Check DNS, Urls + Redirects, Certificates and Content of your Website

...

skip EDNS-Check

skip Content-Check

check links

Top config

Checked:
21.10.2022 06:01:52

Older results

No older results found

1. IP-Addresses

Host	Type	IP-Address	is auth.	∑ Queries	∑ Timeout
najumi.xyz	A		yes	1	0
	AAAA		yes
www.najumi.xyz	CNAME	cryptomarket-analysis.netlify.app	yes	1	0
	A	3.67.255.218 Frankfurt am Main/Hesse/Germany (DE) - Amazon Technologies Inc. Hostname: ec2-3-67-255-218.eu-central-1.compute.amazonaws.com	yes
	A	3.125.252.47 Frankfurt am Main/Hesse/Germany (DE) - Amazon Technologies Inc. Hostname: ec2-3-125-252-47.eu-central-1.compute.amazonaws.com	yes
	AAAA	2a05:d014:275:cb02:66df:50b:6e56:a6bf Frankfurt am Main/Hesse/Germany (DE) - Amazon.com, Inc.	yes
	AAAA	2a05:d014:275:cb02:7bc2:ee46:f4f6:be94 Frankfurt am Main/Hesse/Germany (DE) - Amazon.com, Inc.	yes
www.najumi.xyz	A	34.141.28.239 Frankfurt/Hesse/Germany (DE) - Google LLC No Hostname found	no
	A	34.159.168.235 Frankfurt/Hesse/Germany (DE) - Google LLC No Hostname found	no
*.najumi.xyz	A	Name Error	yes
	AAAA	Name Error	yes
	CNAME	Name Error	yes

2. DNSSEC

Zone (*)	DNSSEC - Informations

Zone: (root)
(root)	1 DS RR published


	DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=


	• Status: Valid because published


	2 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 18733, Flags 256


	Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 01.11.2022, 00:00:00 +, Signature-Inception: 11.10.2022, 00:00:00 +, KeyTag 20326, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: xyz
xyz	2 DS RR in the parent zone found


	DS with Algorithm 8, KeyTag 3599, DigestType 1 and Digest P6OyZPRdtfOL7erxqIt2qjGMLH8=


	DS with Algorithm 8, KeyTag 3599, DigestType 2 and Digest uXM4abyEyGu1nRArpdprJ7IIhVIzKjnc1UvE6NZrBJk=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner xyz., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 02.11.2022, 21:00:00 +, Signature-Inception: 20.10.2022, 20:00:00 +, KeyTag 18733, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 18733 used to validate the DS RRSet in the parent zone


	2 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 3599, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 53358, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner xyz., Algorithm: 8, 1 Labels, original TTL: 3600 sec, Signature-expiration: 04.11.2022, 12:16:40 +, Signature-Inception: 05.10.2022, 18:47:20 +, KeyTag 3599, Signer-Name: xyz


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 3599 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 3599, DigestType 1 and Digest "P6OyZPRdtfOL7erxqIt2qjGMLH8=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 3599, DigestType 2 and Digest "uXM4abyEyGu1nRArpdprJ7IIhVIzKjnc1UvE6NZrBJk=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: najumi.xyz
najumi.xyz	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "1e90n12l70boi68qigs0c40bebpdp9sf" between the hashed NSEC3-owner "1e8q8rc942pgm29qln7c45svdn4fjctr" and the hashed NextOwner "1e9oc0i8dsr0hs7pfvllaa547rt3ommo". So the parent zone confirmes the not-existence of a DS RR. Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner 1e8q8rc942pgm29qln7c45svdn4fjctr.xyz., Algorithm: 8, 2 Labels, original TTL: 3600 sec, Signature-expiration: 19.11.2022, 07:22:10 +, Signature-Inception: 20.10.2022, 06:19:26 +, KeyTag 53358, Signer-Name: xyz


	DS-Query in the parent zone sends valid NSEC3 RR with the Hash "2tjms8vm0h8n7j9e748d19gpnujm0emj" as Owner. That's the Hash of "xyz" with the NextHashedOwnerName "2tjrotaji7tcp4muluacht1dl5u9e5ji". So that domain name is the Closest Encloser of "najumi.xyz". Opt-Out: True. Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner 2tjms8vm0h8n7j9e748d19gpnujm0emj.xyz., Algorithm: 8, 2 Labels, original TTL: 3600 sec, Signature-expiration: 08.11.2022, 22:37:34 +, Signature-Inception: 09.10.2022, 13:59:19 +, KeyTag 53358, Signer-Name: xyz


	0 DNSKEY RR found




Zone: www.najumi.xyz
www.najumi.xyz	0 DS RR in the parent zone found

Zone: (root)
(root)	1 DS RR published


	DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=


	• Status: Valid because published


	2 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 18733, Flags 256


	Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 01.11.2022, 00:00:00 +, Signature-Inception: 11.10.2022, 00:00:00 +, KeyTag 20326, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: app
app	1 DS RR in the parent zone found


	DS with Algorithm 8, KeyTag 23684, DigestType 2 and Digest OlzIox4CyUq6ZGGRL6u36fXjSVe7YRSlWoZNlq7DGDY=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner app., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 02.11.2022, 21:00:00 +, Signature-Inception: 20.10.2022, 20:00:00 +, KeyTag 18733, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 18733 used to validate the DS RRSet in the parent zone


	2 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 23684, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 26848, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner app., Algorithm: 8, 1 Labels, original TTL: 300 sec, Signature-expiration: 10.11.2022, 06:50:54 +, Signature-Inception: 19.10.2022, 06:50:54 +, KeyTag 23684, Signer-Name: app


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 23684 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 23684, DigestType 2 and Digest "OlzIox4CyUq6ZGGRL6u36fXjSVe7YRSlWoZNlq7DGDY=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: netlify.app
netlify.app	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "haqa3ebohni63ah1pgrs4ojlotehoudk" between the hashed NSEC3-owner "haqa3ebohni63ah1pgrs4ojlotehoudk" and the hashed NextOwner "haqd0puqhiuvadt7kk8fa7c321b3t57m". So the parent zone confirmes the not-existence of a DS RR. Bitmap: No Bitmap? Validated: RRSIG-Owner haqa3ebohni63ah1pgrs4ojlotehoudk.app., Algorithm: 8, 2 Labels, original TTL: 900 sec, Signature-expiration: 10.11.2022, 06:50:54 +, Signature-Inception: 19.10.2022, 06:50:54 +, KeyTag 26848, Signer-Name: app


	0 DNSKEY RR found




Zone: cryptomarket-analysis.netlify.app
cryptomarket-analysis.netlify.app	0 DS RR in the parent zone found


	0 DNSKEY RR found

3. Name Servers

Domain	Nameserver	NS-IP
najumi.xyz	• dns1.registrar-servers.com / Auth_NC_Host2.Paris_Node1	156.154.132.200 New York/United States (US) - NeuStar, Inc.	•
	•	2610:a1:1024::200 Oakland/California/United States (US) - NeuStar	•
	• dns2.registrar-servers.com / Auth_NC_Host1.Frankfurt_Node1	156.154.133.200 New York/United States (US) - NeuStar, Inc.	•
	•	2610:a1:1025::200 Fort Lauderdale/Florida/United States (US) - NeuStar	•
xyz	• generationxyz.nic.xyz / PDUS-VJ5JVS-CTI2KM		•
	• ns0.centralnic.net
	• x.nic.xyz / SFQY-BG7AF9-XTW0MS		•
	• y.nic.xyz / PDUS-VJ5JVS-CTI2KM		•
	• z.nic.xyz / SFQY-BG7AF9-XTW0MS		•

cryptomarket-analysis.netlify.app	• dns1.p01.nsone.net / ns1dns-fra03-910-5302-0	198.51.44.1 New York/United States (US) - NSONE Inc	•
	•	2620:4d:4000:6259:7:1:0:1 New York/United States (US) - NSONE Inc	•
netlify.app	• dns1.p01.nsone.net / ns1dns-fra03-910-5308-0	198.51.44.1 New York/United States (US) - NSONE Inc	•
	•	2620:4d:4000:6259:7:1:0:1 New York/United States (US) - NSONE Inc	•
	• dns2.p01.nsone.net / ns1dns-fra03-387-5306-0	198.51.45.1 New York/United States (US) - NSONE Inc	•
	•	2a00:edc0:6259:7:1::2 Amsterdam/North Holland/Netherlands (NL) - NS1	•
	• dns3.p01.nsone.net / ns1dns-fra03-910-5317-0	198.51.44.65 New York/United States (US) - NSONE Inc	•
	•	2620:4d:4000:6259:7:1:0:3 New York/United States (US) - NSONE Inc	•
	• dns4.p01.nsone.net / ns1dns-fra03-341-5307-0	198.51.45.65 New York/United States (US) - NSONE Inc	•
	•	2a00:edc0:6259:7:1::4 Amsterdam/North Holland/Netherlands (NL) - NS1	•
app	• ns-tld1.charlestonroadregistry.com		•
	• ns-tld2.charlestonroadregistry.com		•
	• ns-tld3.charlestonroadregistry.com		•
	• ns-tld4.charlestonroadregistry.com		•
	• ns-tld5.charlestonroadregistry.com		•

4. SOA-Entries

Domain:	xyz
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:	1

Domain:	xyz
Zone-Name:	xyz
Primary:	ns0.centralnic.net
Mail:	hostmaster.centralnic.net
Serial:	3000696343
Refresh:	900
Retry:	1800
Expire:	6048000
TTL:	3600
num Entries:	4

Domain:	najumi.xyz
Zone-Name:	najumi.xyz
Primary:	dns1.registrar-servers.com
Mail:	hostmaster.registrar-servers.com
Serial:	1666201073
Refresh:	43200
Retry:	3600
Expire:	604800
TTL:	3601
num Entries:	4


Domain:	app
Zone-Name:	app
Primary:	ns-tld1.charlestonroadregistry.com
Mail:	cloud-dns-hostmaster.google.com
Serial:	101427
Refresh:	21600
Retry:	3600
Expire:	259200
TTL:	900
num Entries:	5

Domain:	netlify.app
Zone-Name:	netlify.app
Primary:	dns1.p01.nsone.net
Mail:	hostmaster.nsone.net
Serial:	1664979656
Refresh:	43200
Retry:	7200
Expire:	1209600
TTL:	300
num Entries:	8

Domain:	cryptomarket-analysis.netlify.app
Zone-Name:	netlify.app
Primary:	dns1.p01.nsone.net
Mail:	hostmaster.nsone.net
Serial:	1664979656
Refresh:	43200
Retry:	7200
Expire:	1209600
TTL:	300
num Entries:	2

5. Screenshots

Startaddress: https://www.najumi.xyz/, address used: https://www.najumi.xyz/, Screenshot created 2022-10-21 06:06:28 +00:0

Mobil (412px x 732px)

364 milliseconds

Screenshot mobile - https://www.najumi.xyz/

Mobil + Landscape (732px x 412px)

374 milliseconds

Screenshot mobile landscape - https://www.najumi.xyz/

Screen (1280px x 1680px)

779 milliseconds

Screenshot Desktop - https://www.najumi.xyz/

Mobile- and other Chrome-Checks

	width	height
visual Viewport	396	716
content Size	412	833

Fatal: Horizontal scrollbar detected. Content-size width is greater then visual Viewport width.

6. Url-Checks

show header:

Domainname	Http-Status	redirect	Sec.	G
• http://www.najumi.xyz/ 3.67.255.218	301	https://www.najumi.xyz/ Html is minified: 100.00 %	0.150	A
Location: https://www.najumi.xyz/
Server: Netlify
X-Nf-Request-Id: 01GFWBATKQBGC5NKECZJ561ZNR
Date: Fri, 21 Oct 2022 04:03:02 GMT
Content-Length: 38
Content-Type: text/plain; charset=utf-8
Connection: close

• http://www.najumi.xyz/ 3.125.252.47	301	https://www.najumi.xyz/ Html is minified: 100.00 %	0.187	A
Location: https://www.najumi.xyz/
Server: Netlify
X-Nf-Request-Id: 01GFWBATESKDE1AJBPEJNQPYMM
Date: Fri, 21 Oct 2022 04:03:02 GMT
Content-Length: 38
Content-Type: text/plain; charset=utf-8
Connection: close

• http://www.najumi.xyz/ 34.141.28.239	301	https://www.najumi.xyz/ Html is minified: 100.00 %	0.156	A
Location: https://www.najumi.xyz/
Server: Netlify
X-Nf-Request-Id: 01GFWBAV400YW9NFNSYFTJ697N
Date: Fri, 21 Oct 2022 04:03:03 GMT
Content-Length: 38
Content-Type: text/plain; charset=utf-8
Connection: close

• http://www.najumi.xyz/ 34.159.168.235	301	https://www.najumi.xyz/ Html is minified: 100.00 %	0.156	A
Location: https://www.najumi.xyz/
Server: Netlify
X-Nf-Request-Id: 01GFWBAV9B03AYS9Z7J31YWKAP
Date: Fri, 21 Oct 2022 04:03:03 GMT
Content-Length: 38
Content-Type: text/plain; charset=utf-8
Connection: close

• http://www.najumi.xyz/ 2a05:d014:275:cb02:66df:50b:6e56:a6bf	301	https://www.najumi.xyz/ Html is minified: 100.00 %	0.157	A
Location: https://www.najumi.xyz/
Server: Netlify
X-Nf-Request-Id: 01GFWBATRVDWQ2SS69TH06QBGE
Date: Fri, 21 Oct 2022 04:03:02 GMT
Content-Length: 38
Content-Type: text/plain; charset=utf-8
Connection: close

• http://www.najumi.xyz/ 2a05:d014:275:cb02:7bc2:ee46:f4f6:be94	301	https://www.najumi.xyz/ Html is minified: 100.00 %	0.173	A
Location: https://www.najumi.xyz/
Server: Netlify
X-Nf-Request-Id: 01GFWBATXZVNYKMZ4DG39DVXQH
Date: Fri, 21 Oct 2022 04:03:02 GMT
Content-Length: 38
Content-Type: text/plain; charset=utf-8
Connection: close

• https://www.najumi.xyz/ 3.67.255.218 Inline-JavaScript (∑/total): 3/1498 Inline-CSS (∑/total): 0/0	200	Html is minified: 258.31 % Other inline scripts (∑/total): 1/1498	1.963	A
small visible content (num chars: 46) You need to enable JavaScript to run this app.
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Fri, 21 Oct 2022 04:03:07 GMT
Etag: "18efe5d67510822f2e527496e32e2fae-ssl-df"
Server: Netlify
Strict-Transport-Security: max-age=31536000
Vary: Accept-Encoding
X-Nf-Request-Id: 01GFWBAZETGFN6NBH6E5YW4WRA
Connection: close
Transfer-Encoding: chunked

• https://www.najumi.xyz/ 3.125.252.47 Inline-JavaScript (∑/total): 3/1498 Inline-CSS (∑/total): 0/0	200	Html is minified: 258.31 % Other inline scripts (∑/total): 1/1498	2.073	A
small visible content (num chars: 46) You need to enable JavaScript to run this app.
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Fri, 21 Oct 2022 04:03:03 GMT
Etag: "18efe5d67510822f2e527496e32e2fae-ssl-df"
Server: Netlify
Strict-Transport-Security: max-age=31536000
Vary: Accept-Encoding
X-Nf-Request-Id: 01GFWBAVR6ZZ94D57PBS82JDS3
Connection: close
Transfer-Encoding: chunked

• https://www.najumi.xyz/ 34.141.28.239 Inline-JavaScript (∑/total): 3/1498 Inline-CSS (∑/total): 0/0	200	Html is minified: 258.31 % Other inline scripts (∑/total): 1/1498	1.877	A
small visible content (num chars: 46) You need to enable JavaScript to run this app.
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Fri, 21 Oct 2022 04:03:15 GMT
Etag: "18efe5d67510822f2e527496e32e2fae-ssl-df"
Server: Netlify
Strict-Transport-Security: max-age=31536000
Vary: Accept-Encoding
X-Nf-Request-Id: 01GFWBB7MT00R5A1Y6C562XXNR
Connection: close
Transfer-Encoding: chunked

• https://www.najumi.xyz/ 34.159.168.235 Inline-JavaScript (∑/total): 3/1498 Inline-CSS (∑/total): 0/0	200	Html is minified: 258.31 % Other inline scripts (∑/total): 1/1498	1.940	A
small visible content (num chars: 46) You need to enable JavaScript to run this app.
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Fri, 21 Oct 2022 04:03:18 GMT
Etag: "18efe5d67510822f2e527496e32e2fae-ssl-df"
Server: Netlify
Strict-Transport-Security: max-age=31536000
Vary: Accept-Encoding
X-Nf-Request-Id: 01GFWBBAH8VTGN9PEP8VVD1QTE
Connection: close
Transfer-Encoding: chunked

• https://www.najumi.xyz/ 2a05:d014:275:cb02:66df:50b:6e56:a6bf Inline-JavaScript (∑/total): 3/1498 Inline-CSS (∑/total): 0/0	200	Html is minified: 258.31 % Other inline scripts (∑/total): 1/1498	1.663	A
small visible content (num chars: 46) You need to enable JavaScript to run this app.
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Fri, 21 Oct 2022 04:03:10 GMT
Etag: "18efe5d67510822f2e527496e32e2fae-ssl-df"
Server: Netlify
Strict-Transport-Security: max-age=31536000
Vary: Accept-Encoding
X-Nf-Request-Id: 01GFWBB2E4A3MEWX3ZETWWWRCY
Connection: close
Transfer-Encoding: chunked

• https://www.najumi.xyz/ 2a05:d014:275:cb02:7bc2:ee46:f4f6:be94 Inline-JavaScript (∑/total): 3/1498 Inline-CSS (∑/total): 0/0	200	Html is minified: 258.31 % Other inline scripts (∑/total): 1/1498	1.667	A
small visible content (num chars: 46) You need to enable JavaScript to run this app.
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Fri, 21 Oct 2022 04:03:13 GMT
Etag: "18efe5d67510822f2e527496e32e2fae-ssl-df"
Server: Netlify
Strict-Transport-Security: max-age=31536000
Vary: Accept-Encoding
X-Nf-Request-Id: 01GFWBB51RT1EPHER7TD059DQ2
Connection: close
Transfer-Encoding: chunked

• http://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 3.67.255.218 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 100.00 % Other inline scripts (∑/total): 0/0	0.154	A
Visible Content: Redirecting to https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Age: 1
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 107
Content-Type: text/plain
Date: Fri, 21 Oct 2022 04:03:22 GMT
Location: https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: Netlify
X-Nf-Request-Id: 01GFWBBDRAWAVVDD864S8JRV93
Connection: close

• http://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 3.125.252.47 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 100.00 % Other inline scripts (∑/total): 0/0	0.157	A
Visible Content: Redirecting to https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 107
Content-Type: text/plain
Date: Fri, 21 Oct 2022 04:03:21 GMT
Location: https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: Netlify
X-Nf-Request-Id: 01GFWBBD9P31M9ESNF3TEY7TSD
Connection: close

• http://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 34.141.28.239 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 100.00 % Other inline scripts (∑/total): 0/0	0.153	A
Visible Content: Redirecting to https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 107
Content-Type: text/plain
Date: Fri, 21 Oct 2022 04:03:23 GMT
Location: https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: Netlify
X-Nf-Request-Id: 01GFWBBF3XNMCTTY79S9T3R96E
Connection: close

• http://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 34.159.168.235 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 100.00 % Other inline scripts (∑/total): 0/0	0.153	A
Visible Content: Redirecting to https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 107
Content-Type: text/plain
Date: Fri, 21 Oct 2022 04:03:23 GMT
Location: https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: Netlify
X-Nf-Request-Id: 01GFWBBFJGMYCACQV5S9N4J3YV
Connection: close

• http://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2a05:d014:275:cb02:66df:50b:6e56:a6bf Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 100.00 % Other inline scripts (∑/total): 0/0	0.153	A
Visible Content: Redirecting to https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 107
Content-Type: text/plain
Date: Fri, 21 Oct 2022 04:03:22 GMT
Location: https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: Netlify
X-Nf-Request-Id: 01GFWBBE6GHFWVF6VN7BZKMVJ3
Connection: close

• http://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2a05:d014:275:cb02:7bc2:ee46:f4f6:be94 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 100.00 % Other inline scripts (∑/total): 0/0	0.150	A
Visible Content: Redirecting to https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Age: 2
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 107
Content-Type: text/plain
Date: Fri, 21 Oct 2022 04:03:22 GMT
Location: https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Server: Netlify
X-Nf-Request-Id: 01GFWBBEN6GTDG9R6GJ44MYC4J
Connection: close

• https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Inline-JavaScript (∑/total): 3/1498 Inline-CSS (∑/total): 0/0	200	Html is minified: 258.31 % Other inline scripts (∑/total): 1/1498	2.007
Visible Content: You need to enable JavaScript to run this app. Info: Html-Content with meta and/or script, may be a problem creating a Letsencrypt certificate using http-01 validation
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Fri, 21 Oct 2022 04:03:40 GMT
Etag: "18efe5d67510822f2e527496e32e2fae-ssl-df"
Server: Netlify
Strict-Transport-Security: max-age=31536000
Vary: Accept-Encoding
X-Nf-Request-Id: 01GFWBC04GC991KH843XZZVPV8
Connection: close
Transfer-Encoding: chunked

• https://3.67.255.218/ 3.67.255.218	404		1.710	N
Not Found
Certificate error: RemoteCertificateNameMismatch
small visible content (num chars: 0)
Server: Netlify
X-Nf-Request-Id: 01GFWBBJWKMA4107KTHH7P3S35
Date: Fri, 21 Oct 2022 04:03:27 GMT
Content-Length: 0
Connection: close

• https://3.125.252.47/ 3.125.252.47	404		1.764	N
Not Found
Certificate error: RemoteCertificateNameMismatch
small visible content (num chars: 0)
Server: Netlify
X-Nf-Request-Id: 01GFWBBG7MNJ4BNDDJGPG9FXR8
Date: Fri, 21 Oct 2022 04:03:24 GMT
Content-Length: 0
Connection: close

• https://34.141.28.239/ 34.141.28.239	404		1.783	N
Not Found
Certificate error: RemoteCertificateNameMismatch
small visible content (num chars: 0)
Server: Netlify
X-Nf-Request-Id: 01GFWBBTK4D8K307FDSHWX8CE8
Date: Fri, 21 Oct 2022 04:03:35 GMT
Content-Length: 0
Connection: close

• https://34.159.168.235/ 34.159.168.235	404		1.760	N
Not Found
Certificate error: RemoteCertificateNameMismatch
small visible content (num chars: 0)
Server: Netlify
X-Nf-Request-Id: 01GFWBBXA7DWE2ZERXRD7140P6
Date: Fri, 21 Oct 2022 04:03:37 GMT
Content-Length: 0
Connection: close

• https://[2a05:d014:0275:cb02:66df:050b:6e56:a6bf]/ 2a05:d014:275:cb02:66df:50b:6e56:a6bf	404		1.554	N
Not Found
Certificate error: RemoteCertificateNameMismatch
small visible content (num chars: 0)
Server: Netlify
X-Nf-Request-Id: 01GFWBBNKMZDR01WZ28T98HF4D
Date: Fri, 21 Oct 2022 04:03:30 GMT
Content-Length: 0
Connection: close

• https://[2a05:d014:0275:cb02:7bc2:ee46:f4f6:be94]/ 2a05:d014:275:cb02:7bc2:ee46:f4f6:be94	404		1.560	N
Not Found
Certificate error: RemoteCertificateNameMismatch
small visible content (num chars: 0)
Server: Netlify
X-Nf-Request-Id: 01GFWBBR2VKK14Q3AW0MZ1P2EN
Date: Fri, 21 Oct 2022 04:03:32 GMT
Content-Length: 0
Connection: close

7. Comments

	1. General Results, most used to calculate the result
A	name "najumi.xyz" is domain, public suffix is ".xyz", top-level-domain is ".xyz", top-level-domain-type is "generic", tld-manager is "XYZ.COM LLC", num .xyz-domains preloaded: 1341 (complete: 199710)
A	Good: All ip addresses are public addresses
A	Good: Minimal 2 ip addresses per domain name found: www.najumi.xyz has 4 different ip addresses (authoritative).
A	Good: Ipv4 and Ipv6 addresses per domain name found: www.najumi.xyz has 2 ipv4, 2 ipv6 addresses
A	Good: No asked Authoritative Name Server had a timeout
A	Good: destination is https
A	Good - only one version with Http-Status 200
A	Good: one preferred version: www is preferred
A	Good: No cookie sent via http.
	HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
A	http://www.najumi.xyz/ 3.67.255.218	301	https://www.najumi.xyz/	Correct redirect http - https with the same domain name
A	http://www.najumi.xyz/ 3.125.252.47	301	https://www.najumi.xyz/	Correct redirect http - https with the same domain name
A	http://www.najumi.xyz/ 34.141.28.239	301	https://www.najumi.xyz/	Correct redirect http - https with the same domain name
A	http://www.najumi.xyz/ 34.159.168.235	301	https://www.najumi.xyz/	Correct redirect http - https with the same domain name
A	http://www.najumi.xyz/ 2a05:d014:275:cb02:66df:50b:6e56:a6bf	301	https://www.najumi.xyz/	Correct redirect http - https with the same domain name
A	http://www.najumi.xyz/ 2a05:d014:275:cb02:7bc2:ee46:f4f6:be94	301	https://www.najumi.xyz/	Correct redirect http - https with the same domain name
M	https://3.67.255.218/ 3.67.255.218	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://3.125.252.47/ 3.125.252.47	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://34.141.28.239/ 34.141.28.239	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://34.159.168.235/ 34.159.168.235	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://[2a05:d014:0275:cb02:66df:050b:6e56:a6bf]/ 2a05:d014:275:cb02:66df:50b:6e56:a6bf	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://[2a05:d014:0275:cb02:7bc2:ee46:f4f6:be94]/ 2a05:d014:275:cb02:7bc2:ee46:f4f6:be94	404		Misconfiguration - main pages should never send http status 400 - 499
N	https://3.67.255.218/ 3.67.255.218	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://3.125.252.47/ 3.125.252.47	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://34.141.28.239/ 34.141.28.239	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://34.159.168.235/ 34.159.168.235	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://[2a05:d014:0275:cb02:66df:050b:6e56:a6bf]/ 2a05:d014:275:cb02:66df:50b:6e56:a6bf	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://[2a05:d014:0275:cb02:7bc2:ee46:f4f6:be94]/ 2a05:d014:275:cb02:7bc2:ee46:f4f6:be94	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
A	Good: More then one ip address per domain name found, checking all ip addresses the same http status and the same certificate found: Domain www.najumi.xyz, 4 ip addresses.
	Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are different. So that domain requires Server Name Indication (SNI), so the server is able to select the correct certificate.: Domain www.najumi.xyz, 4 ip addresses.
B	No _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Read the result of server-daten.de (Url-Checks, Comments, Connections and DomainServiceRecords) to see a complete definition. Domainname: _mta-sts.najumi.xyz
	2. Header-Checks
	3. DNS- and NameServer - Checks
A	Info:: 22 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 2 Name Servers.
A	Info:: 22 Queries complete, 22 with IPv6, 0 with IPv4.
A	Good: All DNS Queries done via IPv6.
	Bad (greater 8):: An average of 11.0 queries per domain name server required to find all ip addresses of all name servers.
A	Info:: 2 different Name Servers found: dns1.registrar-servers.com, dns2.registrar-servers.com, 2 Name Servers included in Delegation: dns1.registrar-servers.com, dns2.registrar-servers.com, 2 Name Servers included in 1 Zone definitions: dns1.registrar-servers.com, dns2.registrar-servers.com, 1 Name Servers listed in SOA.Primary: dns1.registrar-servers.com.
A	Good: Only one SOA.Primary Name Server found.: dns1.registrar-servers.com.
A	Good: SOA.Primary Name Server included in the delegation set.: dns1.registrar-servers.com.
A	Good: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: dns1.registrar-servers.com, dns2.registrar-servers.com
A	Good: All Name Server Domain Names have a Public Suffix.
A	Good: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
A	Good: All Name Server ip addresses are public.
A	Good: Minimal 2 different name servers (public suffix and public ip address) found: 2 different Name Servers found
A	Good: All name servers have ipv4- and ipv6-addresses.: 2 different Name Servers found
	Warning: All Name Servers have the same Top Level Domain / Public Suffix. If there is a problem with that Top Level Domain, your domain may be affected. Better: Use Name Servers with different top level domains.: 2 Name Servers, 1 Top Level Domain: com
	Warning: All Name Servers have the same domain name. If there is a problem with that domain name (or with the name servers of that domain name), your domain may be affected. Better: Use Name Servers with different domain names / different top level domains.: Only one domain name used: registrar-servers.com
	Warning: All Name Servers from the same Country / IP location.: 2 Name Servers, 1 Countries: US
A	Info: Ipv4-Subnet-list: 2 Name Servers, 1 different subnets (first Byte): 156., 1 different subnets (first two Bytes): 156.154., 2 different subnets (first three Bytes): 156.154.132., 156.154.133.
A	Good: Name Server IPv4-addresses from different subnet found:
A	Info: IPv6-Subnet-list: 2 Name Servers with IPv6, 1 different subnets (first block): 2610:, 1 different subnets (first two blocks): 2610:00a1:, 2 different subnets (first three blocks): 2610:00a1:1024:, 2610:00a1:1025:, 2 different subnets (first four blocks): 2610:00a1:1024:0000:, 2610:00a1:1025:0000:
A	Good: Name Server IPv6 addresses from different subnets found.
A	Good: Nameserver supports TCP connections: 4 good Nameserver
A	Good: Nameserver supports Echo Capitalization: 4 good Nameserver
A	Good: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 4 good Nameserver
A	Good: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 4 good Nameserver
	Nameserver doesn't pass all EDNS-Checks: ns0.centralnic.net: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
A	Good: All SOA have the same Serial Number
A	Good: CAA entries found, creating certificate is limited: digicert.com is allowed to create certificates
	4. Content- and Performance-critical Checks
	https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	200		Warning: Not existing ACME-file, but Server sends 200, not 404 or redirect. May be a problem creating a Letsencrypt certificate. Checking /.well-known/acme-challenge/random-filename - a http status 404 - Not Found - is expected. If your server sends content and a http status 200, the validation file (87 bytes, token, dot and the hash of the public part of the account key) may be invisible, so Letsencrypt can't validate your domain. If it is an application that sends this content, perhaps create an exception, so /.well-known/acme-challenge sends raw files. Or create a redirect to another domain and / or port 443, but your Letsencrypt client must support such a solution. Certbot: Use webroot as authenticator - https://certbot.eff.org/docs/using.html Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
A	Good: Every https result with status 200 and greater 1024 Bytes is compressed (gzip, deflate, br checked).
	https://www.najumi.xyz/ 3.67.255.218	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://www.najumi.xyz/ 3.125.252.47	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://www.najumi.xyz/ 34.141.28.239	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://www.najumi.xyz/ 34.159.168.235	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://www.najumi.xyz/ 2a05:d014:275:cb02:66df:50b:6e56:a6bf	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://www.najumi.xyz/ 2a05:d014:275:cb02:7bc2:ee46:f4f6:be94	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://www.najumi.xyz/ 3.67.255.218	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://www.najumi.xyz/ 3.125.252.47	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://www.najumi.xyz/ 34.141.28.239	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://www.najumi.xyz/ 34.159.168.235	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://www.najumi.xyz/ 2a05:d014:275:cb02:66df:50b:6e56:a6bf	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://www.najumi.xyz/ 2a05:d014:275:cb02:7bc2:ee46:f4f6:be94	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
A	Good: Every https connection via port 443 supports the http/2 protocol via ALPN.
	https://www.najumi.xyz/ 3.67.255.218	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 2 script elements without defer/async.
	https://www.najumi.xyz/ 3.125.252.47	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 2 script elements without defer/async.
	https://www.najumi.xyz/ 34.141.28.239	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 2 script elements without defer/async.
	https://www.najumi.xyz/ 34.159.168.235	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 2 script elements without defer/async.
	https://www.najumi.xyz/ 2a05:d014:275:cb02:66df:50b:6e56:a6bf	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 2 script elements without defer/async.
	https://www.najumi.xyz/ 2a05:d014:275:cb02:7bc2:ee46:f4f6:be94	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 2 script elements without defer/async.
	https://www.najumi.xyz/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 2 script elements without defer/async.
A	Good: All CSS / JavaScript files are sent compressed (gzip, deflate, br checked). That reduces the content of the files. 42 external CSS / JavaScript files found
	Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 0 external CSS / JavaScript files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 35 with Cache-Control max-age too short (minimum 7 days), 7 with Cache-Control long enough, 42 complete.
A	Good: All checked attribute values are enclosed in quotation marks (" or ').
A	Info: No img element found, no alt attribute checked
A	Good: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
	https://3.67.255.218/ 3.67.255.218	404	1.710 seconds	Warning: 404 needs more then one second
	https://3.125.252.47/ 3.125.252.47	404	1.764 seconds	Warning: 404 needs more then one second
	https://34.141.28.239/ 34.141.28.239	404	1.783 seconds	Warning: 404 needs more then one second
	https://34.159.168.235/ 34.159.168.235	404	1.760 seconds	Warning: 404 needs more then one second
	https://[2a05:d014:0275:cb02:66df:050b:6e56:a6bf]/ 2a05:d014:275:cb02:66df:50b:6e56:a6bf	404	1.554 seconds	Warning: 404 needs more then one second
	https://[2a05:d014:0275:cb02:7bc2:ee46:f4f6:be94]/ 2a05:d014:275:cb02:7bc2:ee46:f4f6:be94	404	1.560 seconds	Warning: 404 needs more then one second
A	Duration: 285837 milliseconds, 285.837 seconds

8. Connections

Domain

Port

Cert.

Protocol

KeyExchange

Strength

Cipher

Strength

HashAlgorithm

OCSP stapling

Domain/KeyExchange

IP/Strength

Port/Cipher

Cert./Strength

Protocol/HashAlgorithm

OCSP stapling

www.najumi.xyz

3.67.255.218

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

www.najumi.xyz

3.67.255.218

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
SNI required

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
SNI required

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=*.najumi.xyz
	2	CN=R3, O=Let's Encrypt, C=US
	3	CN=ISRG Root X1, O=Internet Security Research Group, C=US

www.najumi.xyz

3.125.252.47

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

www.najumi.xyz

3.125.252.47

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
SNI required

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
SNI required

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=*.najumi.xyz
	2	CN=R3, O=Let's Encrypt, C=US
	3	CN=ISRG Root X1, O=Internet Security Research Group, C=US

www.najumi.xyz

34.141.28.239

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

www.najumi.xyz

34.141.28.239

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
SNI required

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
SNI required

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=*.najumi.xyz
	2	CN=R3, O=Let's Encrypt, C=US
	3	CN=ISRG Root X1, O=Internet Security Research Group, C=US

www.najumi.xyz

34.159.168.235

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

www.najumi.xyz

34.159.168.235

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
SNI required

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
SNI required

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=*.najumi.xyz
	2	CN=R3, O=Let's Encrypt, C=US
	3	CN=ISRG Root X1, O=Internet Security Research Group, C=US

www.najumi.xyz

2a05:d014:275:cb02:66df:50b:6e56:a6bf

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

www.najumi.xyz

2a05:d014:275:cb02:66df:50b:6e56:a6bf

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
SNI required

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
SNI required

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=*.najumi.xyz
	2	CN=R3, O=Let's Encrypt, C=US
	3	CN=ISRG Root X1, O=Internet Security Research Group, C=US

www.najumi.xyz

2a05:d014:275:cb02:7bc2:ee46:f4f6:be94

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

www.najumi.xyz

2a05:d014:275:cb02:7bc2:ee46:f4f6:be94

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
SNI required

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
SNI required

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=*.najumi.xyz
	2	CN=R3, O=Let's Encrypt, C=US
	3	CN=ISRG Root X1, O=Internet Security Research Group, C=US

www.najumi.xyz

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

www.najumi.xyz

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=*.najumi.xyz
	2	CN=R3, O=Let's Encrypt, C=US
	3	CN=ISRG Root X1, O=Internet Security Research Group, C=US

3.67.255.218

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

3.67.255.218

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=*.netlify.app, O="Netlify, Inc", L=San Francisco, C=US, ST=California
	2	CN=DigiCert TLS Hybrid ECC SHA384 2020 CA1, O=DigiCert Inc, C=US

3.125.252.47

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

3.125.252.47

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=*.netlify.app, O="Netlify, Inc", L=San Francisco, C=US, ST=California
	2	CN=DigiCert TLS Hybrid ECC SHA384 2020 CA1, O=DigiCert Inc, C=US

34.141.28.239

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

34.141.28.239

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=*.netlify.app, O="Netlify, Inc", L=San Francisco, C=US, ST=California
	2	CN=DigiCert TLS Hybrid ECC SHA384 2020 CA1, O=DigiCert Inc, C=US

34.159.168.235

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

34.159.168.235

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=*.netlify.app, O="Netlify, Inc", L=San Francisco, C=US, ST=California
	2	CN=DigiCert TLS Hybrid ECC SHA384 2020 CA1, O=DigiCert Inc, C=US

[2a05:d014:0275:cb02:66df:050b:6e56:a6bf]

2a05:d014:275:cb02:66df:50b:6e56:a6bf

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

[2a05:d014:0275:cb02:66df:050b:6e56:a6bf]

2a05:d014:275:cb02:66df:50b:6e56:a6bf

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=*.netlify.app, O="Netlify, Inc", L=San Francisco, C=US, ST=California
	2	CN=DigiCert TLS Hybrid ECC SHA384 2020 CA1, O=DigiCert Inc, C=US

[2a05:d014:0275:cb02:7bc2:ee46:f4f6:be94]

2a05:d014:275:cb02:7bc2:ee46:f4f6:be94

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

[2a05:d014:0275:cb02:7bc2:ee46:f4f6:be94]

2a05:d014:275:cb02:7bc2:ee46:f4f6:be94

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=*.netlify.app, O="Netlify, Inc", L=San Francisco, C=US, ST=California
	2	CN=DigiCert TLS Hybrid ECC SHA384 2020 CA1, O=DigiCert Inc, C=US

9. Certificates

CN=*.najumi.xyz

19.10.2022

17.01.2023
855 days expired

*.najumi.xyz, najumi.xyz - 2 entries

CN=*.najumi.xyz

19.10.2022

17.01.2023
855 days expired

*.najumi.xyz, najumi.xyz - 2 entries

Keyalgorithm	EC Public Key (256 bit, prime256v1)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	03DC970E19DD4543022291B80E9CB0D7CA17
Thumbprint:	7476C00AAFBDAD028D14B3AC2C7E355B6637429E
SHA256 / Certificate:	eE6lIFmkCG7i+IGR/k2or4kmuHSTWxx5J7JaJG0Hv2k=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	8d0b96df8c4e68c2eec5927a5dc5e457191294bc22b3217e3131940bec0f3411
SHA256 hex / Subject Public Key Information (SPKI):	8d0b96df8c4e68c2eec5927a5dc5e457191294bc22b3217e3131940bec0f3411 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://r3.o.lencr.org
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=R3, O=Let's Encrypt, C=US

04.09.2020

15.09.2025
expires in 117 days

CN=R3, O=Let's Encrypt, C=US

04.09.2020

15.09.2025
expires in 117 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	00912B084ACF0C18A753F6D62E25A75F5A
Thumbprint:	A053375BFE84E8B748782C7CEE15827A6AF5A405
SHA256 / Certificate:	Z63RFmsCCuYbj1/JaBPATCqliZYHloZVcqPH5zdhPf0=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SHA256 hex / Subject Public Key Information (SPKI):	8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

CN=ISRG Root X1, O=Internet Security Research Group, C=US

04.06.2015

04.06.2035
expires in 3666 days

CN=ISRG Root X1, O=Internet Security Research Group, C=US

04.06.2015

04.06.2035
expires in 3666 days

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	008210CFB0D240E3594463E0BB63828B00
Thumbprint:	CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:	lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):	96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):	0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):	0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

CN=*.netlify.app, O="Netlify, Inc", L=San Francisco, S=California, C=US

15.02.2022

03.03.2023
810 days expired

*.netlify.app, netlify.app - 2 entries

CN=*.netlify.app, O="Netlify, Inc", L=San Francisco, S=California, C=US

15.02.2022

03.03.2023
810 days expired

*.netlify.app, netlify.app - 2 entries

Keyalgorithm	EC Public Key (256 bit, prime256v1)
Signatur:	ECDSA SHA384
Serial Number:	0F54F8FF8852B037478AF5B5F27231D4
Thumbprint:	C2914BFEF17A3B5FE87CB88198C25ABA7B7D9245
SHA256 / Certificate:	VIWlq9yV48pKewZqhBN9mBQS1UDpyt7fbmSzoCg2OK4=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	bffd82e8c5a5642fbe96777b3099fbbe8e3b492131a9a17fb15cc650ef31f293
SHA256 hex / Subject Public Key Information (SPKI):	bffd82e8c5a5642fbe96777b3099fbbe8e3b492131a9a17fb15cc650ef31f293 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.digicert.com
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=DigiCert TLS Hybrid ECC SHA384 2020 CA1, O=DigiCert Inc, C=US

14.04.2021

14.04.2031
expires in 2154 days

CN=DigiCert TLS Hybrid ECC SHA384 2020 CA1, O=DigiCert Inc, C=US

14.04.2021

14.04.2031
expires in 2154 days

Keyalgorithm	EC Public Key (384 bit, secp384r1)
Signatur:	SHA384 With RSA Encryption
Serial Number:	07F2F35C87A877AF7AEFE947993525BD
Thumbprint:	AEC13CDD5EA6A3998AEC14AC331AD96BEDBB770F
SHA256 / Certificate:	96mhsv2WSj8mcL1mjVYft8VdOqmrg5Hn4WlwLbij288=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	7b4211cf94e2a37180d57b387d4556987d711c3887d9d31b56d0814a438876a3
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.digicert.com
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US

10.11.2006

10.11.2031
expires in 2364 days

CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US

10.11.2006

10.11.2031
expires in 2364 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA-1 with RSA Encryption
Serial Number:	083BE056904246B1A1756AC95991C74A
Thumbprint:	A8985D3A65E5E5C4B2D7D66D40C6DD2FB19C5436
SHA256 / Certificate:	Q0ig6URMeMsmXgWNXolEtNhPlmK9Jtslf4k0pEPHAWE=
SHA256 hex / Cert (DANE * 0 1):	4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161
SHA256 hex / PublicKey (DANE * 1 1):	aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SHA256 hex / Subject Public Key Information (SPKI):	aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Small Code Update - wait one minute

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

Small Code Update - wait one minute

11. Html-Content - Entries

Summary

							Subresource Integrity (SRI)
Domainname	HtmlElement	rel/property	∑	∑ size	∑ problems	∑ int.	∑ ext.	∑ Origin poss.	∑ SRI ParseErrors	∑ SRI valid	∑ SRI missing
https://www.najumi.xyz/ 3.67.255.218	link	stylesheet	4		0	2	2	2	0	0	-2
	link	other	3	1,405 Bytes	0	2	0	0	0	0
	meta	other	3		0			0	0	0
	script		2		0	2	0	0	0	0
https://www.najumi.xyz/ 3.125.252.47	link	stylesheet	4		0	2	2	2	0	0	-2
	link	other	3	1,405 Bytes	0	2	0	0	0	0
	meta	other	3		0			0	0	0
	script		2		0	2	0	0	0	0
https://www.najumi.xyz/ 34.141.28.239	link	stylesheet	4		0	2	2	2	0	0	-2
	link	other	3	1,405 Bytes	0	2	0	0	0	0
	meta	other	3		0			0	0	0
	script		2		0	2	0	0	0	0
https://www.najumi.xyz/ 34.159.168.235	link	stylesheet	4		0	2	2	2	0	0	-2
	link	other	3	1,405 Bytes	0	2	0	0	0	0
	meta	other	3		0			0	0	0
	script		2		0	2	0	0	0	0
https://www.najumi.xyz/ 2a05:d014:275:cb02:66df:50b:6e56:a6bf	link	stylesheet	4		0	2	2	2	0	0	-2
	link	other	3	1,405 Bytes	0	2	0	0	0	0
	meta	other	3		0			0	0	0
	script		2		0	2	0	0	0	0
https://www.najumi.xyz/ 2a05:d014:275:cb02:7bc2:ee46:f4f6:be94	link	stylesheet	4		0	2	2	2	0	0	-2
	link	other	3	1,405 Bytes	0	2	0	0	0	0
	meta	other	3		0			0	0	0
	script		2		0	2	0	0	0	0

Details (currently limited to 500 rows - some problems with spam users)

Domainname

Html-Element

name/equiv/ property/rel

href/src/content

HttpStatus

msg

∑

Status

3.67.255.218

link

apple-touch-icon

/logo192.png

200

text/html; charset=UTF-8
missing X-Content-Type-Options nosniff

1222 Bytes

link

icon

/favicon.png

200

image/png
missing X-Content-Type-Options nosniff

Cache-Control: public, max-age=0, must-revalidate - max-age too short.

No Compression - 183 Bytes

link

manifest

/manifest.json

link

stylesheet

./sb-admin-2.min.css

200

text/css; charset=UTF-8
missing X-Content-Type-Options nosniff

Cache-Control: public, max-age=0, must-revalidate - max-age too short.

Compression required: 26756 Bytes

local SRI possible, possible hash-values:

sha256-ZLqnfxdZzmv9dv/2T6RgkaEnKAQNfYKOrRD7NTf+T5Q=
sha384-vWsYWXqmtyJCTjdIBVDLBrtBJNxHjVPczd57UWvIsSvU1CqM/7ljUPCJJm5Ibfs2
sha512-cdrW5uErvPf3JHKYbr+c9ZUiobfl1Tc8xHVa409HgDSHL1RbBB7VAa2j4vnDW/jY6t26XCQxUPw53srlbTugLg==

Content loaded via url("...")

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' fill='%23fff' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath d='M2.75 0l-1.5 1.5L3.75 4l-2.5 2.5L2.75 8l4-4-4-4z'/%3e%3c/svg%3e	1

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' fill='%23fff' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath d='M5.25 0l-4 4 4 4 1.5-1.5L4.25 4l2.5-2.5L5.25 0z'/%3e%3c/svg%3e	1

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='12' height='12' fill='none' stroke='%23e74a3b' viewBox='0 0 12 12'%3e%3ccircle cx='6' cy='6' r='4.5'/%3e%3cpath stroke-linejoin='round' d='M5.8 3.6h.4L6 6.5z'/%3e%3ccircle cx='6' cy='8.2' r='.6' fill='%23e74a3b' stroke='none'/%3e%3c/svg%3e	2

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='12' height='12' viewBox='-4 -4 8 8'%3e%3ccircle r='3' fill='%23fff'/%3e%3c/svg%3e	1

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='30' height='30' viewBox='0 0 30 30'%3e%3cpath stroke='rgba(0, 0, 0, 0.5)' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e	1

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='30' height='30' viewBox='0 0 30 30'%3e%3cpath stroke='rgba(255, 255, 255, 0.5)' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e	1

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='4' height='4' viewBox='0 0 4 4'%3e%3cpath stroke='%23fff' d='M0 2h4'/%3e%3c/svg%3e	1

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='4' height='5' viewBox='0 0 4 5'%3e%3cpath fill='%235a5c69' d='M2 0L0 2h4zm0 5L0 3h4z'/%3e%3c/svg%3e	3

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath fill='%231cc88a' d='M2.3 6.73L.6 4.53c-.4-1.04.46-1.4 1.1-.8l1.1 1.4 3.4-3.8c.6-.63 1.6-.27 1.2.7l-4 4.6c-.43.5-.8.4-1.1.1z'/%3e%3c/svg%3e	2

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath fill='%23fff' d='M6.564.75l-3.59 3.612-1.538-1.55L0 4.26l2.974 2.99L8 2.193z'/%3e%3c/svg%3e	1

https://source.unsplash.com/K4mSJ7kc0As/600x800

https://source.unsplash.com/Mv9hjnEUHR4/600x800

https://source.unsplash.com/oWTW-jNGl9I/600x800

link

stylesheet

/static/css/main.a5ed8c10.chunk.css

200

text/css; charset=UTF-8
missing X-Content-Type-Options nosniff

Cache-Control: public, max-age=0, must-revalidate - max-age too short.

Compression required: 2600 Bytes

local SRI possible, possible hash-values:

sha256-pTSFfSdkQbFjI7v2iTlR6IwmB4tjqxU97WL1feKM6DQ=
sha384-zg6tcIYZz1Rh295VrM2wydnq1HFv6Ij/BZ3gBUKUdCAXqH6cS2MGxU8ZQaLD28ys
sha512-lqK7pF1FCgIVzvX2itFFnwh9HiFhVNeAjGI2tEc5znLNj0CdHNy77bcmzIaMH/TXzZn1PKY27MUGjHBMB09oJg==

Content loaded via url("...")

/static/media/NeuzeitGroBold.e033e210.ttf

/static/media/PoppinsMedium.f61a4eb2.ttf

link

stylesheet

https://fonts.googleapis.com/css?family=Nunito:200,200i,300,300i,400,400i,600,600i,700,700i,800,800i,900,900i

200

text/css; charset=utf-8
X-Content-Type-Options nosniff found

Compression required: 330 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-hXAf/to1vnjdbO68j0kMiZ53GoDq5Zr7h4FulZ0tqWI=
sha384-e94QTuLxN+7TztfmkcbNJEfk68UabRtaXnIi+TfYlRHtcVGuHzHhH8ggxABdKYPR
sha512-6RxqiMX+Xz22wF/iNXjdxkacEWrHu/XREiLZhxdOD188f16RMh15L/eJ9I4AUtI8w/UvJrJLG99FjKgoj3JX8w==

Content loaded via url("...")

https://fonts.gstatic.com/s/nunito/v25/XRXI3I6Li01BKofiOc5wtlZ2di8HDBImdTQ3ig.ttf

https://fonts.gstatic.com/s/nunito/v25/XRXI3I6Li01BKofiOc5wtlZ2di8HDDshdTQ3ig.ttf

https://fonts.gstatic.com/s/nunito/v25/XRXI3I6Li01BKofiOc5wtlZ2di8HDDsmdTQ3ig.ttf

https://fonts.gstatic.com/s/nunito/v25/XRXI3I6Li01BKofiOc5wtlZ2di8HDFwmdTQ3ig.ttf

https://fonts.gstatic.com/s/nunito/v25/XRXI3I6Li01BKofiOc5wtlZ2di8HDGUmdTQ3ig.ttf

https://fonts.gstatic.com/s/nunito/v25/XRXI3I6Li01BKofiOc5wtlZ2di8HDLshdTQ3ig.ttf

https://fonts.gstatic.com/s/nunito/v25/XRXI3I6Li01BKofiOc5wtlZ2di8HDOUhdTQ3ig.ttf

https://fonts.gstatic.com/s/nunito/v25/XRXK3I6Li01BKofIMPyPbj8d7IEAGXNi83AHjabf.ttf

https://fonts.gstatic.com/s/nunito/v25/XRXK3I6Li01BKofIMPyPbj8d7IEAGXNiBHcHjabf.ttf

https://fonts.gstatic.com/s/nunito/v25/XRXK3I6Li01BKofIMPyPbj8d7IEAGXNic3cHjabf.ttf

https://fonts.gstatic.com/s/nunito/v25/XRXK3I6Li01BKofIMPyPbj8d7IEAGXNiLXAHjabf.ttf

https://fonts.gstatic.com/s/nunito/v25/XRXK3I6Li01BKofIMPyPbj8d7IEAGXNiLXcHjabf.ttf

https://fonts.gstatic.com/s/nunito/v25/XRXK3I6Li01BKofIMPyPbj8d7IEAGXNirXAHjabf.ttf

https://fonts.gstatic.com/s/nunito/v25/XRXK3I6Li01BKofIMPyPbj8d7IEAGXNiSncHjabf.ttf

link

stylesheet

https://stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

200

text/css; charset=utf-8
X-Content-Type-Options nosniff found

Cache-Control: public, max-age=31919000 - with long duration found.

Compression required: 7782 Bytes

Server-Header Access-Control-Allow-Origin: *

Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-eZrrJcwDc/3uDhsdt61sL2oOBY362qM3lon1gyExkL0=
sha384-wvfXpqpZZVQGK6TAh5PVlGOfQNHSoD2xbE+QkPxCAFlNEevoEH3Sl0sibVcOQVnN
sha512-SfTiTlX6kk+qitfevl/7LibUOeJWlt9rbyDn92a1DqWOw9vWG2MFoays0sgObmWazO5BQPiFucnnEAjpAB+/Sw==

Content loaded via url("...")

../fonts/fontawesome-webfont.eot?#iefix&v=4.7.0

../fonts/fontawesome-webfont.eot?v=4.7.0

../fonts/fontawesome-webfont.svg?v=4.7.0#fontawesomeregular

../fonts/fontawesome-webfont.ttf?v=4.7.0

../fonts/fontawesome-webfont.woff?v=4.7.0

../fonts/fontawesome-webfont.woff2?v=4.7.0

meta

charset

utf-8

meta

X-UA-Compatible

IE=edge

meta

viewport

width=device-width,initial-scale=1,shrink-to-fit=no

script

src

/static/js/2.5d450897.chunk.js

200

Missing defer / async attribute.

application/javascript; charset=UTF-8
missing X-Content-Type-Options nosniff

Cache-Control: public, max-age=0, must-revalidate - max-age too short.

Compression required: 274086 Bytes

local SRI possible, possible hash-values:

sha256-QySECFlFmoVkYhjTxLuAWy//Gr+GNAyPhYogqoFif5A=
sha384-Ms41UKHkZ56lq5WJsiW92IeStAQaNGjtbwv0PLKbbQuQzgNJKiiDuAmMCr6adhRS
sha512-rMtwh23pflyOVvix7tKSRrVJNqxUuRsuZ3DKMsUONBPIxhe1TMAosQ4xQt10e8tzfJrWNmgO35PYUfat/mtbmw==

script

src

/static/js/main.4ae8b06a.chunk.js

200

Missing defer / async attribute.

application/javascript; charset=UTF-8
missing X-Content-Type-Options nosniff

Cache-Control: public, max-age=0, must-revalidate - max-age too short.

Compression required: 7017 Bytes

local SRI possible, possible hash-values:

sha256-sL01DIShn1ziC2arofVvPZgWqe/pgIkQJJePHLUECLs=
sha384-x1S5kjQpOipp4zriV/SFz4dMhzinA4AIh3K21skMw5jky63fBWqDouO9i9tVrR2I
sha512-9K0WiPTfvHrgQC2IG4O0S2N7lQUKgXaGVqhBBJkPskIwlJ/ukM27dXBa7FKwQTfRHrVYe3knJ53U2DRZUGtOow==

https://www.najumi.xyz/
3.125.252.47

link

apple-touch-icon

/logo192.png

200

text/html; charset=UTF-8
missing X-Content-Type-Options nosniff

1222 Bytes

link

icon

/favicon.png

200

image/png
missing X-Content-Type-Options nosniff

Cache-Control: public, max-age=0, must-revalidate - max-age too short.

No Compression - 183 Bytes

link

manifest

/manifest.json

link

stylesheet

./sb-admin-2.min.css

200

text/css; charset=UTF-8
missing X-Content-Type-Options nosniff

Cache-Control: public, max-age=0, must-revalidate - max-age too short.

Compression required: 26756 Bytes

local SRI possible, possible hash-values:

Content loaded via url("...")

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' fill='%23fff' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath d='M2.75 0l-1.5 1.5L3.75 4l-2.5 2.5L2.75 8l4-4-4-4z'/%3e%3c/svg%3e	1

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' fill='%23fff' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath d='M5.25 0l-4 4 4 4 1.5-1.5L4.25 4l2.5-2.5L5.25 0z'/%3e%3c/svg%3e	1

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='12' height='12' fill='none' stroke='%23e74a3b' viewBox='0 0 12 12'%3e%3ccircle cx='6' cy='6' r='4.5'/%3e%3cpath stroke-linejoin='round' d='M5.8 3.6h.4L6 6.5z'/%3e%3ccircle cx='6' cy='8.2' r='.6' fill='%23e74a3b' stroke='none'/%3e%3c/svg%3e	2

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='12' height='12' viewBox='-4 -4 8 8'%3e%3ccircle r='3' fill='%23fff'/%3e%3c/svg%3e	1

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='30' height='30' viewBox='0 0 30 30'%3e%3cpath stroke='rgba(0, 0, 0, 0.5)' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e	1

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='30' height='30' viewBox='0 0 30 30'%3e%3cpath stroke='rgba(255, 255, 255, 0.5)' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e	1

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='4' height='4' viewBox='0 0 4 4'%3e%3cpath stroke='%23fff' d='M0 2h4'/%3e%3c/svg%3e	1

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='4' height='5' viewBox='0 0 4 5'%3e%3cpath fill='%235a5c69' d='M2 0L0 2h4zm0 5L0 3h4z'/%3e%3c/svg%3e	3

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath fill='%231cc88a' d='M2.3 6.73L.6 4.53c-.4-1.04.46-1.4 1.1-.8l1.1 1.4 3.4-3.8c.6-.63 1.6-.27 1.2.7l-4 4.6c-.43.5-.8.4-1.1.1z'/%3e%3c/svg%3e	2

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath fill='%23fff' d='M6.564.75l-3.59 3.612-1.538-1.55L0 4.26l2.974 2.99L8 2.193z'/%3e%3c/svg%3e	1