good: All SOA have the same Serial Number
A	Good: CAA entries found, creating certificate is limited: comodoca.com is allowed to create certificates
A	Good: CAA entries found, creating certificate is limited: geotrust.com is allowed to create certificates
A	Good: CAA entries found, creating certificate is limited: letsencrypt.org is allowed to create certificates
	4. Content- and Performance-critical Checks
A	Good: All checks /.well-known/acme-challenge/random-filename without redirects answer with the expected http status 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge should work. If it doesn't work: Check your vHost configuration (apachectl -S, httpd -S, nginx -T). Every combination of port and ServerName / ServerAlias (Apache) or Server (Nginx) must be unique. Merge duplicated entries in one vHost. If you use an IIS, extensionless files must be allowed in the /.well-known/acme-challenge subdirectory. Create a web.config in that directory. Content: <configuration><system.webServer><staticContent><mimeMap fileExtension="." mimeType="text/plain" /></staticContent></system.webServer></configuration>. If you have a redirect http ⇒ https, that's ok, Letsencrypt follows such redirects to port 80 / 443 (same or other server). There must be a certificate. But the certificate may be expired, self signed or with a not matching domain name. Checking the validation file Letsencrypt ignores such certificate errors. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
A	Good: Every https result with status 200 and greater 1024 Bytes is compressed (gzip, deflate, br checked).
	https://joker.com/ 194.245.148.200	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://194.245.148.200/ 194.245.148.200	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://joker.com/ 194.245.148.200	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://194.245.148.200/ 194.245.148.200	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://joker.com/ 194.245.148.200	200		Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
	https://194.245.148.200/ 194.245.148.200	200		Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
	https://joker.com/ 194.245.148.200	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 2 script elements without defer/async.
	https://joker.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	404		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 2 script elements without defer/async.
	https://194.245.148.200/ 194.245.148.200	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 2 script elements without defer/async.
A	Good: All CSS / JavaScript files are sent compressed (gzip, deflate, br checked). That reduces the content of the files. 16 external CSS / JavaScript files found
	Warning: Images with internal compression and Compression found. Images (.png, .jpg, .jpeg, .webp, .gif) are already compressed, so additional Compression isn't helpful. Don't send these images with gzip/deflate/br. 2 images (type image/png, image/jpg, image/jpeg, image/webp, image/gif) found with additional Compression. Compression is not required, these images are already compressed. 0 images (type image/png, image/jpg, image/jpeg, image/webp, image/gif) without Compression found. 2 images (type image/png, image/jpg, image/jpeg, image/webp, image/gif) complete.
A	Good: All CSS / JavaScript files are sent with a long Cache-Control header (minimum 7 days). So the browser can re-use these files, no download is required. 8 external CSS / JavaScript files with long Cache-Control max-age found
	Warning: Images with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 0 image files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 2 with Cache-Control max-age too short (minimum 7 days), 0 with Cache-Control long enough, 2 complete.
A	Good: All checked attribute values are enclosed in quotation marks (" or ').
	Wrong: img-elements without alt-attribute or empty alt-attribute found. The alt-attribute ("alternative") is required and should describe the img. So Screenreader and search engines are able to use these informations.: 0 img-elements without alt-attribute, 3 img-elements with empty alt-attribute found.
A	Good: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
	https://joker.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	404	3.306 seconds	Warning: 404 needs more then one second
A	Duration: 408846 milliseconds, 408.846 seconds

8. Connections

Domain

Port

Cert.

Protocol

KeyExchange

Strength

Cipher

Strength

HashAlgorithm

OCSP stapling

Domain/KeyExchange

IP/Strength

Port/Cipher

Cert./Strength

Protocol/HashAlgorithm

OCSP stapling

joker.com

194.245.148.200

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

not supported

joker.com

194.245.148.200

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

not supported

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - incomplete	1	CN=www.joker.com, O=CSL Computer Service Langenbach GmbH, C=DE, ST=Nordrhein-Westfalen
	2	CN=Sectigo RSA Organization Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester

www.joker.com

194.245.148.200

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

not supported

www.joker.com

194.245.148.200

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

not supported

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - incomplete	1	CN=www.joker.com, O=CSL Computer Service Langenbach GmbH, C=DE, ST=Nordrhein-Westfalen
	2	CN=Sectigo RSA Organization Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester

joker.com

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

not supported

joker.com

443

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

not supported

no http/2 via ALPN

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - incomplete	1	CN=www.joker.com, O=CSL Computer Service Langenbach GmbH, C=DE, ST=Nordrhein-Westfalen
	2	CN=Sectigo RSA Organization Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester

194.245.148.200

443

name does not match

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

not supported

194.245.148.200

443

name does not match

Tls12

ECDH Ephermal

256

Aes256

256

Sha384

not supported

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

no http/2 via ALPN
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - incomplete	1	CN=www.joker.com, O=CSL Computer Service Langenbach GmbH, C=DE, ST=Nordrhein-Westfalen
	2	CN=Sectigo RSA Organization Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester

9. Certificates

CN=www.joker.com, O=CSL Computer Service Langenbach GmbH, S=Nordrhein-Westfalen, C=DE

20.03.2025

21.04.2026
expires in 72 days

www.joker.com, joker.com - 2 entries

CN=www.joker.com, O=CSL Computer Service Langenbach GmbH, S=Nordrhein-Westfalen, C=DE

20.03.2025

21.04.2026
expires in 72 days

www.joker.com, joker.com - 2 entries

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	00A10F98578F3DA9DF8B66DC7C6A4F3FBE
Thumbprint:	C0EE1516803B45CA7FF5BF192CF8A3CB09BF59EA
SHA256 / Certificate:	ly9E7ZNTl0F/Na9QpgDJ4eysBJx6kUL+D/ORZrUU6VA=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	62656ead511081033141aeff6e03ff17e771b114068d40ea09a4a00124a52353
SHA256 hex / Subject Public Key Information (SPKI):	62656ead511081033141aeff6e03ff17e771b114068d40ea09a4a00124a52353 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.sectigo.com
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=www.joker.com, O=CSL Computer Service Langenbach GmbH, S=Nordrhein-Westfalen, C=DE

20.03.2025

21.04.2026
expires in 72 days

www.joker.com, joker.com - 2 entries

CN=www.joker.com, O=CSL Computer Service Langenbach GmbH, S=Nordrhein-Westfalen, C=DE

20.03.2025

21.04.2026
expires in 72 days

www.joker.com, joker.com - 2 entries

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	00A10F98578F3DA9DF8B66DC7C6A4F3FBE
Thumbprint:	C0EE1516803B45CA7FF5BF192CF8A3CB09BF59EA
SHA256 / Certificate:	ly9E7ZNTl0F/Na9QpgDJ4eysBJx6kUL+D/ORZrUU6VA=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	62656ead511081033141aeff6e03ff17e771b114068d40ea09a4a00124a52353
SHA256 hex / Subject Public Key Information (SPKI):	62656ead511081033141aeff6e03ff17e771b114068d40ea09a4a00124a52353 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.sectigo.com
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=Sectigo RSA Organization Validation Secure Server CA, O=Sectigo Limited, L=Salford, S=Greater Manchester, C=GB

02.11.2018

01.01.2031
expires in 1788 days

CN=Sectigo RSA Organization Validation Secure Server CA, O=Sectigo Limited, L=Salford, S=Greater Manchester, C=GB

02.11.2018

01.01.2031
expires in 1788 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA384 With RSA Encryption
Serial Number:	137D539CAA7C31A9A433701968847A8D
Thumbprint:	40CEF3046C916ED7AE557F60E76842828B51DE53
SHA256 / Certificate:	cqNKwrQkrtP2sLBHVbiMwCfczIBv3bIrTNfEd3OXPsA=
SHA256 hex / Cert (DANE * 0 1):	72a34ac2b424aed3f6b0b04755b88cc027dccc806fddb22b4cd7c47773973ec0
SHA256 hex / PublicKey (DANE * 1 1):	4648564dc7c901037f631391d765643e8f8f86622849f59dfc9564838e1e8a76
SHA256 hex / Subject Public Key Information (SPKI):	4648564dc7c901037f631391d765643e8f8f86622849f59dfc9564838e1e8a76
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.usertrust.com
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Server Authentication (1.3.6.1.5.5.7.3.1), Client Authentication (1.3.6.1.5.5.7.3.2)

CN=Sectigo RSA Organization Validation Secure Server CA, O=Sectigo Limited, L=Salford, S=Greater Manchester, C=GB

02.11.2018

01.01.2031
expires in 1788 days

CN=Sectigo RSA Organization Validation Secure Server CA, O=Sectigo Limited, L=Salford, S=Greater Manchester, C=GB

02.11.2018

01.01.2031
expires in 1788 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA384 With RSA Encryption
Serial Number:	137D539CAA7C31A9A433701968847A8D
Thumbprint:	40CEF3046C916ED7AE557F60E76842828B51DE53
SHA256 / Certificate:	cqNKwrQkrtP2sLBHVbiMwCfczIBv3bIrTNfEd3OXPsA=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	4648564dc7c901037f631391d765643e8f8f86622849f59dfc9564838e1e8a76
SHA256 hex / Subject Public Key Information (SPKI):	4648564dc7c901037f631391d765643e8f8f86622849f59dfc9564838e1e8a76
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.usertrust.com
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US

01.02.2010

19.01.2038
expires in 4363 days

CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US

01.02.2010

19.01.2038
expires in 4363 days

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA384 With RSA Encryption
Serial Number:	01FD6D30FCA3CA51A81BBC640E35032D
Thumbprint:	2B8F1B57330DBBA2D07A6C51F70EE90DDAB9AD8E
SHA256 / Certificate:	55PJsC/YqhPiHDEiisywgRlkO3SciYlksXRtRsPUy9I=
SHA256 hex / Cert (DANE * 0 1):	e793c9b02fd8aa13e21c31228accb08119643b749c898964b1746d46c3d4cbd2
SHA256 hex / PublicKey (DANE * 1 1):	c784333d20bcd742b9fdc3236f4e509b8937070e73067e254dd3bf9c45bf4dde
SHA256 hex / Subject Public Key Information (SPKI):	c784333d20bcd742b9fdc3236f4e509b8937070e73067e254dd3bf9c45bf4dde
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US

12.03.2019

01.01.2029
expires in 1058 days

CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US

12.03.2019

01.01.2029
expires in 1058 days

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA384 With RSA Encryption
Serial Number:	3972443AF922B751D7D36C10DD313595
Thumbprint:	D89E3BD43D5D909B47A18977AA9D5CE36CEE184C
SHA256 / Certificate:	aLnHYSGaWx8BMXhEdGZdthu9sQngDwXKn3QkTuX19Ss=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	c784333d20bcd742b9fdc3236f4e509b8937070e73067e254dd3bf9c45bf4dde
SHA256 hex / Subject Public Key Information (SPKI):	c784333d20bcd742b9fdc3236f4e509b8937070e73067e254dd3bf9c45bf4dde
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.comodoca.com
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, S=Greater Manchester, C=GB

01.01.2004

01.01.2029
expires in 1058 days

CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, S=Greater Manchester, C=GB

01.01.2004

01.01.2029
expires in 1058 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA-1 with RSA Encryption
Serial Number:	01
Thumbprint:	D1EB23A46D17D68FD92564C2F1F1601764D8E349
SHA256 / Certificate:	16eg+11+JzHXcelITrze9x1fDD4KKUh4K8g+4OppnvQ=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	bd153ed7b0434f6886b17bce8bbe84ed340c7132d702a8f4fa318f756ecbd6f3
SHA256 hex / Subject Public Key Information (SPKI):	bd153ed7b0434f6886b17bce8bbe84ed340c7132d702a8f4fa318f756ecbd6f3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuer				last 7 days	active	num Certs
CN=Sectigo RSA Organization Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester				0	1	3
CN=E8, O=Let's Encrypt, C=US				0	1	2
CN=R10, O=Let's Encrypt, C=US				0	0	2
CN=R3, O=Let's Encrypt, C=US				0	0	1

CertSpotter-Id	Issuer	not before	not after	Domain names	LE-Duplicate	next LE
13325292925 leaf cert	CN=E8, O=Let's Encrypt, C=US	2026-01-05 06:36:59	2026-04-05 06:36:58	joker.com - 1 entries
12582999944 leaf cert	CN=E8, O=Let's Encrypt, C=US	2025-11-05 12:32:30	2026-02-03 12:32:29	joker.com - 1 entries
9854159232 leaf cert	CN=Sectigo RSA Organization Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester	2025-03-20 00:00:00	2026-04-20 23:59:59	joker.com, www.joker.com - 2 entries
8986507702 leaf cert	CN=R10, O=Let's Encrypt, C=US	2024-12-20 06:09:42	2025-03-20 06:09:41	joker.com - 1 entries
8458498964 leaf cert	CN=R10, O=Let's Encrypt, C=US	2024-10-21 05:10:14	2025-01-19 05:10:13	joker.com - 1 entries
7099267782 leaf cert	CN=Sectigo RSA Organization Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester	2024-04-10 00:00:00	2025-04-05 23:59:59	joker.com, www.joker.com - 2 entries
4617009035 leaf cert	CN=R3, O=Let's Encrypt, C=US	2022-12-30 06:06:05	2023-03-30 06:06:04	joker.com - 1 entries
3563693204 leaf cert	CN=Sectigo RSA Organization Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester	2022-03-28 00:00:00	2023-03-26 23:59:59	joker.com, www.joker.com - 2 entries

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

Issuer				last 7 days	active	num Certs
CN=R10, O=Let's Encrypt, C=US				0	0	2
CN=R11, O=Let's Encrypt, C=US				0	0	1
CN=Sectigo RSA Organization Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester				0	0	1

CRT-Id	Issuer	not before	not after	Domain names	LE-Duplicate	next LE
15827546389 precert	CN=R10, O=Let's Encrypt, C=US	2024-12-20 05:09:42	2025-03-20 05:09:41	joker.com 1 entries
15024148522 leaf cert	CN=R10, O=Let's Encrypt, C=US	2024-10-21 03:10:14	2025-01-19 04:10:13	joker.com 1 entries
14267109860 leaf cert	CN=R11, O=Let's Encrypt, C=US	2024-08-22 03:09:51	2024-11-20 04:09:50	joker.com 1 entries
12676773355 leaf cert	CN=Sectigo RSA Organization Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester	2024-04-09 22:00:00	2025-04-05 21:59:59	joker.com, www.joker.com 2 entries

11. Html-Content - Entries

Summary

							Subresource Integrity (SRI)
Domainname	HtmlElement	rel/property	∑	∑ size	∑ problems	∑ int.	∑ ext.	∑ Origin poss.	∑ SRI ParseErrors	∑ SRI valid	∑ SRI missing
https://joker.com/ 194.245.148.200	a		28		0			0	0	0
	form		1	21,156 Bytes	0	1	0	0	0	0
	img		1	43 Bytes	0	1	0	0	0	0
	link	alternate	2		0			0	0	0
	link	stylesheet	2	144,489 Bytes	0	2	0	0	0	0
	link	other	22	1,815,288 Bytes	3	22	0	0	0	0
	meta	og	5	23,346 Bytes	0	2	0	0	0	0
	meta	other	12		0			0	0	0
	script		2	386,565 Bytes	2	2	0	0	0	0
https://joker.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	a		28		0			0	0	0
	form		1	21,156 Bytes	0	1	0	0	0	0
	img		1	43 Bytes	0	1	0	0	0	0
	link	alternate	2		0			0	0	0
	link	stylesheet	2	144,489 Bytes	0	2	0	0	0	0
	link	other	22	1,815,288 Bytes	3	22	0	0	0	0
	meta	og	5	23,346 Bytes	0	2	0	0	0	0
	meta	other	12		0			0	0	0
	script		2	386,565 Bytes	2	2	0	0	0	0
https://194.245.148.200/ 194.245.148.200	a		28		0			0	0	0
	form		1		0			0	0	0
	img		1		0			0	0	0
	link	alternate	2		0			0	0	0
	link	stylesheet	2		0			0	0	0
	link	other	22		0			0	0	0
	meta	og	5		0			0	0	0
	meta	other	12		0			0	0	0
	script		2		0			0	0	0

Details (currently limited to 500 rows - some problems with spam users)

Domainname	Html-Element	name/equiv/ property/rel	href/src/content	HttpStatus	∑	Status
https://joker.com/ 194.245.148.200	a		/?mode=page&page=security				1	ok
								ok


	a		/?mode=page&page=whois				1	ok
								ok


	a		/?mode=payment_methods				6	ok
								ok


	a		/?mode=transfer_gain&do_next=step1				1	ok
								ok


	a		/cart/overview				2	ok
								ok


	a		/domain/prices				1	ok
								ok


	a		/domain/tlds				1	ok
								ok


	a		/goto/abuse				1	ok
								ok


	a		/home				1	ok
								ok


	a		/imprint				1	ok
								ok


	a		/imprint#privacy				1	ok
								ok


	a		/index.joker?mode=page&page=terms_cond				1	ok
								ok


	a		/index.joker?mode=payment_methods				1	ok
								ok


	a		/index.joker?mode=simple_renewal&do_next=step1				1	ok
								ok


	a		/rss.joker				1	ok
								ok


	a		?mode=support&support_type=intro				1	ok
								ok


	a		https://blog.joker.com				1	ok
								ok


	a		https://csl.de/				1	ok
								ok


	a		https://icann.org/				1	ok
								ok


	a		https://joker.com/faq-en/				1	ok
								ok


	a		https://twitter.com/jokercom				1	ok
								ok


	a		https://www.facebook.com/JokerDomains				1	ok
								ok


	form		/		200		1	ok
				text/html; charset=UTF-8 X-Content-Type-Options nosniff found				ok
				21156 Bytes

	img	src	/stats/track/?idsite=1		200		1	ok
	no alt-Attribute			image/gif X-Content-Type-Options nosniff found				ok
	Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private - max-age too short.			Wrong Compression (none): 43/43 Bytes

	link	alternate	https://joker.com/?lang=de				1	ok
								ok


	link	alternate	rss.joker				1	ok
								ok


	link	apple-touch-icon	/templates/uk/images//icons/touch-icon-iphone.png		200		1	ok
				image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression - 18840 Bytes
	ETag: "6978dd75-4998"

	link	apple-touch-icon	/templates/uk/images/icons/touch-icon-ipad.png		200		1	ok
				image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression - 19969 Bytes
	ETag: "6978dd75-4e01"

	link	apple-touch-icon	/templates/uk/images/icons/touch-icon-ipad-retina.png		200		1	ok
				image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression - 24578 Bytes
	ETag: "6978dd75-6002"

	link	apple-touch-icon	/templates/uk/images/icons/touch-icon-iphone-retina.png		200		1	ok
				image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression - 3061 Bytes
	ETag: "6978dd75-bf5"

	link	preload	/templates/assets/css/app.158aa86c.css		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
				Compression (gzip): 4702/16821 Bytes
	ETag: W/"6979dead-41b5"

	link	preload	/templates/assets/css/chunk-vendors.1fa770a0.css		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
				Compression (gzip): 139787/816170 Bytes
	ETag: W/"6979dead-c742a"

	link	preload	/templates/assets/fonts/materialdesignicons-webfont.1d7bcee1.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 403216/403216 Bytes, font already compressed
	ETag: "6979dead-62710"

	link	preload	/templates/assets/fonts/Roboto-Black.59eb3601.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 64960/64960 Bytes, font already compressed
	ETag: "6979dead-fdc0"

	link	preload	/templates/assets/fonts/Roboto-BlackItalic.f75569f8.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 72088/72088 Bytes, font already compressed
	ETag: "6979dead-11998"

	link	preload	/templates/assets/fonts/Roboto-Bold.b52fac2b.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 64740/64740 Bytes, font already compressed
	ETag: "6979dead-fce4"

	link	preload	/templates/assets/fonts/Roboto-BoldItalic.94008e69.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 70360/70360 Bytes, font already compressed
	ETag: "6979dead-112d8"

	link	preload	/templates/assets/fonts/Roboto-Light.d26871e8.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 64320/64320 Bytes, font already compressed
	ETag: "6979dead-fb40"

	link	preload	/templates/assets/fonts/Roboto-LightItalic.e8eaae90.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 70760/70760 Bytes, font already compressed
	ETag: "6979dead-11468"

	link	preload	/templates/assets/fonts/Roboto-Medium.90d16760.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 65484/65484 Bytes, font already compressed
	ETag: "6979dead-ffcc"

	link	preload	/templates/assets/fonts/Roboto-MediumItalic.13ec0eb5.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 71284/71284 Bytes, font already compressed
	ETag: "6979dead-11674"

	link	preload	/templates/assets/fonts/Roboto-Regular.73f0a88b.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 64632/64632 Bytes, font already compressed
	ETag: "6979dead-fc78"

	link	preload	/templates/assets/fonts/Roboto-RegularItalic.4357beb8.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 70280/70280 Bytes, font already compressed
	ETag: "6979dead-11288"

	link	preload	/templates/assets/fonts/Roboto-Thin.ad538a69.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 63048/63048 Bytes, font already compressed
	ETag: "6979dead-f648"

	link	preload	/templates/assets/fonts/Roboto-ThinItalic.5b4a33e1.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 68328/68328 Bytes, font already compressed
	ETag: "6979dead-10ae8"

	link	preload	/templates/assets/js/app.489e0315.js		200		1	Problems with Content-Type - Header - see details
				application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
				Compression (gzip): 94990/322237 Bytes
	ETag: W/"6979dead-4eabd"

	link	preload	/templates/assets/js/chunk-vendors.930e8a33.js		200		1	Problems with Content-Type - Header - see details
				application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
				Compression (gzip): 291575/756077 Bytes
	ETag: W/"6979dead-b896d"

	link	shortcut icon	/favicon.ico		200		1	Problems with Content-Type - Header - see details
				image/x-icon X-Content-Type-Options nosniff found		This combination of Media Type "image" and MediaSubType "x-icon" was never defined. Use "image/vnd.microsoft.icon" instead. See https://www.iana.org/assignments/media-types/media-types.xhtml		Problems with Content-Type - Header - see details
	Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private - max-age too short.			No Compression - 4286 Bytes
	ETag: "6978dd75-10be"

	link	stylesheet	/templates/assets/css/app.158aa86c.css		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 - with long duration found.			Compression (gzip): 4702/16821 Bytes
	ETag: W/"6979dead-41b5"
	local SRI possible, possible hash-values: sha256-3ugsLyIhIRwJUWtK/a6lo5LTkVN5OZhoFPLGC7Tq40c= sha384-1DqNQWP3T362ffBjGGmZzaRClSxCwqRVrgG22081Z0KEB9lfmbHnVKAWZOEoY/o3 sha512-lWcSdK4vo6ikyn05+KU8KvD5IUuZz0H9lAv3V2+buw2uHzDh+WCTy0OzHAfDhm7gEh8Ky2o3lY8RbLs4tyUy7g== <link rel="stylesheet" href="/templates/assets/css/app.158aa86c.css" crossorigin="anonymous" integrity="sha256-3ugsLyIhIRwJUWtK/a6lo5LTkVN5OZhoFPLGC7Tq40c=" />

	link	stylesheet	/templates/assets/css/chunk-vendors.1fa770a0.css		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 - with long duration found.			Compression (gzip): 139787/816170 Bytes
	ETag: W/"6979dead-c742a"
	local SRI possible, possible hash-values: sha256-HefKxka2/hV+0rtDF6YQ3lvrwEi3en3mGZmh86kD0Ao= sha384-zYwiVZKF6vAEJ6DINMPRX+7T6CAmWgYvWBJLnzfbEGCIlYrozI/9Ob4i0ZVM8n9P sha512-wBlJ79X2Ad4wf5dKkWFKrY985+jdr9MsaAZ3ioy0frMQy5Tf3NcTSJM8mMlHjg53IfvwEAUA8m48vjgkP8SLAg== <link rel="stylesheet" href="/templates/assets/css/chunk-vendors.1fa770a0.css" crossorigin="anonymous" integrity="sha256-HefKxka2/hV+0rtDF6YQ3lvrwEi3en3mGZmh86kD0Ao=" />

	meta	charset	utf-8				1	ok
								ok


	meta	og:description	Joker.com - find, register and manage Domains - no hidden costs, but with lots of advantages and features				1	ok
								ok


	meta	og:image	/templates/uk/images/JokerLogo_small2x.png		200		1	ok
				image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression - 2190 Bytes
	ETag: "6978dd75-88e"

	meta	og:site_name	Joker.com				1	ok
								ok


	meta	og:title	Domain Name Registrations at Joker.com - Getting and managing domain names has never been so easy.				1	ok
								ok


	meta	og:url	https://joker.com		200		1	ok
				text/html; charset=UTF-8 X-Content-Type-Options nosniff found				ok
				21156 Bytes

	meta	language	EN				1	ok
								ok


	meta	X-UA-Compatible	IE=edge				1	ok
								ok


	meta	abstract	Joker.com Domain Name Registration, free Nameservice and DynDNS, free URL forwards and email addresses, more free tools				1	ok
								ok


	meta	Copyright	Joker.com, CSL GmbH				1	ok
								ok


	meta	description	Joker.com - find, register and administrate Domains - no hidden costs, but with lots of advantages and features				1	ok
								ok


	meta	keywords	register domain,buy domain name,buy domains,gtlds,domain reseller,low cost domains, free DynDNS, Dynamic DNS, free domain services, new domains, joker.com domain registrar				1	ok
								ok


	meta	page-topic	Domain order and administration, more than 400 top level domains, ngtlds, gtlds				1	ok
								ok


	meta	page-type	Domain, reseller, info, biz, com, net, org, de, cn, us, eu, tld, gtld, ngtld, new top level domains				1	ok
								ok


	meta	Rating	general				1	ok
								ok


	meta	robots	index, follow				1	ok
								ok


	meta	viewport	width=device-width, initial-scale=1				1	ok
								ok


	script	src	/templates/assets/js/app.489e0315.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: public, max-age=2678400 - with long duration found.			Compression (gzip): 94990/322237 Bytes
	ETag: W/"6979dead-4eabd"
	local SRI possible, possible hash-values: sha256-3Hf/p3r6Z95AbbCoPeVYKpcuNa1JxDcYhpGp6m6NCTI= sha384-CJh3ZdDu+jKnVsX4UPL2rM4tNOiY7PxbBxdqjUUsvkwEddTP+rgG1VPB3QNrrS+D sha512-zc+NHJWyQvJlu6+NWdSDOIIf47BwnhKlBVBraYIRXeH19czeJVtvsyBUlMCbRIMeSWKZC5hNLC6zMkK+leGlhw== <script src="/templates/assets/js/app.489e0315.js" crossorigin="anonymous" integrity="sha256-3Hf/p3r6Z95AbbCoPeVYKpcuNa1JxDcYhpGp6m6NCTI=" />

	script	src	/templates/assets/js/chunk-vendors.930e8a33.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: public, max-age=2678400 - with long duration found.			Compression (gzip): 291575/756077 Bytes
	ETag: W/"6979dead-b896d"
	local SRI possible, possible hash-values: sha256-71x8TzsbzxVK0SpOaFnBekNzqdaFLucIxuUJoO9WHZk= sha384-xwTmkjIxSNNW2oceyLjEOq36ePPJOvO1u0A8ItL9b02WaoIKGT1ZT79ntgqe6dtd sha512-fb2/7T0wiOUHySBI84XM6j5i4v2lNXAqlkIo4skLT+5Jsr+vsun9Se1O/DRQ88zE8Z0yONg/2IY4ps7IAUENog== <script src="/templates/assets/js/chunk-vendors.930e8a33.js" crossorigin="anonymous" integrity="sha256-71x8TzsbzxVK0SpOaFnBekNzqdaFLucIxuUJoO9WHZk=" />

https://joker.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	a		/?mode=page&page=security				1	ok
								ok


	a		/?mode=page&page=whois				1	ok
								ok


	a		/?mode=payment_methods				6	ok
								ok


	a		/?mode=transfer_gain&do_next=step1				1	ok
								ok


	a		/cart/overview				2	ok
								ok


	a		/domain/prices				1	ok
								ok


	a		/domain/tlds				1	ok
								ok


	a		/goto/abuse				1	ok
								ok


	a		/home				1	ok
								ok


	a		/imprint				1	ok
								ok


	a		/imprint#privacy				1	ok
								ok


	a		/index.joker?mode=page&page=terms_cond				1	ok
								ok


	a		/index.joker?mode=payment_methods				1	ok
								ok


	a		/index.joker?mode=simple_renewal&do_next=step1				1	ok
								ok


	a		/rss.joker				1	ok
								ok


	a		?mode=support&support_type=intro				1	ok
								ok


	a		https://blog.joker.com				1	ok
								ok


	a		https://csl.de/				1	ok
								ok


	a		https://icann.org/				1	ok
								ok


	a		https://joker.com/faq-en/				1	ok
								ok


	a		https://twitter.com/jokercom				1	ok
								ok


	a		https://www.facebook.com/JokerDomains				1	ok
								ok


	form		/		200		1	ok
				text/html; charset=UTF-8 X-Content-Type-Options nosniff found				ok
				21156 Bytes

	img	src	/stats/track/?idsite=1		200		1	ok
	no alt-Attribute			image/gif X-Content-Type-Options nosniff found				ok
	Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private - max-age too short.			Wrong Compression (none): 43/43 Bytes

	link	alternate	https://joker.com/?lang=de				1	ok
								ok


	link	alternate	rss.joker				1	ok
								ok


	link	apple-touch-icon	/templates/uk/images//icons/touch-icon-iphone.png		200		1	ok
				image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression - 18840 Bytes
	ETag: "6978dd75-4998"

	link	apple-touch-icon	/templates/uk/images/icons/touch-icon-ipad.png		200		1	ok
				image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression - 19969 Bytes
	ETag: "6978dd75-4e01"

	link	apple-touch-icon	/templates/uk/images/icons/touch-icon-ipad-retina.png		200		1	ok
				image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression - 24578 Bytes
	ETag: "6978dd75-6002"

	link	apple-touch-icon	/templates/uk/images/icons/touch-icon-iphone-retina.png		200		1	ok
				image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression - 3061 Bytes
	ETag: "6978dd75-bf5"

	link	preload	/templates/assets/css/app.158aa86c.css		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
				Compression (gzip): 4702/16821 Bytes
	ETag: W/"6979dead-41b5"

	link	preload	/templates/assets/css/chunk-vendors.1fa770a0.css		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
				Compression (gzip): 139787/816170 Bytes
	ETag: W/"6979dead-c742a"

	link	preload	/templates/assets/fonts/materialdesignicons-webfont.1d7bcee1.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 403216/403216 Bytes, font already compressed
	ETag: "6979dead-62710"

	link	preload	/templates/assets/fonts/Roboto-Black.59eb3601.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 64960/64960 Bytes, font already compressed
	ETag: "6979dead-fdc0"

	link	preload	/templates/assets/fonts/Roboto-BlackItalic.f75569f8.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 72088/72088 Bytes, font already compressed
	ETag: "6979dead-11998"

	link	preload	/templates/assets/fonts/Roboto-Bold.b52fac2b.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 64740/64740 Bytes, font already compressed
	ETag: "6979dead-fce4"

	link	preload	/templates/assets/fonts/Roboto-BoldItalic.94008e69.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 70360/70360 Bytes, font already compressed
	ETag: "6979dead-112d8"

	link	preload	/templates/assets/fonts/Roboto-Light.d26871e8.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 64320/64320 Bytes, font already compressed
	ETag: "6979dead-fb40"

	link	preload	/templates/assets/fonts/Roboto-LightItalic.e8eaae90.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 70760/70760 Bytes, font already compressed
	ETag: "6979dead-11468"

	link	preload	/templates/assets/fonts/Roboto-Medium.90d16760.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 65484/65484 Bytes, font already compressed
	ETag: "6979dead-ffcc"

	link	preload	/templates/assets/fonts/Roboto-MediumItalic.13ec0eb5.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 71284/71284 Bytes, font already compressed
	ETag: "6979dead-11674"

	link	preload	/templates/assets/fonts/Roboto-Regular.73f0a88b.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 64632/64632 Bytes, font already compressed
	ETag: "6979dead-fc78"

	link	preload	/templates/assets/fonts/Roboto-RegularItalic.4357beb8.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 70280/70280 Bytes, font already compressed
	ETag: "6979dead-11288"

	link	preload	/templates/assets/fonts/Roboto-Thin.ad538a69.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 63048/63048 Bytes, font already compressed
	ETag: "6979dead-f648"

	link	preload	/templates/assets/fonts/Roboto-ThinItalic.5b4a33e1.woff2		200		1	ok
				font/woff2 X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression (): 68328/68328 Bytes, font already compressed
	ETag: "6979dead-10ae8"

	link	preload	/templates/assets/js/app.489e0315.js		200		1	Problems with Content-Type - Header - see details
				application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
				Compression (gzip): 94990/322237 Bytes
	ETag: W/"6979dead-4eabd"

	link	preload	/templates/assets/js/chunk-vendors.930e8a33.js		200		1	Problems with Content-Type - Header - see details
				application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
				Compression (gzip): 291575/756077 Bytes
	ETag: W/"6979dead-b896d"

	link	shortcut icon	/favicon.ico		200		1	Problems with Content-Type - Header - see details
				image/x-icon X-Content-Type-Options nosniff found		This combination of Media Type "image" and MediaSubType "x-icon" was never defined. Use "image/vnd.microsoft.icon" instead. See https://www.iana.org/assignments/media-types/media-types.xhtml		Problems with Content-Type - Header - see details
	Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private - max-age too short.			No Compression - 4286 Bytes
	ETag: "6978dd75-10be"

	link	stylesheet	/templates/assets/css/app.158aa86c.css		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 - with long duration found.			Compression (gzip): 4702/16821 Bytes
	ETag: W/"6979dead-41b5"
	local SRI possible, possible hash-values: sha256-3ugsLyIhIRwJUWtK/a6lo5LTkVN5OZhoFPLGC7Tq40c= sha384-1DqNQWP3T362ffBjGGmZzaRClSxCwqRVrgG22081Z0KEB9lfmbHnVKAWZOEoY/o3 sha512-lWcSdK4vo6ikyn05+KU8KvD5IUuZz0H9lAv3V2+buw2uHzDh+WCTy0OzHAfDhm7gEh8Ky2o3lY8RbLs4tyUy7g== <link rel="stylesheet" href="/templates/assets/css/app.158aa86c.css" crossorigin="anonymous" integrity="sha256-3ugsLyIhIRwJUWtK/a6lo5LTkVN5OZhoFPLGC7Tq40c=" />

	link	stylesheet	/templates/assets/css/chunk-vendors.1fa770a0.css		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 - with long duration found.			Compression (gzip): 139787/816170 Bytes
	ETag: W/"6979dead-c742a"
	local SRI possible, possible hash-values: sha256-HefKxka2/hV+0rtDF6YQ3lvrwEi3en3mGZmh86kD0Ao= sha384-zYwiVZKF6vAEJ6DINMPRX+7T6CAmWgYvWBJLnzfbEGCIlYrozI/9Ob4i0ZVM8n9P sha512-wBlJ79X2Ad4wf5dKkWFKrY985+jdr9MsaAZ3ioy0frMQy5Tf3NcTSJM8mMlHjg53IfvwEAUA8m48vjgkP8SLAg== <link rel="stylesheet" href="/templates/assets/css/chunk-vendors.1fa770a0.css" crossorigin="anonymous" integrity="sha256-HefKxka2/hV+0rtDF6YQ3lvrwEi3en3mGZmh86kD0Ao=" />

	meta	charset	utf-8				1	ok
								ok


	meta	og:description	Joker.com - find, register and manage Domains - no hidden costs, but with lots of advantages and features				1	ok
								ok


	meta	og:image	/templates/uk/images/JokerLogo_small2x.png		200		1	ok
				image/png X-Content-Type-Options nosniff found				ok
	Cache-Control: public, max-age=2678400 with long duration found.			No Compression - 2190 Bytes
	ETag: "6978dd75-88e"

	meta	og:site_name	Joker.com				1	ok
								ok


	meta	og:title	Domain Name Registrations at Joker.com - Getting and managing domain names has never been so easy.				1	ok
								ok


	meta	og:url	https://joker.com		200		1	ok
				text/html; charset=UTF-8 X-Content-Type-Options nosniff found				ok
				21156 Bytes

	meta	language	EN				1	ok
								ok


	meta	X-UA-Compatible	IE=edge				1	ok
								ok


	meta	abstract	Joker.com Domain Name Registration, free Nameservice and DynDNS, free URL forwards and email addresses, more free tools				1	ok
								ok


	meta	Copyright	Joker.com, CSL GmbH				1	ok
								ok


	meta	description	Joker.com - find, register and administrate Domains - no hidden costs, but with lots of advantages and features				1	ok
								ok


	meta	keywords	register domain,buy domain name,buy domains,gtlds,domain reseller,low cost domains, free DynDNS, Dynamic DNS, free domain services, new domains, joker.com domain registrar				1	ok
								ok


	meta	page-topic	Domain order and administration, more than 400 top level domains, ngtlds, gtlds				1	ok
								ok


	meta	page-type	Domain, reseller, info, biz, com, net, org, de, cn, us, eu, tld, gtld, ngtld, new top level domains				1	ok
								ok


	meta	Rating	general				1	ok
								ok


	meta	robots	index, follow				1	ok
								ok


	meta	viewport	width=device-width, initial-scale=1				1	ok
								ok


	script	src	/templates/assets/js/app.489e0315.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: public, max-age=2678400 - with long duration found.			Compression (gzip): 94990/322237 Bytes
	ETag: W/"6979dead-4eabd"
	local SRI possible, possible hash-values: sha256-3Hf/p3r6Z95AbbCoPeVYKpcuNa1JxDcYhpGp6m6NCTI= sha384-CJh3ZdDu+jKnVsX4UPL2rM4tNOiY7PxbBxdqjUUsvkwEddTP+rgG1VPB3QNrrS+D sha512-zc+NHJWyQvJlu6+NWdSDOIIf47BwnhKlBVBraYIRXeH19czeJVtvsyBUlMCbRIMeSWKZC5hNLC6zMkK+leGlhw== <script src="/templates/assets/js/app.489e0315.js" crossorigin="anonymous" integrity="sha256-3Hf/p3r6Z95AbbCoPeVYKpcuNa1JxDcYhpGp6m6NCTI=" />

	script	src	/templates/assets/js/chunk-vendors.930e8a33.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	Cache-Control: public, max-age=2678400 - with long duration found.			Compression (gzip): 291575/756077 Bytes
	ETag: W/"6979dead-b896d"
	local SRI possible, possible hash-values: sha256-71x8TzsbzxVK0SpOaFnBekNzqdaFLucIxuUJoO9WHZk= sha384-xwTmkjIxSNNW2oceyLjEOq36ePPJOvO1u0A8ItL9b02WaoIKGT1ZT79ntgqe6dtd sha512-fb2/7T0wiOUHySBI84XM6j5i4v2lNXAqlkIo4skLT+5Jsr+vsun9Se1O/DRQ88zE8Z0yONg/2IY4ps7IAUENog== <script src="/templates/assets/js/chunk-vendors.930e8a33.js" crossorigin="anonymous" integrity="sha256-71x8TzsbzxVK0SpOaFnBekNzqdaFLucIxuUJoO9WHZk=" />

https://194.245.148.200/ 194.245.148.200	a		/?mode=page&page=security				1	ok
								ok


	a		/?mode=page&page=whois				1	ok
								ok


	a		/?mode=payment_methods				6	ok
								ok


	a		/?mode=transfer_gain&do_next=step1				1	ok
								ok


	a		/cart/overview				2	ok
								ok


	a		/domain/prices				1	ok
								ok


	a		/domain/tlds				1	ok
								ok


	a		/goto/abuse				1	ok
								ok


	a		/home				1	ok
								ok


	a		/imprint				1	ok
								ok


	a		/imprint#privacy				1	ok
								ok


	a		/index.joker?mode=page&page=terms_cond				1	ok
								ok


	a		/index.joker?mode=payment_methods				1	ok
								ok


	a		/index.joker?mode=simple_renewal&do_next=step1				1	ok
								ok


	a		/rss.joker				1	ok
								ok


	a		?mode=support&support_type=intro				1	ok
								ok


	a		https://blog.joker.com				1	ok
								ok


	a		https://csl.de/				1	ok
								ok


	a		https://icann.org/				1	ok
								ok


	a		https://joker.com/faq-en/				1	ok
								ok


	a		https://twitter.com/jokercom				1	ok
								ok


	a		https://www.facebook.com/JokerDomains				1	ok
								ok


	form		/				1	ok
								ok


	img	src	/stats/track/?idsite=1				1	ok
	no alt-Attribute							ok


	link	alternate	https://joker.com/?lang=de				1	ok
								ok


	link	alternate	rss.joker				1	ok
								ok


	link	apple-touch-icon	/templates/uk/images//icons/touch-icon-iphone.png				1	ok
								ok


	link	apple-touch-icon	/templates/uk/images/icons/touch-icon-ipad.png				1	ok
								ok


	link	apple-touch-icon	/templates/uk/images/icons/touch-icon-ipad-retina.png				1	ok
								ok


	link	apple-touch-icon	/templates/uk/images/icons/touch-icon-iphone-retina.png				1	ok
								ok


	link	preload	/templates/assets/css/app.158aa86c.css				1	ok
								ok


	link	preload	/templates/assets/css/chunk-vendors.1fa770a0.css				1	ok
								ok


	link	preload	/templates/assets/fonts/materialdesignicons-webfont.1d7bcee1.woff2				1	ok
								ok


	link	preload	/templates/assets/fonts/Roboto-Black.59eb3601.woff2				1	ok
								ok


	link	preload	/templates/assets/fonts/Roboto-BlackItalic.f75569f8.woff2				1	ok
								ok


	link	preload	/templates/assets/fonts/Roboto-Bold.b52fac2b.woff2				1	ok
								ok


	link	preload	/templates/assets/fonts/Roboto-BoldItalic.94008e69.woff2				1	ok
								ok


	link	preload	/templates/assets/fonts/Roboto-Light.d26871e8.woff2				1	ok
								ok


	link	preload	/templates/assets/fonts/Roboto-LightItalic.e8eaae90.woff2				1	ok
								ok


	link	preload	/templates/assets/fonts/Roboto-Medium.90d16760.woff2				1	ok
								ok


	link	preload	/templates/assets/fonts/Roboto-MediumItalic.13ec0eb5.woff2				1	ok
								ok


	link	preload	/templates/assets/fonts/Roboto-Regular.73f0a88b.woff2				1	ok
								ok


	link	preload	/templates/assets/fonts/Roboto-RegularItalic.4357beb8.woff2				1	ok
								ok


	link	preload	/templates/assets/fonts/Roboto-Thin.ad538a69.woff2				1	ok
								ok


	link	preload	/templates/assets/fonts/Roboto-ThinItalic.5b4a33e1.woff2				1	ok
								ok


	link	preload	/templates/assets/js/app.489e0315.js				1	ok
								ok


	link	preload	/templates/assets/js/chunk-vendors.930e8a33.js				1	ok
								ok


	link	shortcut icon	/favicon.ico				1	ok
								ok


	link	stylesheet	/templates/assets/css/app.158aa86c.css				1	ok
								ok


	link	stylesheet	/templates/assets/css/chunk-vendors.1fa770a0.css				1	ok
								ok


	meta	charset	utf-8				1	ok
								ok


	meta	og:description	Joker.com - find, register and manage Domains - no hidden costs, but with lots of advantages and features				1	ok
								ok


	meta	og:image	/templates/uk/images/JokerLogo_small2x.png				1	ok
								ok


	meta	og:site_name	Joker.com				1	ok
								ok


	meta	og:title	Domain Name Registrations at Joker.com - Getting and managing domain names has never been so easy.				1	ok
								ok


	meta	og:url	https://joker.com				1	ok
								ok


	meta	language	EN				1	ok
								ok


	meta	X-UA-Compatible	IE=edge				1	ok
								ok


	meta	abstract	Joker.com Domain Name Registration, free Nameservice and DynDNS, free URL forwards and email addresses, more free tools				1	ok
								ok


	meta	Copyright	Joker.com, CSL GmbH				1	ok
								ok


	meta	description	Joker.com - find, register and administrate Domains - no hidden costs, but with lots of advantages and features				1	ok
								ok


	meta	keywords	register domain,buy domain name,buy domains,gtlds,domain reseller,low cost domains, free DynDNS, Dynamic DNS, free domain services, new domains, joker.com domain registrar				1	ok
								ok


	meta	page-topic	Domain order and administration, more than 400 top level domains, ngtlds, gtlds				1	ok
								ok


	meta	page-type	Domain, reseller, info, biz, com, net, org, de, cn, us, eu, tld, gtld, ngtld, new top level domains				1	ok
								ok


	meta	Rating	general				1	ok
								ok


	meta	robots	index, follow				1	ok
								ok


	meta	viewport	width=device-width, initial-scale=1				1	ok
								ok


	script	src	/templates/assets/js/app.489e0315.js				1	ok
	Missing defer / async attribute.							ok


	script	src	/templates/assets/js/chunk-vendors.930e8a33.js				1	ok
	Missing defer / async attribute.							ok

12. Html-Parsing via https://validator.w3.org/nu/

	Type	Message	num found
Url used (first standard-https-result with http status 200): https://joker.com/

Summary
	Good: No non-document-errors
	15 errors
	5 warnings
1.	error	Attribute `href` not allowed on element `a` at this point.	10
2.	error	Element `style` not allowed as child of element `noscript` in this context. (Suppressing further errors from this subtree.)	2
3.	error	Bad value `language` for attribute `http-equiv` on element `meta`.	1
4.	error	The `base` element must come before any `link` or `script` elements in the document.	1
5.	error	The `main` element must not appear as a descendant of the `noscript` element.	1
6.	warning	The `type` attribute for the `style` element is not needed and should be omitted.	2
7.	warning	The `separator` role is unnecessary for element `hr`.	2
8.	warning	The `type` attribute is unnecessary for JavaScript resources.	1
Details
	Type	Message + Sample
1	error	Bad value `language` for attribute `http-equiv` on element `meta`.
		From line 15, column 9 to line 15, column 49
		> <meta http-equiv="language" content="EN">
2	error	The `base` element must come before any `link` or `script` elements in the document.
		From line 32, column 17 to line 32, column 47
		<base href="https://joker.com"> <
3	error	Element `style` not allowed as child of element `noscript` in this context. (Suppressing further errors from this subtree.)
		From line 37, column 1 to line 37, column 23
		noscript> <style type="text/css"> .v-
4	error	Element `style` not allowed as child of element `noscript` in this context. (Suppressing further errors from this subtree.)
		From line 742, column 1 to line 742, column 23
		</style> <style type="text/css"> .at
5	error	The `main` element must not appear as a descendant of the `noscript` element.
		From line 978, column 5 to line 978, column 78
		----> <main class="v-content" data-booted="true" style="padding: 64px 0px 0px;">
6	error	Attribute `href` not allowed on element `a` at this point.
		From line 1125, column 149 to line 1125, column 330
		primary"><a data-v-7653bd06="" tabindex="0" href="/index.joker?mode=page&page=terms_cond" title="Terms & conditions" role="listitem" class="v-list-item v-list-item--link theme--dark">
7	error	Attribute `href` not allowed on element `a` at this point.
		From line 1130, column 33 to line 1130, column 198
		</a><a data-v-7653bd06="" tabindex="0" href="/index.joker?mode=payment_methods" title="Payment options" role="listitem" class="v-list-item v-list-item--link theme--dark">
8	error	Attribute `href` not allowed on element `a` at this point.
		From line 1141, column 35 to line 1141, column 181
		</div><a data-v-7653bd06="" href="/imprint" class="v-list-item v-list-item--link theme--dark" tabindex="0" title="Imprint & Contact" role="listitem">
9	error	Attribute `href` not allowed on element `a` at this point.
		From line 1146, column 33 to line 1146, column 178
		</a><a data-v-7653bd06="" tabindex="0" href="/imprint#privacy" title="Data privacy" role="listitem" class="v-list-item v-list-item--link theme--dark">
10	error	Attribute `href` not allowed on element `a` at this point.
		From line 1151, column 33 to line 1151, column 196
		</a><a data-v-7653bd06="" tabindex="0" href="?mode=support&support_type=intro" title="Contact us" role="listitem" class="v-list-item v-list-item--link theme--dark">
11	error	Attribute `href` not allowed on element `a` at this point.
		From line 1181, column 35 to line 1181, column 223
		</div><a data-v-7653bd06="" tabindex="0" href="/?mode=transfer_gain&do_next=step1" title="transfer your domain to Joker.com" role="listitem" class="v-list-item v-list-item--link theme--dark">
12	error	Attribute `href` not allowed on element `a` at this point.
		From line 1186, column 33 to line 1186, column 221
		</a><a data-v-7653bd06="" tabindex="0" href="/index.joker?mode=simple_renewal&do_next=step1" title="Renew your domain now" role="listitem" class="v-list-item v-list-item--link theme--dark">
13	error	Attribute `href` not allowed on element `a` at this point.
		From line 1191, column 33 to line 1191, column 209
		</a><a data-v-7653bd06="" tabindex="0" href="/?mode=page&page=whois" title="Show public whois data for domain" role="listitem" class="v-list-item v-list-item--link theme--dark">
14	error	Attribute `href` not allowed on element `a` at this point.
		From line 1196, column 33 to line 1196, column 209
		</a><a data-v-7653bd06="" href="/domain/prices" class="v-list-item v-list-item--link theme--dark" tabindex="0" title="All available domain endings and their prices" role="listitem">
15	error	Attribute `href` not allowed on element `a` at this point.
		From line 1201, column 33 to line 1201, column 173
		</a><a data-v-7653bd06="" tabindex="0" href="/goto/abuse" title="Report abuse" role="listitem" class="v-list-item v-list-item--link theme--dark">
16	warning	The `type` attribute for the `style` element is not needed and should be omitted.
		From line 37, column 1 to line 37, column 23
		noscript> <style type="text/css"> .v-
17	warning	The `type` attribute for the `style` element is not needed and should be omitted.
		From line 742, column 1 to line 742, column 23
		</style> <style type="text/css"> .at
18	warning	The `separator` role is unnecessary for element `hr`.
		From line 1038, column 9 to line 1038, column 108
		> <hr data-v-7653bd06="" role="separator" aria-orientation="horizontal" class="v-divider theme--dark">
19	warning	The `separator` role is unnecessary for element `hr`.
		From line 1223, column 9 to line 1223, column 108
		> <hr data-v-7653bd06="" role="separator" aria-orientation="horizontal" class="v-divider theme--dark">
20	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 1245, column 1 to line 1245, column 31
		stats --> <script type="text/javascript"> var _

13. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: x.ns.joker.com, y.ns.joker.com, z.ns.joker.com

QNr.	Domain	Type	NS used
1	com	NS	a.root-servers.net (2001:503:ba3e::2:30)
	Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
2	x.ns.joker.com: 194.245.103.13	NS	a.gtld-servers.net (2001:503:a83e::2:30)
	Answer: y.ns.joker.com 23.88.49.189, 2a01:4f8:c0c:165b::1
	Answer: z.ns.joker.com 192.95.37.184, 2607:5300:203:7e6d::2222

14. CAA - Entries

Domainname	flag	Name	Value	∑ Queries
www.joker.com	0		no CAA entry found	1
joker.com	5	issue	comodoca.com	1
	5	issue	geotrust.com	1
	5	issue	letsencrypt.org	1
com	0		no CAA entry found	1

15. TXT - Entries

Domainname	TXT Entry	Status	∑ Queries
joker.com	274hx6fyjhchvqzt7hw4q08vzy9j2ln7	ok	1
joker.com	google-site-verification=wLduziElprYw-qrUSB-Vylfv7hvhhk7hEf4vRzfDCFg	ok	1
joker.com	v=spf1 ip4:194.245.148.0/24 include:_spf.csl.de ~all	ok	1
www.joker.com		ok	1
_acme-challenge.joker.com		Name Error - The domain name does not exist	1
_acme-challenge.www.joker.com		Name Error - The domain name does not exist	1
_acme-challenge.joker.com.joker.com		Name Error - The domain name does not exist	1
_acme-challenge.www.joker.com.joker.com		Name Error - The domain name does not exist	1
_acme-challenge.www.joker.com.www.joker.com		Name Error - The domain name does not exist	1

16. DomainService - Entries

Type		Domain	Pref	Value	DNS-error	num Answers	Status
MX		joker.com	30	mailin.joker.csl.de	0	1	ok
	A			194.245.148.221	0	1	ok
	CNAME				0	0	ok
SPF	TXT	joker.com		v=spf1 ip4:194.245.148.0/24 include:_spf.csl.de ~all			ok
	TXT	_spf.csl.de		v=spf1 ip4:194.245.103.0/26 ~all			ok
_dmarc	TXT	_dmarc.joker.com		v=DMARC1; p=none			ok

17. Cipher Suites

Summary
Domain	IP	Port	num Ciphers	time	Std.Protocol	Forward Secrecy
joker.com	194.245.148.200	443	44 Ciphers	151.75 sec		16 without, 28 FS	63.64 %
www.joker.com	194.245.148.200	443	44 Ciphers	152.24 sec		16 without, 28 FS	63.64 %
Complete		2	88 Ciphers 44.00 Ciphers/Check	303.99 sec	152.00 sec/Check	32 without, 56 FS	63.64 %

Details
Domain	IP	Port	Cipher (OpenSsl / IANA)
joker.com	194.245.148.200	443	ECDHE-RSA-CHACHA20-POLY1305		(Secure)	TLSv1.2	0xCC,0xA8	FS
44 Ciphers, 151.75 sec			TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
			ECDH		RSA	CHACHA20/POLY1305(256)	AEAD
			ECDHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x30	FS
			TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
			ECDH		RSA	AESGCM(256)	AEAD
			DHE-RSA-ARIA256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x53	FS
			TLS_DHE_RSA_WITH_ARIA_256_GCM_SHA384
			DH		RSA	ARIAGCM(256)	AEAD
			DHE-RSA-CHACHA20-POLY1305		(Secure)	TLSv1.2	0xCC,0xAA	FS
			TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
			DH		RSA	CHACHA20/POLY1305(256)	AEAD
			DHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0x00,0x9F	FS
			TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
			DH		RSA	AESGCM(256)	AEAD
			ECDHE-ARIA256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x61	FS
			TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384
			ECDH		RSA	ARIAGCM(256)	AEAD
			DHE-RSA-AES256-CCM8		(Secure)	TLSv1.2	0xC0,0xA3	FS
			TLS_DHE_RSA_WITH_AES_256_CCM_8
			DH		RSA	AESCCM8(256)	AEAD
			DHE-RSA-AES256-CCM		(Secure)	TLSv1.2	0xC0,0x9F	FS
			TLS_DHE_RSA_WITH_AES_256_CCM
			DH		RSA	AESCCM(256)	AEAD
			ECDHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x2F	FS
			TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
			ECDH		RSA	AESGCM(128)	AEAD
			DHE-RSA-ARIA128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x52	FS
			TLS_DHE_RSA_WITH_ARIA_128_GCM_SHA256
			DH		RSA	ARIAGCM(128)	AEAD
			DHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0x00,0x9E	FS
			TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
			DH		RSA	AESGCM(128)	AEAD
			ECDHE-ARIA128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x60	FS
			TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256
			ECDH		RSA	ARIAGCM(128)	AEAD
			DHE-RSA-AES128-CCM8		(Secure)	TLSv1.2	0xC0,0xA2	FS
			TLS_DHE_RSA_WITH_AES_128_CCM_8
			DH		RSA	AESCCM8(128)	AEAD
			DHE-RSA-AES128-CCM		(Secure)	TLSv1.2	0xC0,0x9E	FS
			TLS_DHE_RSA_WITH_AES_128_CCM
			DH		RSA	AESCCM(128)	AEAD
			ECDHE-RSA-CAMELLIA256-SHA384		(Weak)	TLSv1.2	0xC0,0x77	FS
			TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384
			ECDH		RSA	Camellia(256)	SHA384
			DHE-RSA-CAMELLIA256-SHA256		(Weak)	TLSv1.2	0x00,0xC4	FS
			TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256
			DH		RSA	Camellia(256)	SHA256
			ECDHE-RSA-AES256-SHA384		(Weak)	TLSv1.2	0xC0,0x28	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
			ECDH		RSA	AES(256)	SHA384
			DHE-RSA-AES256-SHA256		(Weak)	TLSv1.2	0x00,0x6B	FS
			TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
			DH		RSA	AES(256)	SHA256
			CAMELLIA256-SHA256		(Weak)	TLSv1.2	0x00,0xC0	No FS
			TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256
			RSA		RSA	Camellia(256)	SHA256
			ARIA256-GCM-SHA384		(Weak)	TLSv1.2	0xC0,0x51	No FS
			TLS_RSA_WITH_ARIA_256_GCM_SHA384
			RSA		RSA	ARIAGCM(256)	AEAD
			AES256-GCM-SHA384		(Weak)	TLSv1.2	0x00,0x9D	No FS
			TLS_RSA_WITH_AES_256_GCM_SHA384
			RSA		RSA	AESGCM(256)	AEAD
			AES256-SHA256		(Weak)	TLSv1.2	0x00,0x3D	No FS
			TLS_RSA_WITH_AES_256_CBC_SHA256
			RSA		RSA	AES(256)	SHA256
			AES256-CCM8		(Weak)	TLSv1.2	0xC0,0xA1	No FS
			TLS_RSA_WITH_AES_256_CCM_8
			RSA		RSA	AESCCM8(256)	AEAD
			AES256-CCM		(Weak)	TLSv1.2	0xC0,0x9D	No FS
			TLS_RSA_WITH_AES_256_CCM
			RSA		RSA	AESCCM(256)	AEAD
			ECDHE-RSA-CAMELLIA128-SHA256		(Weak)	TLSv1.2	0xC0,0x76	FS
			TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
			ECDH		RSA	Camellia(128)	SHA256
			DHE-RSA-CAMELLIA128-SHA256		(Weak)	TLSv1.2	0x00,0xBE	FS
			TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
			DH		RSA	Camellia(128)	SHA256
			ECDHE-RSA-AES128-SHA256		(Weak)	TLSv1.2	0xC0,0x27	FS
			TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
			ECDH		RSA	AES(128)	SHA256
			DHE-RSA-AES128-SHA256		(Weak)	TLSv1.2	0x00,0x67	FS
			TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
			DH		RSA	AES(128)	SHA256
			CAMELLIA128-SHA256		(Weak)	TLSv1.2	0x00,0xBA	No FS
			TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256
			RSA		RSA	Camellia(128)	SHA256
			ARIA128-GCM-SHA256		(Weak)	TLSv1.2	0xC0,0x50	No FS
			TLS_RSA_WITH_ARIA_128_GCM_SHA256
			RSA		RSA	ARIAGCM(128)	AEAD
			AES128-GCM-SHA256		(Weak)	TLSv1.2	0x00,0x9C	No FS
			TLS_RSA_WITH_AES_128_GCM_SHA256
			RSA		RSA	AESGCM(128)	AEAD
			AES128-SHA256		(Weak)	TLSv1.2	0x00,0x3C	No FS
			TLS_RSA_WITH_AES_128_CBC_SHA256
			RSA		RSA	AES(128)	SHA256
			AES128-CCM8		(Weak)	TLSv1.2	0xC0,0xA0	No FS
			TLS_RSA_WITH_AES_128_CCM_8
			RSA		RSA	AESCCM8(128)	AEAD
			AES128-CCM		(Weak)	TLSv1.2	0xC0,0x9C	No FS
			TLS_RSA_WITH_AES_128_CCM
			RSA		RSA	AESCCM(128)	AEAD
			ECDHE-RSA-AES256-SHA		(Weak)	TLSv1	0xC0,0x14	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
			ECDH		RSA	AES(256)	SHA1
			ECDHE-RSA-AES128-SHA		(Weak)	TLSv1	0xC0,0x13	FS
			TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
			ECDH		RSA	AES(128)	SHA1
			DHE-RSA-CAMELLIA256-SHA		(Weak)	SSLv3	0x00,0x88	FS
			TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA
			DH		RSA	Camellia(256)	SHA1
			DHE-RSA-AES256-SHA		(Weak)	SSLv3	0x00,0x39	FS
			TLS_DHE_RSA_WITH_AES_256_CBC_SHA
			DH		RSA	AES(256)	SHA1
			CAMELLIA256-SHA		(Weak)	SSLv3	0x00,0x84	No FS
			TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
			RSA		RSA	Camellia(256)	SHA1
			AES256-SHA		(Weak)	SSLv3	0x00,0x35	No FS
			TLS_RSA_WITH_AES_256_CBC_SHA
			RSA		RSA	AES(256)	SHA1
			DHE-RSA-CAMELLIA128-SHA		(Weak)	SSLv3	0x00,0x45	FS
			TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
			DH		RSA	Camellia(128)	SHA1
			DHE-RSA-AES128-SHA		(Weak)	SSLv3	0x00,0x33	FS
			TLS_DHE_RSA_WITH_AES_128_CBC_SHA
			DH		RSA	AES(128)	SHA1
			CAMELLIA128-SHA		(Weak)	SSLv3	0x00,0x41	No FS
			TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
			RSA		RSA	Camellia(128)	SHA1
			AES128-SHA		(Weak)	SSLv3	0x00,0x2F	No FS
			TLS_RSA_WITH_AES_128_CBC_SHA
			RSA		RSA	AES(128)	SHA1
www.joker.com	194.245.148.200	443	ECDHE-RSA-CHACHA20-POLY1305		(Secure)	TLSv1.2	0xCC,0xA8	FS
44 Ciphers, 152.24 sec			TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
			ECDH		RSA	CHACHA20/POLY1305(256)	AEAD
			ECDHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x30	FS
			TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
			ECDH		RSA	AESGCM(256)	AEAD
			DHE-RSA-ARIA256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x53	FS
			TLS_DHE_RSA_WITH_ARIA_256_GCM_SHA384
			DH		RSA	ARIAGCM(256)	AEAD
			DHE-RSA-CHACHA20-POLY1305		(Secure)	TLSv1.2	0xCC,0xAA	FS
			TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
			DH		RSA	CHACHA20/POLY1305(256)	AEAD
			DHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0x00,0x9F	FS
			TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
			DH		RSA	AESGCM(256)	AEAD
			ECDHE-ARIA256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x61	FS
			TLS_ECDHE_RSA_WITH_ARIA_256_GCM_SHA384
			ECDH		RSA	ARIAGCM(256)	AEAD
			DHE-RSA-AES256-CCM8		(Secure)	TLSv1.2	0xC0,0xA3	FS
			TLS_DHE_RSA_WITH_AES_256_CCM_8
			DH		RSA	AESCCM8(256)	AEAD
			DHE-RSA-AES256-CCM		(Secure)	TLSv1.2	0xC0,0x9F	FS
			TLS_DHE_RSA_WITH_AES_256_CCM
			DH		RSA	AESCCM(256)	AEAD
			ECDHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x2F	FS
			TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
			ECDH		RSA	AESGCM(128)	AEAD
			DHE-RSA-ARIA128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x52	FS
			TLS_DHE_RSA_WITH_ARIA_128_GCM_SHA256
			DH		RSA	ARIAGCM(128)	AEAD
			DHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0x00,0x9E	FS
			TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
			DH		RSA	AESGCM(128)	AEAD
			ECDHE-ARIA128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x60	FS
			TLS_ECDHE_RSA_WITH_ARIA_128_GCM_SHA256
			ECDH		RSA	ARIAGCM(128)	AEAD
			DHE-RSA-AES128-CCM8		(Secure)	TLSv1.2	0xC0,0xA2	FS
			TLS_DHE_RSA_WITH_AES_128_CCM_8
			DH		RSA	AESCCM8(128)	AEAD
			DHE-RSA-AES128-CCM		(Secure)	TLSv1.2	0xC0,0x9E	FS
			TLS_DHE_RSA_WITH_AES_128_CCM
			DH		RSA	AESCCM(128)	AEAD
			ECDHE-RSA-CAMELLIA256-SHA384		(Weak)	TLSv1.2	0xC0,0x77	FS
			TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384
			ECDH		RSA	Camellia(256)	SHA384
			DHE-RSA-CAMELLIA256-SHA256		(Weak)	TLSv1.2	0x00,0xC4	FS
			TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256
			DH		RSA	Camellia(256)	SHA256
			ECDHE-RSA-AES256-SHA384		(Weak)	TLSv1.2	0xC0,0x28	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
			ECDH		RSA	AES(256)	SHA384
			DHE-RSA-AES256-SHA256		(Weak)	TLSv1.2	0x00,0x6B	FS
			TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
			DH		RSA	AES(256)	SHA256
			CAMELLIA256-SHA256		(Weak)	TLSv1.2	0x00,0xC0	No FS
			TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256
			RSA		RSA	Camellia(256)	SHA256
			ARIA256-GCM-SHA384		(Weak)	TLSv1.2	0xC0,0x51	No FS
			TLS_RSA_WITH_ARIA_256_GCM_SHA384
			RSA		RSA	ARIAGCM(256)	AEAD
			AES256-GCM-SHA384		(Weak)	TLSv1.2	0x00,0x9D	No FS
			TLS_RSA_WITH_AES_256_GCM_SHA384
			RSA		RSA	AESGCM(256)	AEAD
			AES256-SHA256		(Weak)	TLSv1.2	0x00,0x3D	No FS
			TLS_RSA_WITH_AES_256_CBC_SHA256
			RSA		RSA	AES(256)	SHA256
			AES256-CCM8		(Weak)	TLSv1.2	0xC0,0xA1	No FS
			TLS_RSA_WITH_AES_256_CCM_8
			RSA		RSA	AESCCM8(256)	AEAD
			AES256-CCM		(Weak)	TLSv1.2	0xC0,0x9D	No FS
			TLS_RSA_WITH_AES_256_CCM
			RSA		RSA	AESCCM(256)	AEAD
			ECDHE-RSA-CAMELLIA128-SHA256		(Weak)	TLSv1.2	0xC0,0x76	FS
			TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
			ECDH		RSA	Camellia(128)	SHA256
			DHE-RSA-CAMELLIA128-SHA256		(Weak)	TLSv1.2	0x00,0xBE	FS
			TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
			DH		RSA	Camellia(128)	SHA256
			ECDHE-RSA-AES128-SHA256		(Weak)	TLSv1.2	0xC0,0x27	FS
			TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
			ECDH		RSA	AES(128)	SHA256
			DHE-RSA-AES128-SHA256		(Weak)	TLSv1.2	0x00,0x67	FS
			TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
			DH		RSA	AES(128)	SHA256
			CAMELLIA128-SHA256		(Weak)	TLSv1.2	0x00,0xBA	No FS
			TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256
			RSA		RSA	Camellia(128)	SHA256
			ARIA128-GCM-SHA256		(Weak)	TLSv1.2	0xC0,0x50	No FS
			TLS_RSA_WITH_ARIA_128_GCM_SHA256
			RSA		RSA	ARIAGCM(128)	AEAD
			AES128-GCM-SHA256		(Weak)	TLSv1.2	0x00,0x9C	No FS
			TLS_RSA_WITH_AES_128_GCM_SHA256
			RSA		RSA	AESGCM(128)	AEAD
			AES128-SHA256		(Weak)	TLSv1.2	0x00,0x3C	No FS
			TLS_RSA_WITH_AES_128_CBC_SHA256
			RSA		RSA	AES(128)	SHA256
			AES128-CCM8		(Weak)	TLSv1.2	0xC0,0xA0	No FS
			TLS_RSA_WITH_AES_128_CCM_8
			RSA		RSA	AESCCM8(128)	AEAD
			AES128-CCM		(Weak)	TLSv1.2	0xC0,0x9C	No FS
			TLS_RSA_WITH_AES_128_CCM
			RSA		RSA	AESCCM(128)	AEAD
			ECDHE-RSA-AES256-SHA		(Weak)	TLSv1	0xC0,0x14	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
			ECDH		RSA	AES(256)	SHA1
			ECDHE-RSA-AES128-SHA		(Weak)	TLSv1	0xC0,0x13	FS
			TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
			ECDH		RSA	AES(128)	SHA1
			DHE-RSA-CAMELLIA256-SHA		(Weak)	SSLv3	0x00,0x88	FS
			TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA
			DH		RSA	Camellia(256)	SHA1
			DHE-RSA-AES256-SHA		(Weak)	SSLv3	0x00,0x39	FS
			TLS_DHE_RSA_WITH_AES_256_CBC_SHA
			DH		RSA	AES(256)	SHA1
			CAMELLIA256-SHA		(Weak)	SSLv3	0x00,0x84	No FS
			TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
			RSA		RSA	Camellia(256)	SHA1
			AES256-SHA		(Weak)	SSLv3	0x00,0x35	No FS
			TLS_RSA_WITH_AES_256_CBC_SHA
			RSA		RSA	AES(256)	SHA1
			DHE-RSA-CAMELLIA128-SHA		(Weak)	SSLv3	0x00,0x45	FS
			TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
			DH		RSA	Camellia(128)	SHA1
			DHE-RSA-AES128-SHA		(Weak)	SSLv3	0x00,0x33	FS
			TLS_DHE_RSA_WITH_AES_128_CBC_SHA
			DH		RSA	AES(128)	SHA1
			CAMELLIA128-SHA		(Weak)	SSLv3	0x00,0x41	No FS
			TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
			RSA		RSA	Camellia(128)	SHA1
			AES128-SHA		(Weak)	SSLv3	0x00,0x2F	No FS
			TLS_RSA_WITH_AES_128_CBC_SHA
			RSA		RSA	AES(128)	SHA1

18. Portchecks

No open Ports <> 80 / 443 found, so no additional Ports checked.

Permalink: https://check-your-website.server-daten.de/?i=a391d5c2-d63f-4422-a740-a605b4eb8be8

Last Result: https://check-your-website.server-daten.de/?q=joker.com - 2026-01-30 13:06:23

Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=joker.com" target="_blank">Check this Site: joker.com</a>

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

QR-Code of this page - https://check-your-website.server-daten.de/?d=joker.com

Check DNS, Urls + Redirects, Certificates and Content of your Website

Older results

1. IP-Addresses

2. DNSSEC

3. Name Servers

4. SOA-Entries

5. Screenshots

Mobile- and other Chrome-Checks

6. Url-Checks

7. Comments

1. General Results, most used to calculate the result

2. Header-Checks

3. DNS- and NameServer - Checks

4. Content- and Performance-critical Checks

8. Connections

9. Certificates

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

11. Html-Content - Entries

Summary

Details (currently limited to 500 rows - some problems with spam users)

12. Html-Parsing via https://validator.w3.org/nu/

Summary

Details

13. Nameserver - IP-Adresses

14. CAA - Entries

15. TXT - Entries

16. DomainService - Entries

17. Cipher Suites

18. Portchecks