Check DNS, Urls + Redirects, Certificates and Content of your Website

...

skip EDNS-Check

skip Content-Check

check links

No trusted Certificate

Checked:
24.09.2025 15:02:31

Older results

N - 06.09.2025 16:20:39

N - 04.09.2025 00:36:38

N - 19.05.2025 19:50:22

N - 14.10.2024 07:54:10

1. IP-Addresses

Host	Type	IP-Address	is auth.	∑ Queries	∑ Timeout
proxy.safebrowsing.apple	CNAME	safebrowsing-proxy.g.aaplimg.com	yes	1	0
	A	17.253.73.207 Berlin/Land Berlin/Germany (DE) - Apple Inc. Hostname: deber5-vip-bx-007.aaplimg.com	yes
	A	17.253.73.208 Berlin/Land Berlin/Germany (DE) - Apple Inc. Hostname: deber5-vip-bx-008.aaplimg.com	yes
	A	17.253.107.203 Ballerup/Capital Region/Denmark (DK) - Apple Inc. Hostname: dkblp1-vip-bx-003.aaplimg.com	yes
	A	17.253.107.204 Ballerup/Capital Region/Denmark (DK) - Apple Inc. Hostname: dkblp1-vip-bx-004.aaplimg.com	yes
	AAAA	2a01:b740:a1e:f000::3 Ballerup/Capital Region/Denmark (DK) - Apple Inc.	yes
	AAAA	2a01:b740:a1e:f100::4 Ballerup/Capital Region/Denmark (DK) - Apple Inc.	yes
	AAAA	2a01:b740:a26:f000::7 Berlin/Land Berlin/Germany (DE) - Apple Inc.	yes
	AAAA	2a01:b740:a26:f100::8 Berlin/Land Berlin/Germany (DE) - Apple Inc.	yes
www.proxy.safebrowsing.apple		Name Error	yes	1	0
*.safebrowsing.apple	A	Name Error	yes
	AAAA	Name Error	yes
	CNAME	Name Error	yes
*.proxy.safebrowsing.apple	A	Name Error	yes
	AAAA	Name Error	yes
	CNAME	Name Error	yes

2. DNSSEC

Zone (*)	DNSSEC - Informations

Zone: (root)
(root)	1 DS RR published


	DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=


	• Status: Valid because published


	4 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 38696, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 46441, Flags 256


	Public Key with Algorithm 8, KeyTag 61809, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 10.10.2025, 00:00:00 +, Signature-Inception: 19.09.2025, 00:00:00 +, KeyTag 20326, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: apple
apple	1 DS RR in the parent zone found


	DS with Algorithm 13, KeyTag 35642, DigestType 2 and Digest LYCz2+0S1lz/fI1LC0kXLLqSDT11aT/JBiqWyrEmpyY=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner apple., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 07.10.2025, 12:00:00 +, Signature-Inception: 24.09.2025, 11:00:00 +, KeyTag 46441, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 46441 used to validate the DS RRSet in the parent zone


	2 DNSKEY RR found


	Public Key with Algorithm 13, KeyTag 22565, Flags 256


	Public Key with Algorithm 13, KeyTag 35642, Flags 257 (SEP = Secure Entry Point)


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner apple., Algorithm: 13, 1 Labels, original TTL: 3600 sec, Signature-expiration: 10.10.2025, 20:18:05 +, Signature-Inception: 20.09.2025, 18:48:05 +, KeyTag 35642, Signer-Name: apple


	• Status: Good - Algorithmus 13 and DNSKEY with KeyTag 35642 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 35642, DigestType 2 and Digest "LYCz2+0S1lz/fI1LC0kXLLqSDT11aT/JBiqWyrEmpyY=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: safebrowsing.apple
safebrowsing.apple	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "p8j8f0ncgtb7kpd5rbvm6r97au73hvjo" between the hashed NSEC3-owner "jq54an4q262cnvfgs309osb2efhetc0v" and the hashed NextOwner "tmj4e46l8baus8fup8atdkcim42c0l2l". So the parent zone confirmes the not-existence of a DS RR. Bitmap: A, AAAA, RRSIG Validated: RRSIG-Owner jq54an4q262cnvfgs309osb2efhetc0v.apple., Algorithm: 13, 2 Labels, original TTL: 3600 sec, Signature-expiration: 08.10.2025, 22:35:44 +, Signature-Inception: 18.09.2025, 21:05:44 +, KeyTag 22565, Signer-Name: apple


	DS-Query in the parent zone sends valid NSEC3 RR with the Hash "tmj4e46l8baus8fup8atdkcim42c0l2l" as Owner. That's the Hash of "apple" with the NextHashedOwnerName "3fvf4np0cbavnnegtplfg83eo881jna3". So that domain name is the Closest Encloser of "safebrowsing.apple". Opt-Out: True. Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM, 63 Validated: RRSIG-Owner tmj4e46l8baus8fup8atdkcim42c0l2l.apple., Algorithm: 13, 2 Labels, original TTL: 3600 sec, Signature-expiration: 10.10.2025, 20:18:05 +, Signature-Inception: 20.09.2025, 18:48:05 +, KeyTag 22565, Signer-Name: apple


	The ClosestEncloser says, that "*.apple" with the Hash "p041bqmk0ejq2caalblvtaf4u6lpcuf5" is a possible Wildcard of the DS Query Name. But the DS-Query in the parent zone sends a valid NSEC3 RR With the owner "jq54an4q262cnvfgs309osb2efhetc0v" and the Next Owner "tmj4e46l8baus8fup8atdkcim42c0l2l", so the Hash of the wildcard is between these hashes. So that NSEC3 proves the Not-existence of that wildcard expansion. Opt-Out: True Bitmap: A, AAAA, RRSIG Validated: RRSIG-Owner jq54an4q262cnvfgs309osb2efhetc0v.apple., Algorithm: 13, 2 Labels, original TTL: 3600 sec, Signature-expiration: 08.10.2025, 22:35:44 +, Signature-Inception: 18.09.2025, 21:05:44 +, KeyTag 22565, Signer-Name: apple


	0 DNSKEY RR found




Zone: proxy.safebrowsing.apple
proxy.safebrowsing.apple	0 DS RR in the parent zone found

Zone: www.proxy.safebrowsing.apple
www.proxy.safebrowsing.apple	0 DS RR in the parent zone found

Zone: (root)
(root)	1 DS RR published


	DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=


	• Status: Valid because published


	4 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 38696, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 46441, Flags 256


	Public Key with Algorithm 8, KeyTag 61809, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 10.10.2025, 00:00:00 +, Signature-Inception: 19.09.2025, 00:00:00 +, KeyTag 20326, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: com
com	1 DS RR in the parent zone found


	DS with Algorithm 13, KeyTag 19718, DigestType 2 and Digest isuwzSj0ElCoCkkTiUJNNBUi2Uaw2gwCkfLT13HXgFo=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 07.10.2025, 12:00:00 +, Signature-Inception: 24.09.2025, 11:00:00 +, KeyTag 46441, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 46441 used to validate the DS RRSet in the parent zone


	2 DNSKEY RR found


	Public Key with Algorithm 13, KeyTag 19718, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 13, KeyTag 20545, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner com., Algorithm: 13, 1 Labels, original TTL: 86400 sec, Signature-expiration: 04.10.2025, 14:02:35 +, Signature-Inception: 19.09.2025, 13:57:35 +, KeyTag 19718, Signer-Name: com


	• Status: Good - Algorithmus 13 and DNSKEY with KeyTag 19718 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 19718, DigestType 2 and Digest "isuwzSj0ElCoCkkTiUJNNBUi2Uaw2gwCkfLT13HXgFo=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: aaplimg.com
aaplimg.com	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "97krhl0ghpbe59nhn7iroduofuinsoir" between the hashed NSEC3-owner "97kr2m41tvrfpqvtc1iki9m7b04drgci" and the hashed NextOwner "97krld90qtbmgs980hacg67a4qm03at0". So the parent zone confirmes the not-existence of a DS RR. Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner 97kr2m41tvrfpqvtc1iki9m7b04drgci.com., Algorithm: 13, 2 Labels, original TTL: 900 sec, Signature-expiration: 30.09.2025, 01:06:32 +, Signature-Inception: 22.09.2025, 23:56:32 +, KeyTag 20545, Signer-Name: com


	DS-Query in the parent zone sends valid NSEC3 RR with the Hash "ck0pojmg874ljref7efn8430qvit8bsm" as Owner. That's the Hash of "com" with the NextHashedOwnerName "ck0q3udg8cekkae7rukpgct1dvssh8ll". So that domain name is the Closest Encloser of "aaplimg.com". Opt-Out: True. Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner ck0pojmg874ljref7efn8430qvit8bsm.com., Algorithm: 13, 2 Labels, original TTL: 900 sec, Signature-expiration: 28.09.2025, 02:00:25 +, Signature-Inception: 21.09.2025, 00:50:25 +, KeyTag 20545, Signer-Name: com


	0 DNSKEY RR found




Zone: g.aaplimg.com
g.aaplimg.com	0 DS RR in the parent zone found


	0 DNSKEY RR found




Zone: safebrowsing-proxy.g.aaplimg.com
safebrowsing-proxy.g.aaplimg.com	0 DS RR in the parent zone found


	0 DNSKEY RR found

3. Name Servers

Domain	Nameserver	NS-IP
www.proxy.safebrowsing.apple	• ns-ext-prod.jackfruit.apple.com
safebrowsing.apple	• a.ns.apple.com / deber5-dns-001	17.253.200.1 Cupertino/California/United States (US) - Apple Inc.	•
	•	2620:149:ae0::53 Cupertino/California/United States (US) - Apple Inc.	•
	• b.ns.apple.com / deber5-dns-002	17.253.207.1 Cupertino/California/United States (US) - Apple Inc.	•
	•	2620:149:ae7::53 Cupertino/California/United States (US) - Apple Inc.	•
	• c.ns.apple.com / 5.fra.pch	204.19.119.1 Montreal/Quebec/Canada (CA) - WoodyNet, Inc.	•
	•	2620:171:800:714::1 Montreal/Quebec/Canada (CA) - WoodyNet, Inc.	•
	• d.ns.apple.com / 5.fra.pch	204.26.57.1 Montreal/Quebec/Canada (CA) - WoodyNet, Inc.	•
	•	2620:171:801:714::1 Montreal/Quebec/Canada (CA) - WoodyNet, Inc.	•
	• ns-ext-prod.jackfruit.apple.com
apple	• a0.nic.apple / app7.nrt1.hosts.meta.redstone.afilias-nst.info-1615580861		•
	• a2.nic.apple / FRA4		•
	• b0.nic.apple / app14.lax1.hosts.meta.redstone.afilias-nst.info-1633102198		•
	• c0.nic.apple / app11.nrt1.hosts.meta.redstone.afilias-nst.info-1615580861		•

safebrowsing-proxy.g.aaplimg.com	• a.gslb.aaplimg.com / deber5-gslb-001.ts.apple.com	17.253.201.8 Cupertino/California/United States (US) - Apple Inc.	•
	•	2620:149:ae1::53 Cupertino/California/United States (US) - Apple Inc.	•
g.aaplimg.com	• a.gslb.aaplimg.com / deber5-gslb-001.ts.apple.com	17.253.201.8 Cupertino/California/United States (US) - Apple Inc.	•
	•	2620:149:ae1::53 Cupertino/California/United States (US) - Apple Inc.	•
	• b.gslb.aaplimg.com / dkblp1-gslb-002.ts.apple.com	17.253.206.8 Cupertino/California/United States (US) - Apple Inc.	•
	•	2620:149:ae6::53 Cupertino/California/United States (US) - Apple Inc.	•
	• ns1.g.aaplimg.com / deber5-gslb-001.ts.apple.com	17.253.201.8 Cupertino/California/United States (US) - Apple Inc.	•
	•	2620:149:ae1::53 Cupertino/California/United States (US) - Apple Inc.	•
	• ns2.g.aaplimg.com / dkblp1-gslb-002.ts.apple.com	17.253.206.8 Cupertino/California/United States (US) - Apple Inc.	•
	•	2620:149:ae6::53 Cupertino/California/United States (US) - Apple Inc.	•
	• ns3.g.aaplimg.com / deber5-gslb-001.ts.apple.com	17.253.201.8 Cupertino/California/United States (US) - Apple Inc.	•
	•	2620:149:ae1::53 Cupertino/California/United States (US) - Apple Inc.	•
	• ns4.g.aaplimg.com / dkblp1-gslb-002.ts.apple.com	17.253.206.8 Cupertino/California/United States (US) - Apple Inc.	•
	•	2620:149:ae6::53 Cupertino/California/United States (US) - Apple Inc.	•
aaplimg.com	• a.ns.apple.com / deber5-dns-001	17.253.200.1 Cupertino/California/United States (US) - Apple Inc.	•
	•	2620:149:ae0::53 Cupertino/California/United States (US) - Apple Inc.	•
	• b.ns.apple.com / deber5-dns-002	17.253.207.1 Cupertino/California/United States (US) - Apple Inc.	•
	•	2620:149:ae7::53 Cupertino/California/United States (US) - Apple Inc.	•
	• c.ns.apple.com / 16.fra.pch	204.19.119.1 Montreal/Quebec/Canada (CA) - WoodyNet, Inc.	•
	•	2620:171:800:714::1 Montreal/Quebec/Canada (CA) - WoodyNet, Inc.	•
	• d.ns.apple.com / 6.fra.pch	204.26.57.1 Montreal/Quebec/Canada (CA) - WoodyNet, Inc.	•
	T	2620:171:801:714::1 Montreal/Quebec/Canada (CA) - WoodyNet, Inc.	•
	• ns-ext-prod.jackfruit.apple.com
com	• a.gtld-servers.net / nnn1-par6		•
	• b.gtld-servers.net / nnn1-elwaw4		•
	• c.gtld-servers.net / nnn1-par6		•
	• d.gtld-servers.net / nnn1-par6		•
	• e.gtld-servers.net / nnn1-par6		•
	• f.gtld-servers.net / nnn1-defra-4		•
	• g.gtld-servers.net / nnn1-defra-4		•
	• h.gtld-servers.net / nnn1-defra-4		•
	• i.gtld-servers.net / nnn1-defra-4		•
	• j.gtld-servers.net / nnn1-frmrs-2		•
	• k.gtld-servers.net / nnn1-frmrs-2		•
	• l.gtld-servers.net / nnn1-frmrs-2		•
	• m.gtld-servers.net / nnn1-frmrs-2		•

4. SOA-Entries

Domain:	apple
Zone-Name:	apple
Primary:	a0.nic.apple
Mail:	hostmaster.donuts.email
Serial:	1758718938
Refresh:	7200
Retry:	900
Expire:	1209600
TTL:	3600
num Entries:	4

Domain:	safebrowsing.apple
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:	1

Domain:	safebrowsing.apple
Zone-Name:	safebrowsing.apple
Primary:	ns-ext-prod.jackfruit.apple.com
Mail:	dnscontact.apple.com
Serial:	42
Refresh:	7200
Retry:	5400
Expire:	3628800
TTL:	300
num Entries:	8

Domain:	www.proxy.safebrowsing.apple
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:	1


Domain:	com
Zone-Name:	com
Primary:	a.gtld-servers.net
Mail:	nstld.verisign-grs.com
Serial:	1758718954
Refresh:	1800
Retry:	900
Expire:	604800
TTL:	900
num Entries:	6

Domain:	com
Zone-Name:	com
Primary:	a.gtld-servers.net
Mail:	nstld.verisign-grs.com
Serial:	1758718969
Refresh:	1800
Retry:	900
Expire:	604800
TTL:	900
num Entries:	7

Domain:	aaplimg.com
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:	1

Domain:	aaplimg.com
Zone-Name:	aaplimg.com
Primary:	ns-ext-prod.jackfruit.apple.com
Mail:	dnscontact.apple.com
Serial:	15252
Refresh:	300
Retry:	300
Expire:	3628800
TTL:	300
num Entries:	8

Domain:	g.aaplimg.com
Zone-Name:	g.aaplimg.com
Primary:	a.gslb.aaplimg.com
Mail:	hostmaster.apple.com
Serial:	1711584633
Refresh:	1800
Retry:	300
Expire:	60480
TTL:	300
num Entries:	6

Domain:	g.aaplimg.com
Zone-Name:	g.aaplimg.com
Primary:	a.gslb.aaplimg.com
Mail:	hostmaster.apple.com
Serial:	1720214449
Refresh:	1800
Retry:	300
Expire:	60480
TTL:	300
num Entries:	6

Domain:	safebrowsing-proxy.g.aaplimg.com
Zone-Name:	g.aaplimg.com
Primary:	a.gslb.aaplimg.com
Mail:	hostmaster.apple.com
Serial:	1711584633
Refresh:	1800
Retry:	300
Expire:	60480
TTL:	300
num Entries:	2

5. Screenshots

Startaddress: https://proxy.safebrowsing.apple/, address used: https://proxy.safebrowsing.apple/, Screenshot created 2025-09-24 15:06:08 +00:0 url is insecure, certificate invalid

Mobil (412px x 732px)

1056 milliseconds

Screenshot mobile - https://proxy.safebrowsing.apple/

Mobil + Landscape (732px x 412px)

1040 milliseconds

Screenshot mobile landscape - https://proxy.safebrowsing.apple/

Screen (1280px x 1680px)

1114 milliseconds

Screenshot Desktop - https://proxy.safebrowsing.apple/

Mobile- and other Chrome-Checks

	width	height
visual Viewport	412	732
content Size	412	732

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

6. Url-Checks

show header:

Domainname	Http-Status	redirect	Sec.	G
• http://proxy.safebrowsing.apple/ 17.253.73.207	404	Html is minified: 104.36 %	0.010	M
Not Found on Accelerator
Date: Wed, 24 Sep 2025 13:04:15 GMT
Connection: keep-alive
Via: http/1.1 deber5-edge-bx-029.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: 66e0f314-4157-4317-81a3-b7793d78697f-17379555846
Content-Type: text/html
Content-Language: en
Content-Length: 287

• http://proxy.safebrowsing.apple/ 17.253.73.208	404	Html is minified: 104.36 %	0.010	M
Not Found on Accelerator
Date: Wed, 24 Sep 2025 13:04:15 GMT
Connection: keep-alive
Via: http/1.1 deber5-edge-bx-030.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: 8d0e474e-60f3-441a-872c-019e7e44ad40-21184680075
Content-Type: text/html
Content-Language: en
Content-Length: 287

• http://proxy.safebrowsing.apple/ 17.253.107.203	404	Html is minified: 104.36 %	0.047	M
Not Found on Accelerator
Date: Wed, 24 Sep 2025 13:04:15 GMT
Connection: keep-alive
Via: http/1.1 dkblp1-edge-bx-011.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: 720f10b0-6cd4-4df5-a974-411ad6f5d116-5787073176
Content-Type: text/html
Content-Language: en
Content-Length: 287

• http://proxy.safebrowsing.apple/ 17.253.107.204	404	Html is minified: 104.36 %	0.040	M
Not Found on Accelerator
Date: Wed, 24 Sep 2025 13:04:15 GMT
Connection: keep-alive
Via: http/1.1 dkblp1-edge-bx-016.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: 7d1a918c-3991-4022-a8b8-f296b8a1c6c2-5393537464
Content-Type: text/html
Content-Language: en
Content-Length: 287

• http://proxy.safebrowsing.apple/ 2a01:b740:a1e:f000::3	404	Html is minified: 104.36 %	0.070	M
Not Found on Accelerator
Date: Wed, 24 Sep 2025 13:04:15 GMT
Connection: keep-alive
Via: http/1.1 dkblp1-edge-bx-013.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: f8512d66-5cfd-4a85-b0ad-2d4c1d837029-5787698343
Content-Type: text/html
Content-Language: en
Content-Length: 287

• http://proxy.safebrowsing.apple/ 2a01:b740:a1e:f100::4	404	Html is minified: 104.36 %	0.033	M
Not Found on Accelerator
Date: Wed, 24 Sep 2025 13:04:16 GMT
Connection: keep-alive
Via: http/1.1 dkblp1-edge-bx-012.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: b56d0fe4-9770-4fa4-83a2-9adc5affa8a1-5392533167
Content-Type: text/html
Content-Language: en
Content-Length: 287

• http://proxy.safebrowsing.apple/ 2a01:b740:a26:f000::7	404	Html is minified: 104.36 %	0.007	M
Not Found on Accelerator
Date: Wed, 24 Sep 2025 13:04:16 GMT
Connection: keep-alive
Via: http/1.1 deber5-edge-bx-029.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: 66e0f314-4157-4317-81a3-b7793d78697f-17379557008
Content-Type: text/html
Content-Language: en
Content-Length: 287

• http://proxy.safebrowsing.apple/ 2a01:b740:a26:f100::8	404	Html is minified: 104.36 %	0.010	M
Not Found on Accelerator
Date: Wed, 24 Sep 2025 13:04:16 GMT
Connection: keep-alive
Via: http/1.1 deber5-edge-bx-026.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: ad2ce71e-1fda-4e40-8bcd-9c734d4e8366-21301332669
Content-Type: text/html
Content-Language: en
Content-Length: 287

• https://proxy.safebrowsing.apple/ 17.253.73.207 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	1.826	N
Not Found on Accelerator
Certificate error: RemoteCertificateNameMismatch
Date: Wed, 24 Sep 2025 13:04:23 GMT
Connection: keep-alive
Via: http/1.1 deber5-edge-bx-031.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: 8ae6b855-b0ee-48df-bd37-03cbfc584601-17383426617
Content-Type: text/html
Content-Language: en
Content-Length: 287

• https://proxy.safebrowsing.apple/ 17.253.73.208 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	2.847	N
Not Found on Accelerator
Certificate error: RemoteCertificateNameMismatch
Date: Wed, 24 Sep 2025 13:04:27 GMT
Connection: keep-alive
Via: http/1.1 deber5-edge-bx-030.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: 8d0e474e-60f3-441a-872c-019e7e44ad40-21184796059
Content-Type: text/html
Content-Language: en
Content-Length: 287

• https://proxy.safebrowsing.apple/ 17.253.107.203 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	2.170	N
Not Found on Accelerator
Certificate error: RemoteCertificateNameMismatch
Date: Wed, 24 Sep 2025 13:04:16 GMT
Connection: keep-alive
Via: http/1.1 dkblp1-edge-bx-011.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: 720f10b0-6cd4-4df5-a974-411ad6f5d116-5787074841
Content-Type: text/html
Content-Language: en
Content-Length: 287

• https://proxy.safebrowsing.apple/ 17.253.107.204 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	2.120	N
Not Found on Accelerator
Certificate error: RemoteCertificateNameMismatch
Date: Wed, 24 Sep 2025 13:04:20 GMT
Connection: keep-alive
Via: http/1.1 dkblp1-edge-bx-010.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: b38cae26-6bd3-492a-bf14-9e6d76e4d9b0-5393588082
Content-Type: text/html
Content-Language: en
Content-Length: 287

• https://proxy.safebrowsing.apple/ 2a01:b740:a1e:f000::3 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	1.757	N
Not Found on Accelerator
Certificate error: RemoteCertificateNameMismatch
Date: Wed, 24 Sep 2025 13:04:31 GMT
Connection: keep-alive
Via: http/1.1 dkblp1-edge-bx-013.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: f8512d66-5cfd-4a85-b0ad-2d4c1d837029-5787740960
Content-Type: text/html
Content-Language: en
Content-Length: 287

• https://proxy.safebrowsing.apple/ 2a01:b740:a1e:f100::4 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	1.767	N
Not Found on Accelerator
Certificate error: RemoteCertificateNameMismatch
Date: Wed, 24 Sep 2025 13:04:35 GMT
Connection: keep-alive
Via: http/1.1 dkblp1-edge-bx-014.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: b1ded77f-d148-4536-8ea1-b092f3753f59-5392754704
Content-Type: text/html
Content-Language: en
Content-Length: 287

• https://proxy.safebrowsing.apple/ 2a01:b740:a26:f000::7 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	1.564	N
Not Found on Accelerator
Certificate error: RemoteCertificateNameMismatch
Date: Wed, 24 Sep 2025 13:04:38 GMT
Connection: keep-alive
Via: http/1.1 deber5-edge-bx-027.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: 1526f925-39c9-4157-a063-4eb8e4ade8ad-17383661196
Content-Type: text/html
Content-Language: en
Content-Length: 287

• https://proxy.safebrowsing.apple/ 2a01:b740:a26:f100::8 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	2.570	N
Not Found on Accelerator
Certificate error: RemoteCertificateNameMismatch
Date: Wed, 24 Sep 2025 13:04:41 GMT
Connection: keep-alive
Via: http/1.1 deber5-edge-bx-028.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: ef2ee014-d60f-46e1-b591-b942ad407c18-21307309794
Content-Type: text/html
Content-Language: en
Content-Length: 287

• http://proxy.safebrowsing.apple/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 17.253.73.207 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	0.010	A
Not Found on Accelerator
Visible Content:
Date: Wed, 24 Sep 2025 13:04:45 GMT
Connection: keep-alive
Via: http/1.1 deber5-edge-bx-029.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: 66e0f314-4157-4317-81a3-b7793d78697f-17379794932
Content-Type: text/html
Content-Language: en
Content-Length: 287

• http://proxy.safebrowsing.apple/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 17.253.73.208 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	0.013	A
Not Found on Accelerator
Visible Content:
Date: Wed, 24 Sep 2025 13:04:45 GMT
Connection: keep-alive
Via: http/1.1 deber5-edge-bx-030.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: 8d0e474e-60f3-441a-872c-019e7e44ad40-21184983547
Content-Type: text/html
Content-Language: en
Content-Length: 287

• http://proxy.safebrowsing.apple/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 17.253.107.203 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	0.023	A
Not Found on Accelerator
Visible Content:
Date: Wed, 24 Sep 2025 13:04:45 GMT
Connection: keep-alive
Via: http/1.1 dkblp1-edge-bx-011.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: 720f10b0-6cd4-4df5-a974-411ad6f5d116-5787155198
Content-Type: text/html
Content-Language: en
Content-Length: 287

• http://proxy.safebrowsing.apple/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 17.253.107.204 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	0.024	A
Not Found on Accelerator
Visible Content:
Date: Wed, 24 Sep 2025 13:04:45 GMT
Connection: keep-alive
Via: http/1.1 dkblp1-edge-bx-016.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: 7d1a918c-3991-4022-a8b8-f296b8a1c6c2-5393612765
Content-Type: text/html
Content-Language: en
Content-Length: 287

• http://proxy.safebrowsing.apple/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2a01:b740:a1e:f000::3 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	0.020	A
Not Found on Accelerator
Visible Content:
Date: Wed, 24 Sep 2025 13:04:45 GMT
Connection: keep-alive
Via: http/1.1 dkblp1-edge-bx-013.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: f8512d66-5cfd-4a85-b0ad-2d4c1d837029-5787779030
Content-Type: text/html
Content-Language: en
Content-Length: 287

• http://proxy.safebrowsing.apple/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2a01:b740:a1e:f100::4 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	0.020	A
Not Found on Accelerator
Visible Content:
Date: Wed, 24 Sep 2025 13:04:46 GMT
Connection: keep-alive
Via: http/1.1 dkblp1-edge-bx-012.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: b56d0fe4-9770-4fa4-83a2-9adc5affa8a1-5392609534
Content-Type: text/html
Content-Language: en
Content-Length: 287

• http://proxy.safebrowsing.apple/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2a01:b740:a26:f000::7 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	0.007	A
Not Found on Accelerator
Visible Content:
Date: Wed, 24 Sep 2025 13:04:46 GMT
Connection: keep-alive
Via: http/1.1 deber5-edge-bx-029.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: 66e0f314-4157-4317-81a3-b7793d78697f-17379796987
Content-Type: text/html
Content-Language: en
Content-Length: 287

• http://proxy.safebrowsing.apple/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2a01:b740:a26:f100::8 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	0.010	A
Not Found on Accelerator
Visible Content:
Date: Wed, 24 Sep 2025 13:04:46 GMT
Connection: keep-alive
Via: http/1.1 deber5-edge-bx-026.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: ad2ce71e-1fda-4e40-8bcd-9c734d4e8366-21301637150
Content-Type: text/html
Content-Language: en
Content-Length: 287

• https://17.253.73.207/ 17.253.73.207 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	1.840	N
Not Found on Accelerator
Certificate error: RemoteCertificateNameMismatch
Date: Wed, 24 Sep 2025 13:04:54 GMT
Connection: keep-alive
Via: http/1.1 deber5-edge-bx-025.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: d1fb9b16-88ef-43bd-95f9-dc7643f8d96e-17379369883
Content-Type: text/html
Content-Language: en
Content-Length: 287

• https://17.253.73.208/ 17.253.73.208 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	2.816	N
Not Found on Accelerator
Certificate error: RemoteCertificateNameMismatch
Date: Wed, 24 Sep 2025 13:04:57 GMT
Connection: keep-alive
Via: http/1.1 deber5-edge-bx-028.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: ef2ee014-d60f-46e1-b591-b942ad407c18-21307474094
Content-Type: text/html
Content-Language: en
Content-Length: 287

• https://17.253.107.203/ 17.253.107.203 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	2.190	N
Not Found on Accelerator
Certificate error: RemoteCertificateNameMismatch
Date: Wed, 24 Sep 2025 13:04:46 GMT
Connection: keep-alive
Via: http/1.1 dkblp1-edge-bx-009.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: c4c30cea-0c81-4baa-be14-335ca988dbdb-5786961999
Content-Type: text/html
Content-Language: en
Content-Length: 287

• https://17.253.107.204/ 17.253.107.204 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	2.203	N
Not Found on Accelerator
Certificate error: RemoteCertificateNameMismatch
Date: Wed, 24 Sep 2025 13:04:50 GMT
Connection: keep-alive
Via: http/1.1 dkblp1-edge-bx-012.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: b56d0fe4-9770-4fa4-83a2-9adc5affa8a1-5392620890
Content-Type: text/html
Content-Language: en
Content-Length: 287

• https://[2a01:b740:0a1e:f000:0000:0000:0000:0003]/ 2a01:b740:a1e:f000::3 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	1.827	N
Not Found on Accelerator
Certificate error: RemoteCertificateNameMismatch
Date: Wed, 24 Sep 2025 13:05:02 GMT
Connection: keep-alive
Via: http/1.1 dkblp1-edge-bx-013.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: f8512d66-5cfd-4a85-b0ad-2d4c1d837029-5787822592
Content-Type: text/html
Content-Language: en
Content-Length: 287

• https://[2a01:b740:0a1e:f100:0000:0000:0000:0004]/ 2a01:b740:a1e:f100::4 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	1.847	N
Not Found on Accelerator
Certificate error: RemoteCertificateNameMismatch
Date: Wed, 24 Sep 2025 13:05:05 GMT
Connection: keep-alive
Via: http/1.1 dkblp1-edge-bx-010.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: b38cae26-6bd3-492a-bf14-9e6d76e4d9b0-5393702632
Content-Type: text/html
Content-Language: en
Content-Length: 287

• https://[2a01:b740:0a26:f000:0000:0000:0000:0007]/ 2a01:b740:a26:f000::7 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	1.567	N
Not Found on Accelerator
Certificate error: RemoteCertificateNameMismatch
Date: Wed, 24 Sep 2025 13:05:08 GMT
Connection: keep-alive
Via: http/1.1 deber5-edge-bx-031.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: 8ae6b855-b0ee-48df-bd37-03cbfc584601-17383780353
Content-Type: text/html
Content-Language: en
Content-Length: 287

• https://[2a01:b740:0a26:f100:0000:0000:0000:0008]/ 2a01:b740:a26:f100::8 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404	Html is minified: 104.36 % Other inline scripts (∑/total): 0/0	2.590	N
Not Found on Accelerator
Certificate error: RemoteCertificateNameMismatch
Date: Wed, 24 Sep 2025 13:05:12 GMT
Connection: keep-alive
Via: http/1.1 deber5-edge-bx-028.ts.apple.com (acdn/260.16276)
Cache-Control: no-store
X-Cache: none
CDNUUID: ef2ee014-d60f-46e1-b591-b942ad407c18-21307619729
Content-Type: text/html
Content-Language: en
Content-Length: 287

7. Comments

	1. General Results, most used to calculate the result
A	name "proxy.safebrowsing.apple" is subdomain, public suffix is ".apple", top-level-domain is ".apple", top-level-domain-type is "generic", tld-manager is "Apple Inc.", num .apple-domains preloaded: 0 (complete: 276475)
A	Good: All ip addresses are public addresses
A	Good: Minimal 2 ip addresses per domain name found: proxy.safebrowsing.apple has 8 different ip addresses (authoritative).
A	Good: Ipv4 and Ipv6 addresses per domain name found: proxy.safebrowsing.apple has 4 ipv4, 4 ipv6 addresses
A	Good: No asked Authoritative Name Server had a timeout
A	DNS: "Name Error" means: No www-dns-entry defined. This isn't a problem
A	Good: No cookie sent via http.
	HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
A	Good: Some urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset):0 complete Content-Type - header (32 urls)
	http://proxy.safebrowsing.apple/ 17.253.73.207			Url with incomplete Content-Type - header - missing charset
	http://proxy.safebrowsing.apple/ 17.253.73.208			Url with incomplete Content-Type - header - missing charset
	http://proxy.safebrowsing.apple/ 17.253.107.203			Url with incomplete Content-Type - header - missing charset
	http://proxy.safebrowsing.apple/ 17.253.107.204			Url with incomplete Content-Type - header - missing charset
	http://proxy.safebrowsing.apple/ 2a01:b740:a1e:f000::3			Url with incomplete Content-Type - header - missing charset
	http://proxy.safebrowsing.apple/ 2a01:b740:a1e:f100::4			Url with incomplete Content-Type - header - missing charset
	http://proxy.safebrowsing.apple/ 2a01:b740:a26:f000::7			Url with incomplete Content-Type - header - missing charset
	http://proxy.safebrowsing.apple/ 2a01:b740:a26:f100::8			Url with incomplete Content-Type - header - missing charset
	https://proxy.safebrowsing.apple/ 17.253.73.207			Url with incomplete Content-Type - header - missing charset
	https://proxy.safebrowsing.apple/ 17.253.73.208			Url with incomplete Content-Type - header - missing charset
	https://proxy.safebrowsing.apple/ 17.253.107.203			Url with incomplete Content-Type - header - missing charset
	https://proxy.safebrowsing.apple/ 17.253.107.204			Url with incomplete Content-Type - header - missing charset
	https://proxy.safebrowsing.apple/ 2a01:b740:a1e:f000::3			Url with incomplete Content-Type - header - missing charset
	https://proxy.safebrowsing.apple/ 2a01:b740:a1e:f100::4			Url with incomplete Content-Type - header - missing charset
	https://proxy.safebrowsing.apple/ 2a01:b740:a26:f000::7			Url with incomplete Content-Type - header - missing charset
	https://proxy.safebrowsing.apple/ 2a01:b740:a26:f100::8			Url with incomplete Content-Type - header - missing charset
	http://proxy.safebrowsing.apple/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 17.253.73.207			Url with incomplete Content-Type - header - missing charset
	http://proxy.safebrowsing.apple/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 17.253.73.208			Url with incomplete Content-Type - header - missing charset
	http://proxy.safebrowsing.apple/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 17.253.107.203			Url with incomplete Content-Type - header - missing charset
	http://proxy.safebrowsing.apple/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 17.253.107.204			Url with incomplete Content-Type - header - missing charset
	http://proxy.safebrowsing.apple/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2a01:b740:a1e:f000::3			Url with incomplete Content-Type - header - missing charset
	http://proxy.safebrowsing.apple/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2a01:b740:a1e:f100::4			Url with incomplete Content-Type - header - missing charset
	http://proxy.safebrowsing.apple/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2a01:b740:a26:f000::7			Url with incomplete Content-Type - header - missing charset
	http://proxy.safebrowsing.apple/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2a01:b740:a26:f100::8			Url with incomplete Content-Type - header - missing charset
	https://17.253.73.207/ 17.253.73.207			Url with incomplete Content-Type - header - missing charset
	https://17.253.73.208/ 17.253.73.208			Url with incomplete Content-Type - header - missing charset
	https://17.253.107.203/ 17.253.107.203			Url with incomplete Content-Type - header - missing charset
	https://17.253.107.204/ 17.253.107.204			Url with incomplete Content-Type - header - missing charset
	https://[2a01:b740:0a1e:f000:0000:0000:0000:0003]/ 2a01:b740:a1e:f000::3			Url with incomplete Content-Type - header - missing charset
	https://[2a01:b740:0a1e:f100:0000:0000:0000:0004]/ 2a01:b740:a1e:f100::4			Url with incomplete Content-Type - header - missing charset
	https://[2a01:b740:0a26:f000:0000:0000:0000:0007]/ 2a01:b740:a26:f000::7			Url with incomplete Content-Type - header - missing charset
	https://[2a01:b740:0a26:f100:0000:0000:0000:0008]/ 2a01:b740:a26:f100::8			Url with incomplete Content-Type - header - missing charset
B	https://proxy.safebrowsing.apple/ 17.253.73.207	404		Missing HSTS-Header
B	https://proxy.safebrowsing.apple/ 17.253.73.208	404		Missing HSTS-Header
B	https://proxy.safebrowsing.apple/ 17.253.107.203	404		Missing HSTS-Header
B	https://proxy.safebrowsing.apple/ 17.253.107.204	404		Missing HSTS-Header
B	https://proxy.safebrowsing.apple/ 2a01:b740:a1e:f000::3	404		Missing HSTS-Header
B	https://proxy.safebrowsing.apple/ 2a01:b740:a1e:f100::4	404		Missing HSTS-Header
B	https://proxy.safebrowsing.apple/ 2a01:b740:a26:f000::7	404		Missing HSTS-Header
B	https://proxy.safebrowsing.apple/ 2a01:b740:a26:f100::8	404		Missing HSTS-Header
C	Error - no version with Http-Status 200
H	Fatal error: No https - result with http-status 200, no encryption
M	http://proxy.safebrowsing.apple/ 17.253.73.207	404		Misconfiguration - main pages should never send http status 400 - 499
M	http://proxy.safebrowsing.apple/ 17.253.73.208	404		Misconfiguration - main pages should never send http status 400 - 499
M	http://proxy.safebrowsing.apple/ 17.253.107.203	404		Misconfiguration - main pages should never send http status 400 - 499
M	http://proxy.safebrowsing.apple/ 17.253.107.204	404		Misconfiguration - main pages should never send http status 400 - 499
M	http://proxy.safebrowsing.apple/ 2a01:b740:a1e:f000::3	404		Misconfiguration - main pages should never send http status 400 - 499
M	http://proxy.safebrowsing.apple/ 2a01:b740:a1e:f100::4	404		Misconfiguration - main pages should never send http status 400 - 499
M	http://proxy.safebrowsing.apple/ 2a01:b740:a26:f000::7	404		Misconfiguration - main pages should never send http status 400 - 499
M	http://proxy.safebrowsing.apple/ 2a01:b740:a26:f100::8	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://proxy.safebrowsing.apple/ 17.253.73.207	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://proxy.safebrowsing.apple/ 17.253.73.208	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://proxy.safebrowsing.apple/ 17.253.107.203	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://proxy.safebrowsing.apple/ 17.253.107.204	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://proxy.safebrowsing.apple/ 2a01:b740:a1e:f000::3	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://proxy.safebrowsing.apple/ 2a01:b740:a1e:f100::4	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://proxy.safebrowsing.apple/ 2a01:b740:a26:f000::7	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://proxy.safebrowsing.apple/ 2a01:b740:a26:f100::8	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://17.253.73.207/ 17.253.73.207	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://17.253.73.208/ 17.253.73.208	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://17.253.107.203/ 17.253.107.203	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://17.253.107.204/ 17.253.107.204	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://[2a01:b740:0a1e:f000:0000:0000:0000:0003]/ 2a01:b740:a1e:f000::3	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://[2a01:b740:0a1e:f100:0000:0000:0000:0004]/ 2a01:b740:a1e:f100::4	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://[2a01:b740:0a26:f000:0000:0000:0000:0007]/ 2a01:b740:a26:f000::7	404		Misconfiguration - main pages should never send http status 400 - 499
M	https://[2a01:b740:0a26:f100:0000:0000:0000:0008]/ 2a01:b740:a26:f100::8	404		Misconfiguration - main pages should never send http status 400 - 499
N	https://proxy.safebrowsing.apple/ 17.253.73.207	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://proxy.safebrowsing.apple/ 17.253.73.208	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://proxy.safebrowsing.apple/ 17.253.107.203	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://proxy.safebrowsing.apple/ 17.253.107.204	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://proxy.safebrowsing.apple/ 2a01:b740:a1e:f000::3	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://proxy.safebrowsing.apple/ 2a01:b740:a1e:f100::4	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://proxy.safebrowsing.apple/ 2a01:b740:a26:f000::7	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://proxy.safebrowsing.apple/ 2a01:b740:a26:f100::8	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://17.253.73.207/ 17.253.73.207	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://17.253.73.208/ 17.253.73.208	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://17.253.107.203/ 17.253.107.203	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://17.253.107.204/ 17.253.107.204	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://[2a01:b740:0a1e:f000:0000:0000:0000:0003]/ 2a01:b740:a1e:f000::3	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://[2a01:b740:0a1e:f100:0000:0000:0000:0004]/ 2a01:b740:a1e:f100::4	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://[2a01:b740:0a26:f000:0000:0000:0000:0007]/ 2a01:b740:a26:f000::7	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://[2a01:b740:0a26:f100:0000:0000:0000:0008]/ 2a01:b740:a26:f100::8	404		Error - Certificate isn't trusted, RemoteCertificateNameMismatch
A	Good: More then one ip address per domain name found, checking all ip addresses the same http status and the same certificate found: Domain proxy.safebrowsing.apple, 8 ip addresses.
	Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are the same. So that domain doesn't require Server Name Indication (SNI), it's the primary certificate of that set of ip addresses.: Domain proxy.safebrowsing.apple, 8 ip addresses, 1 different http results.
B	No _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Read the result of server-daten.de (Url-Checks, Comments, Connections and DomainServiceRecords) to see a complete definition. Domainname: _mta-sts.proxy.safebrowsing.apple
	2. Header-Checks
F	proxy.safebrowsing.apple 17.253.73.207	Content-Security-Policy		Critical: Missing Header:
F	proxy.safebrowsing.apple 17.253.73.207	X-Content-Type-Options		Critical: Missing Header:
F	proxy.safebrowsing.apple 17.253.73.207	Referrer-Policy		Critical: Missing Header:
F	proxy.safebrowsing.apple 17.253.73.207	Permissions-Policy		Critical: Missing Header:
B	proxy.safebrowsing.apple 17.253.73.207	Cross-Origin-Embedder-Policy		Info: Missing Header
B	proxy.safebrowsing.apple 17.253.73.207	Cross-Origin-Opener-Policy		Info: Missing Header
B	proxy.safebrowsing.apple 17.253.73.207	Cross-Origin-Resource-Policy		Info: Missing Header
F	proxy.safebrowsing.apple 17.253.73.208	Content-Security-Policy		Critical: Missing Header:
F	proxy.safebrowsing.apple 17.253.73.208	X-Content-Type-Options		Critical: Missing Header:
F	proxy.safebrowsing.apple 17.253.73.208	Referrer-Policy		Critical: Missing Header:
F	proxy.safebrowsing.apple 17.253.73.208	Permissions-Policy		Critical: Missing Header:
B	proxy.safebrowsing.apple 17.253.73.208	Cross-Origin-Embedder-Policy		Info: Missing Header
B	proxy.safebrowsing.apple 17.253.73.208	Cross-Origin-Opener-Policy		Info: Missing Header
B	proxy.safebrowsing.apple 17.253.73.208	Cross-Origin-Resource-Policy		Info: Missing Header
F	proxy.safebrowsing.apple 17.253.107.203	Content-Security-Policy		Critical: Missing Header:
F	proxy.safebrowsing.apple 17.253.107.203	X-Content-Type-Options		Critical: Missing Header:
F	proxy.safebrowsing.apple 17.253.107.203	Referrer-Policy		Critical: Missing Header:
F	proxy.safebrowsing.apple 17.253.107.203	Permissions-Policy		Critical: Missing Header:
B	proxy.safebrowsing.apple 17.253.107.203	Cross-Origin-Embedder-Policy		Info: Missing Header
B	proxy.safebrowsing.apple 17.253.107.203	Cross-Origin-Opener-Policy		Info: Missing Header
B	proxy.safebrowsing.apple 17.253.107.203	Cross-Origin-Resource-Policy		Info: Missing Header
F	proxy.safebrowsing.apple 17.253.107.204	Content-Security-Policy		Critical: Missing Header:
F	proxy.safebrowsing.apple 17.253.107.204	X-Content-Type-Options		Critical: Missing Header:
F	proxy.safebrowsing.apple 17.253.107.204	Referrer-Policy		Critical: Missing Header:
F	proxy.safebrowsing.apple 17.253.107.204	Permissions-Policy		Critical: Missing Header:
B	proxy.safebrowsing.apple 17.253.107.204	Cross-Origin-Embedder-Policy		Info: Missing Header
B	proxy.safebrowsing.apple 17.253.107.204	Cross-Origin-Opener-Policy		Info: Missing Header
B	proxy.safebrowsing.apple 17.253.107.204	Cross-Origin-Resource-Policy		Info: Missing Header
F	proxy.safebrowsing.apple 2a01:b740:a1e:f000::3	Content-Security-Policy		Critical: Missing Header:
F	proxy.safebrowsing.apple 2a01:b740:a1e:f000::3	X-Content-Type-Options		Critical: Missing Header:
F	proxy.safebrowsing.apple 2a01:b740:a1e:f000::3	Referrer-Policy		Critical: Missing Header:
F	proxy.safebrowsing.apple 2a01:b740:a1e:f000::3	Permissions-Policy		Critical: Missing Header:
B	proxy.safebrowsing.apple 2a01:b740:a1e:f000::3	Cross-Origin-Embedder-Policy		Info: Missing Header
B	proxy.safebrowsing.apple 2a01:b740:a1e:f000::3	Cross-Origin-Opener-Policy		Info: Missing Header
B	proxy.safebrowsing.apple 2a01:b740:a1e:f000::3	Cross-Origin-Resource-Policy		Info: Missing Header
F	proxy.safebrowsing.apple 2a01:b740:a1e:f100::4	Content-Security-Policy		Critical: Missing Header:
F	proxy.safebrowsing.apple 2a01:b740:a1e:f100::4	X-Content-Type-Options		Critical: Missing Header:
F	proxy.safebrowsing.apple 2a01:b740:a1e:f100::4	Referrer-Policy		Critical: Missing Header:
F	proxy.safebrowsing.apple 2a01:b740:a1e:f100::4	Permissions-Policy		Critical: Missing Header:
B	proxy.safebrowsing.apple 2a01:b740:a1e:f100::4	Cross-Origin-Embedder-Policy		Info: Missing Header
B	proxy.safebrowsing.apple 2a01:b740:a1e:f100::4	Cross-Origin-Opener-Policy		Info: Missing Header
B	proxy.safebrowsing.apple 2a01:b740:a1e:f100::4	Cross-Origin-Resource-Policy		Info: Missing Header
F	proxy.safebrowsing.apple 2a01:b740:a26:f000::7	Content-Security-Policy		Critical: Missing Header:
F	proxy.safebrowsing.apple 2a01:b740:a26:f000::7	X-Content-Type-Options		Critical: Missing Header:
F	proxy.safebrowsing.apple 2a01:b740:a26:f000::7	Referrer-Policy		Critical: Missing Header:
F	proxy.safebrowsing.apple 2a01:b740:a26:f000::7	Permissions-Policy		Critical: Missing Header:
B	proxy.safebrowsing.apple 2a01:b740:a26:f000::7	Cross-Origin-Embedder-Policy		Info: Missing Header
B	proxy.safebrowsing.apple 2a01:b740:a26:f000::7	Cross-Origin-Opener-Policy		Info: Missing Header
B	proxy.safebrowsing.apple 2a01:b740:a26:f000::7	Cross-Origin-Resource-Policy		Info: Missing Header
F	proxy.safebrowsing.apple 2a01:b740:a26:f100::8	Content-Security-Policy		Critical: Missing Header:
F	proxy.safebrowsing.apple 2a01:b740:a26:f100::8	X-Content-Type-Options		Critical: Missing Header:
F	proxy.safebrowsing.apple 2a01:b740:a26:f100::8	Referrer-Policy		Critical: Missing Header:
F	proxy.safebrowsing.apple 2a01:b740:a26:f100::8	Permissions-Policy		Critical: Missing Header:
B	proxy.safebrowsing.apple 2a01:b740:a26:f100::8	Cross-Origin-Embedder-Policy		Info: Missing Header
B	proxy.safebrowsing.apple 2a01:b740:a26:f100::8	Cross-Origin-Opener-Policy		Info: Missing Header
B	proxy.safebrowsing.apple 2a01:b740:a26:f100::8	Cross-Origin-Resource-Policy		Info: Missing Header
	3. DNS- and NameServer - Checks
A	Info:: 2 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 4 Name Servers.
A	Info:: 2 Queries complete, 2 with IPv6, 0 with IPv4.
A	Good: All DNS Queries done via IPv6.
A	Good: Some ip addresses of name servers found with the minimum of two DNS Queries. One to find the TLD-Zone, one to ask the TLD-Zone.a.ns.apple.com (17.253.200.1, 2620:149:ae0::53), b.ns.apple.com (17.253.207.1, 2620:149:ae7::53), c.ns.apple.com (204.19.119.1, 2620:171:800:714::1), d.ns.apple.com (204.26.57.1, 2620:171:801:714::1)
A	Good (1 - 3.0):: An average of 0.5 queries per domain name server required to find all ip addresses of all name servers.
A	Info:: 5 different Name Servers found: a.ns.apple.com, b.ns.apple.com, c.ns.apple.com, d.ns.apple.com, ns-ext-prod.jackfruit.apple.com, 4 Name Servers included in Delegation: a.ns.apple.com, b.ns.apple.com, c.ns.apple.com, d.ns.apple.com, 4 Name Servers included in 2 Zone definitions: a.ns.apple.com, b.ns.apple.com, c.ns.apple.com, d.ns.apple.com, 1 Name Servers listed in SOA.Primary: ns-ext-prod.jackfruit.apple.com.
A	Good: Only one SOA.Primary Name Server found.: ns-ext-prod.jackfruit.apple.com.
	Error: SOA.Primary Name Server not included in the delegation set.: ns-ext-prod.jackfruit.apple.com.
A	Good: All Name Server Domain Names have a Public Suffix.
	Error: Name Server Domain Names with Public Suffix and without ip address found.: 1 Name Servers without ipv4 and ipv6: 1

A	Info: Ipv4-Subnet-list: 4 Name Servers, 2 different subnets (first Byte): 17., 204., 3 different subnets (first two Bytes): 17.253., 204.19., 204.26., 4 different subnets (first three Bytes): 17.253.200., 17.253.207., 204.19.119., 204.26.57.
A	Good: Name Server IPv4-addresses from different subnet found:
A	Info: IPv6-Subnet-list: 4 Name Servers with IPv6, 1 different subnets (first block): 2620:, 2 different subnets (first two blocks): 2620:0149:, 2620:0171:, 4 different subnets (first three blocks): 2620:0149:0ae0:, 2620:0149:0ae7:, 2620:0171:0800:, 2620:0171:0801:, 4 different subnets (first four blocks): 2620:0149:0ae0:0000:, 2620:0149:0ae7:0000:, 2620:0171:0800:0714:, 2620:0171:0801:0714:
A	Good: Name Server IPv6 addresses from different subnets found.
A	Good: Nameserver supports TCP connections: 8 good Nameserver
A	Good: Nameserver supports Echo Capitalization: 8 good Nameserver
A	Good: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 8 good Nameserver
	Nameserver doesn't pass all EDNS-Checks: c.ns.apple.com / 2620:171:800:714::1: OP100: ok. FLAGS: ok. V1: ok. V1OP100: ok. V1FLAGS: ok. DNSSEC: ok. V1DNSSEC: ok. NSID: ok (2.ber.pch). COOKIE: ok. CLIENTSUBNET: ok.
	Nameserver doesn't pass all EDNS-Checks: ns-ext-prod.jackfruit.apple.com: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
	Nameserver doesn't pass all EDNS-Checks: ns-ext-prod.jackfruit.apple.com: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
	Nameserver doesn't pass all EDNS-Checks: ns-ext-prod.jackfruit.apple.com: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
A	Good: All SOA have the same Serial Number
A	Good: CAA entries found, creating certificate is limited: pki.apple.com is allowed to create certificates
A	Good: CAA entries found, creating certificate is limited: pki.apple.com is allowed to create wildcard-certificates
	4. Content- and Performance-critical Checks
A	Good: All checks /.well-known/acme-challenge/random-filename without redirects answer with the expected http status 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge should work. If it doesn't work: Check your vHost configuration (apachectl -S, httpd -S, nginx -T). Every combination of port and ServerName / ServerAlias (Apache) or Server (Nginx) must be unique. Merge duplicated entries in one vHost. If you use an IIS, extensionless files must be allowed in the /.well-known/acme-challenge subdirectory. Create a web.config in that directory. Content: <configuration><system.webServer><staticContent><mimeMap fileExtension="." mimeType="text/plain" /></staticContent></system.webServer></configuration>. If you have a redirect http ⇒ https, that's ok, Letsencrypt follows such redirects to port 80 / 443 (same or other server). There must be a certificate. But the certificate may be expired, self signed or with a not matching domain name. Checking the validation file Letsencrypt ignores such certificate errors. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
A	Info: No img element found, no alt attribute checked
A	Good: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
	https://proxy.safebrowsing.apple/ 17.253.73.207	404	1.826 seconds	Warning: 404 needs more then one second
	https://proxy.safebrowsing.apple/ 17.253.73.208	404	2.847 seconds	Warning: 404 needs more then one second
	https://proxy.safebrowsing.apple/ 17.253.107.203	404	2.170 seconds	Warning: 404 needs more then one second
	https://proxy.safebrowsing.apple/ 17.253.107.204	404	2.120 seconds	Warning: 404 needs more then one second
	https://proxy.safebrowsing.apple/ 2a01:b740:a1e:f000::3	404	1.757 seconds	Warning: 404 needs more then one second
	https://proxy.safebrowsing.apple/ 2a01:b740:a1e:f100::4	404	1.767 seconds	Warning: 404 needs more then one second
	https://proxy.safebrowsing.apple/ 2a01:b740:a26:f000::7	404	1.564 seconds	Warning: 404 needs more then one second
	https://proxy.safebrowsing.apple/ 2a01:b740:a26:f100::8	404	2.570 seconds	Warning: 404 needs more then one second
	https://17.253.73.207/ 17.253.73.207	404	1.840 seconds	Warning: 404 needs more then one second
	https://17.253.73.208/ 17.253.73.208	404	2.816 seconds	Warning: 404 needs more then one second
	https://17.253.107.203/ 17.253.107.203	404	2.190 seconds	Warning: 404 needs more then one second
	https://17.253.107.204/ 17.253.107.204	404	2.203 seconds	Warning: 404 needs more then one second
	https://[2a01:b740:0a1e:f000:0000:0000:0000:0003]/ 2a01:b740:a1e:f000::3	404	1.827 seconds	Warning: 404 needs more then one second
	https://[2a01:b740:0a1e:f100:0000:0000:0000:0004]/ 2a01:b740:a1e:f100::4	404	1.847 seconds	Warning: 404 needs more then one second
	https://[2a01:b740:0a26:f000:0000:0000:0000:0007]/ 2a01:b740:a26:f000::7	404	1.567 seconds	Warning: 404 needs more then one second
	https://[2a01:b740:0a26:f100:0000:0000:0000:0008]/ 2a01:b740:a26:f100::8	404	2.590 seconds	Warning: 404 needs more then one second
A	Duration: 224133 milliseconds, 224.133 seconds

8. Connections

Domain

Port

Cert.

Protocol

KeyExchange

Strength

Cipher

Strength

HashAlgorithm

OCSP stapling

Domain/KeyExchange

IP/Strength

Port/Cipher

Cert./Strength

Protocol/HashAlgorithm

OCSP stapling

proxy.safebrowsing.apple

17.253.73.207

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

proxy.safebrowsing.apple

17.253.73.207

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=images.apple.com, O=Apple Inc., L=Cupertino, C=US, ST=California
	2	CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US
	3	CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

proxy.safebrowsing.apple

17.253.73.208

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

proxy.safebrowsing.apple

17.253.73.208

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=images.apple.com, O=Apple Inc., L=Cupertino, C=US, ST=California
	2	CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US
	3	CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

proxy.safebrowsing.apple

17.253.107.203

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

proxy.safebrowsing.apple

17.253.107.203

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=images.apple.com, O=Apple Inc., L=Cupertino, C=US, ST=California
	2	CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US
	3	CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

proxy.safebrowsing.apple

17.253.107.204

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

proxy.safebrowsing.apple

17.253.107.204

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=images.apple.com, O=Apple Inc., L=Cupertino, C=US, ST=California
	2	CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US
	3	CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

proxy.safebrowsing.apple

2a01:b740:a1e:f000::3

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

proxy.safebrowsing.apple

2a01:b740:a1e:f000::3

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=images.apple.com, O=Apple Inc., L=Cupertino, C=US, ST=California
	2	CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US
	3	CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

proxy.safebrowsing.apple

2a01:b740:a1e:f100::4

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

proxy.safebrowsing.apple

2a01:b740:a1e:f100::4

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=images.apple.com, O=Apple Inc., L=Cupertino, C=US, ST=California
	2	CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US
	3	CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

proxy.safebrowsing.apple

2a01:b740:a26:f000::7

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

proxy.safebrowsing.apple

2a01:b740:a26:f000::7

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=images.apple.com, O=Apple Inc., L=Cupertino, C=US, ST=California
	2	CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US
	3	CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

proxy.safebrowsing.apple

2a01:b740:a26:f100::8

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

proxy.safebrowsing.apple

2a01:b740:a26:f100::8

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=images.apple.com, O=Apple Inc., L=Cupertino, C=US, ST=California
	2	CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US
	3	CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

17.253.73.207

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

17.253.73.207

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=images.apple.com, O=Apple Inc., L=Cupertino, C=US, ST=California
	2	CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US
	3	CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

17.253.73.208

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

17.253.73.208

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=images.apple.com, O=Apple Inc., L=Cupertino, C=US, ST=California
	2	CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US
	3	CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

17.253.107.203

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

17.253.107.203

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=images.apple.com, O=Apple Inc., L=Cupertino, C=US, ST=California
	2	CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US
	3	CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

17.253.107.204

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

17.253.107.204

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=images.apple.com, O=Apple Inc., L=Cupertino, C=US, ST=California
	2	CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US
	3	CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

[2a01:b740:0a1e:f000:0000:0000:0000:0003]

2a01:b740:a1e:f000::3

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

[2a01:b740:0a1e:f000:0000:0000:0000:0003]

2a01:b740:a1e:f000::3

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=images.apple.com, O=Apple Inc., L=Cupertino, C=US, ST=California
	2	CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US
	3	CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

[2a01:b740:0a1e:f100:0000:0000:0000:0004]

2a01:b740:a1e:f100::4

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

[2a01:b740:0a1e:f100:0000:0000:0000:0004]

2a01:b740:a1e:f100::4

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=images.apple.com, O=Apple Inc., L=Cupertino, C=US, ST=California
	2	CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US
	3	CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

[2a01:b740:0a26:f000:0000:0000:0000:0007]

2a01:b740:a26:f000::7

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

[2a01:b740:0a26:f000:0000:0000:0000:0007]

2a01:b740:a26:f000::7

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=images.apple.com, O=Apple Inc., L=Cupertino, C=US, ST=California
	2	CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US
	3	CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

[2a01:b740:0a26:f100:0000:0000:0000:0008]

2a01:b740:a26:f100::8

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

[2a01:b740:0a26:f100:0000:0000:0000:0008]

2a01:b740:a26:f100::8

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - too much certificates, don't send root certificates	1	CN=images.apple.com, O=Apple Inc., L=Cupertino, C=US, ST=California
	2	CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US
	3	CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

9. Certificates

CN=images.apple.com, O=Apple Inc., L=Cupertino, S=California, C=US, SERIALNUMBER=C0806592, OID.1.3.6.1.4.1.311.60.2.1.2=California, OID.1.3.6.1.4.1.311.60.2.1.3=US, OID.2.5.4.15=Private Organization

12.08.2025

04.11.2025
75 days expired

images.apple.com - 1 entry

CN=images.apple.com, O=Apple Inc., L=Cupertino, S=California, C=US, SERIALNUMBER=C0806592, OID.1.3.6.1.4.1.311.60.2.1.2=California, OID.1.3.6.1.4.1.311.60.2.1.3=US, OID.2.5.4.15=Private Organization

12.08.2025

04.11.2025
75 days expired

images.apple.com - 1 entry

Keyalgorithm	EC Public Key (256 bit, prime256v1)
Signatur:	ECDSA SHA256
Serial Number:	445F4D5B2A034CC3F953E92D1792AB67
Thumbprint:	E3BD3417EA86829770AA5D66C0BD5CCA6D1C58BC
SHA256 / Certificate:	R2Ndy5CwbjsbihFGBwjVk94dsGBtGzEyuCRUV+ky8u0=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	374ec821c7852b109cacfdfb81338a8aec3025aa4640d5e94ce827f0b0d49b77
SHA256 hex / Subject Public Key Information (SPKI):	374ec821c7852b109cacfdfb81338a8aec3025aa4640d5e94ce827f0b0d49b77 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://ocsp.apple.com/ocsp03-apevsecc1g101
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US

29.04.2020

11.04.2030
expires in 1544 days

CN=Apple Public EV Server ECC CA 1 - G1, O=Apple Inc., C=US

29.04.2020

11.04.2030
expires in 1544 days

Keyalgorithm	EC Public Key (256 bit, prime256v1)
Signatur:	ECDSA SHA384
Serial Number:	0CABAAD1CEC4E97CC2665881D02138F7
Thumbprint:	222902ACFB934C606D45BDC31C603DAAF8B13E4F
SHA256 / Certificate:	JYWSjSxb/ZUuAlvRLifGd2Ikz3Uuw2LTAxzdSTUYRNQ=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	2ebd9f63cf5ab1b13da2177b596f2d2c8d29be83cb5fe5adfcdee63feae2ddcd
SHA256 hex / Subject Public Key Information (SPKI):	2ebd9f63cf5ab1b13da2177b596f2d2c8d29be83cb5fe5adfcdee63feae2ddcd
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:	http://ocsp.digicert.com
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

01.08.2013

15.01.2038
expires in 4380 days

CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US

01.08.2013

15.01.2038
expires in 4380 days

Keyalgorithm	EC Public Key (384 bit, secp384r1)
Signatur:	ECDSA SHA384
Serial Number:	055556BCF25EA43535C3A40FD5AB4572
Thumbprint:	7E04DE896A3E666D00E687D33FFAD93BE83D349E
SHA256 / Certificate:	Ma1mSPgQQTjHOPOepDIBMzk+OhjMAilu+Xwqye9nMdA=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	b94c198300cec5c057ad0727b70bbe91816992256439a7b32f4598119dda9c97
SHA256 hex / Subject Public Key Information (SPKI):	b94c198300cec5c057ad0727b70bbe91816992256439a7b32f4598119dda9c97
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

No CertSpotter - CT-Log entries found

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

No CRT - CT-Log entries found

11. Html-Content - Entries

No Html-Content entries found. Only checked if https + status 200/401/403/404

12. Html-Parsing via https://validator.w3.org/nu/

No https result http status 200 and Content-Type text/html or text/xml found, no Html-Parsing - Check

13. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: a.ns.apple.com, b.ns.apple.com, c.ns.apple.com, d.ns.apple.com

QNr.	Domain	Type	NS used
1	com	NS	k.root-servers.net (2001:7fd::1)
	Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
2	a.ns.apple.com: 17.253.200.1, 2620:149:ae0::53	NS	a.gtld-servers.net (2001:503:a83e::2:30)
	Answer: d.ns.apple.com 204.26.57.1, 2620:171:801:714::1
	Answer: c.ns.apple.com 204.19.119.1, 2620:171:800:714::1
	Answer: b.ns.apple.com 17.253.207.1, 2620:149:ae7::53

14. CAA - Entries

Domainname	flag	Name	Value	∑ Queries
safebrowsing-proxy.g.aaplimg.com	0		no CAA entry found	1
proxy.safebrowsing.apple				1
safebrowsing.apple	5	iodef	mailto:contact_pki@apple.com	1
	5	issue	pki.apple.com	1
	9	issuewild	pki.apple.com	1
g.aaplimg.com	0		no CAA entry found	1
aaplimg.com	5	iodef	mailto:contact_pki@apple.com	1
	5	issue	pki.apple.com	1
	9	issuewild	pki.apple.com	1
apple	0		no CAA entry found	1
com	0		no CAA entry found	1

15. TXT - Entries

Domainname	Status	∑ Queries
safebrowsing.apple	ok	1
proxy.safebrowsing.apple		1
_acme-challenge.proxy.safebrowsing.apple	Name Error - The domain name does not exist	1
_acme-challenge.safebrowsing-proxy.g.aaplimg.com	missing entry or wrong length	1
_acme-challenge.proxy.safebrowsing.apple.safebrowsing.apple	Name Error - The domain name does not exist	1
_acme-challenge.proxy.safebrowsing.apple.proxy.safebrowsing.apple	Name Error - The domain name does not exist	1
_acme-challenge.safebrowsing-proxy.g.aaplimg.com.safebrowsing-proxy.g.aaplimg.com	perhaps wrong	1

16. DomainService - Entries

No DomainServiceEntries entries found

17. Cipher Suites

Skipped, CDN used or too many ip addresses

18. Portchecks

No open Ports <> 80 / 443 found, so no additional Ports checked.

Permalink: https://check-your-website.server-daten.de/?i=9fd96afb-95c0-4e44-a06d-2459bb0f5094

Last Result: https://check-your-website.server-daten.de/?q=proxy.safebrowsing.apple - 2025-09-24 15:02:31

Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=proxy.safebrowsing.apple" target="_blank">Check this Site: proxy.safebrowsing.apple</a>

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

QR-Code of this page - https://check-your-website.server-daten.de/?d=proxy.safebrowsing.apple

Check DNS, Urls + Redirects, Certificates and Content of your Website

Older results

1. IP-Addresses

2. DNSSEC

3. Name Servers

4. SOA-Entries

5. Screenshots

Mobile- and other Chrome-Checks

6. Url-Checks

7. Comments

1. General Results, most used to calculate the result

2. Header-Checks

3. DNS- and NameServer - Checks

4. Content- and Performance-critical Checks

8. Connections

9. Certificates

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

11. Html-Content - Entries

12. Html-Parsing via https://validator.w3.org/nu/

13. Nameserver - IP-Adresses

14. CAA - Entries

15. TXT - Entries

16. DomainService - Entries

17. Cipher Suites

18. Portchecks