energywisebristol.co.uk

Score 92/100

Web site information

Website image energywisebristol.co.uk
IP Address
Font Scripts
Google Font API
Web Servers
LiteSpeed
Programming Languages
PHP
CMS
WordPress
JavaScript Frameworks
jQuery

SEO data

title
Energy Wise Bristol – My WordPress Blog
robots
max-image-preview:large
viewport
width=device-width, initial-scale=1
theme-color
#3857F1
msapplication-TileImage
http://energywisebristol.co.uk/wp-content/uploads/2021/12/LogoMakr-7tDKac.png

Lighthouse

Performance
92/100
Accessibility
100/100
Best Practices
92/100
SEO
83/100
PWA
40/100

Web site external calls

fonts.googleapis.com

Protocols

SSLv2
not offered
SSLv3
not offered
TLS 1.0
not offered
TLS 1.1
not offered
TLS 1.2
offered
TLS 1.3
not offered + downgraded to weaker protocol
ALPN HTTP2
h2
ALPN
spdy/3.1http/1.1spdy/2spdy/3

Vulnerabilities

heartbleed
not vulnerable, no heartbeat extension
CCS
not vulnerable
ticketbleed
not vulnerable
ROBOT
not vulnerable, no RSA key transport cipher
SSL renegotiation
supported
SSL client renegotiation
not vulnerable
CRIME TLS
not vulnerable
BREACH
potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested
POODLE SSL
not vulnerable, no SSLv3
fallback SCSV
no protocol below TLS 1.2 offered
SWEET32
not vulnerable
FREAK
not vulnerable
DROWN
not vulnerable on this host and port
DROWN hint
Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://censys.io/ipv4?q=CE5DAAFD3521C61C268D662CC35DC0C5E265E60CEF2A496939B90DA48B70FF10
LOGJAM
not vulnerable, no DH EXPORT ciphers,
LOGJAM-common primes
no DH key with <= TLS 1.2
BEAST
not vulnerable, no SSL3 or TLS1
LUCKY13
not vulnerable
winshock
not vulnerable
RC4
not vulnerable

Header Responses

Status code
200 OK ('/')
Clock skew
0 seconds from localtime
HTTP headerTime
1642192158
HSTS time
180 days (=15552000 seconds) > 15552000 seconds
HSTS subdomains
includes subdomains
HSTS preload
domain is NOT marked for preloading
HPKP
No support for HTTP Public Key Pinning
X-UA-Compatible
IE=edge

Server Defaults

TLS extensions
'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'extended master secret/#23' 'application layer protocol negotiation/#16'
TLS session ticket
valid for 7200 seconds only (<daily)
SSL sessionID support
yes
Session Ticket Resumption
supported
Session ID Resumption
supported
TLS timestamp
off by -1 seconds from your localtime
cert compression
N/A
clientAuth
none
cert numbers
1
Signature algorithm
SHA256 with RSA
Key size
RSA 4096 bits (exponent is 65537)
Key usage
Digital Signature, Key Encipherment
Extended key usage
TLS Web Server Authentication, TLS Web Client Authentication
Serial number
036B6512BC4CEBFAB6E52B9239F1295B069A
cert serialNumberLen
18
Fingerprint SHA1
D703A314B434580CC281A6A22820C364726AC27B
Fingerprint SHA256
CE5DAAFD3521C61C268D662CC35DC0C5E265E60CEF2A496939B90DA48B70FF10
Certificate details
-----BEGIN CERTIFICATE----- MIIGcDCCBVigAwIBAgISA2tlErxM6/q25SuSOfEpWwaaMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMjAxMDQxNTM3MTBaFw0yMjA0MDQxNTM3MDlaMCIxIDAeBgNVBAMT F2VuZXJneXdpc2VicmlzdG9sLmNvLnVrMIICIjANBgkqhkiG9w0BAQEFAAOCAg8A MIICCgKCAgEAwc+yc9YIDo2DwtngZnJt+gAl3ZC+LsF6GJzDZwgrg5FAij6CCBLN 7yQ5EzzdSHX5p4eu48uJPRD+4KL6RIUXA7A63VIbIg4NhOfvNPELpyOIgzTV/Doj tTwXS0Rb1Z79mTYs/uuItZ3wGaswOSI1Uk3+xUCFifWUIJ0G3wOWQMbmO2FPqzrM MHOdCLcDnplBpVs4iAT3MZrsOMOzMbWiGpVcjEStcvYp4J5c0TcGxode1cxx0IDs TCWhBNmCR+epZD7sUFzYM7SX2264gI11eZccttMuGw3fUkPe0hF4loj2SIXwSKEH 3rdlISrJ9LQ0TPgvxSImzGeBeTeU3YaN5pxAWn6WyaV9nStfTsfw0Ze+R9tJIOTQ RWAkNqlQfrl/ne7DI37+7eomCanGGDyuXO1GB9Tj+u6sLhGpL8FRgaf/nfW7RWHl Mc9O1JX/8komrl3MR0FnO5TBAPSHAnlTvr4pV85TqeJPatE6CaDLFkx3Otg8NiM+ UhYnMp7LC1/wwJZHC0mXmIPVc5Sx6xjRn/5/0pMJ28ydCpNSFucADWnEK5pDsKNb yl+d7uapQUnZq1yNxQTqmIhG76UghPdLZlswVVnp53lX4XWC0Wur+hhPtLNNVcAD hAKVfGcU6zZyDDCeXJ9webm2Lq7GukhiR1roIGww527XszwE8HVtUFkCAwEAAaOC Ao4wggKKMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUzWYPiLMn+37Jni45AQ5qJ/Db dIkwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEE STBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUH MAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wXQYDVR0RBFYwVIIXZW5lcmd5d2lz ZWJyaXN0b2wuY28udWuCHG1haWwuZW5lcmd5d2lzZWJyaXN0b2wuY28udWuCG3d3 dy5lbmVyZ3l3aXNlYnJpc3RvbC5jby51azBMBgNVHSAERTBDMAgGBmeBDAECATA3 BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNy eXB0Lm9yZzCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB3AN+lXqtogk8fbK3uuF9O PlrqzaISpGpejjsSwCBEXCpzAAABfiXzorgAAAQDAEgwRgIhAMBBKprrLAe4mEKv OMgUNxmJNWm3WxSvyZlYCEn2/0NaAiEAyb83bjlJJAICNXVQkOHr+8ZKq0+3tXol eG7pDNCo5DEAdgBGpVXrdfqRIDC1oolp9PN9ESxBdL79SbiFq/L8cP5tRwAAAX4l 86L+AAAEAwBHMEUCIAfWtQ6l8vSZRNfE0bxIJg1HqXfZ5PPxTv+OpcyUdJqtAiEA 7gOhNARfFNBZTaZUGsyPUMdMsLtPm1mcLz/3bUgNuKMwDQYJKoZIhvcNAQELBQAD ggEBADmajRvt+3U/fE0q4n3XhtUcZR75+bdYweTjZsdWQCBRp2QXqBuDCocEdG0x XwqGcvm+tjs3Obe8Wm3Y0nRXCPm0Esjx4NwBrEzUqlxRqz+crIR/UYjmXbbLRdxc 7B/IPrBgGATnI6lhyTPK5ZeAhEcZ4XA/PvqlmWe9l7cSkHWDOX2Lzvs1IhCZqOs0 eOce8lpqLPec/VJsubpoxX6KOM37pvxIUdikxAK1/JSPPTBnuiWwdZpAuWppy92f VVK03wUDq9WZhov8N59dVHDMP0G9/Qej3VIxNcLYduPz4FZ3ifgnytVj7vDi1iI6 fI5ApNoho/J/P3qg+D4djKSEvq4= -----END CERTIFICATE-----
Common names
energywisebristol.co.uk
Service Name Indication
27keswick-cottages.co.uk
SubjectAlternative Name
energywisebristol.co.uk mail.energywisebristol.co.uk www.energywisebristol.co.uk
Certificate trusted
Ok via SAN and CN (SNI mandatory)
Certificate chain trusted
Some certificate trust checks failed -> Microsoft (expired) Linux (expired) , OK -> Mozilla Apple
Is certificate Extended Validation
no
cert expirationStatus
79 >= 30 days
Valid from
2022-01-04 15:37
Valid until
2022-04-04 15:37
cert extlifeSpan
certificate has no extended life time according to browser forum
cert eTLS
not present
cert crlDistributionPoints
--
Online Certificate Status Protocol URL
http://r3.o.lencr.org
OCSP stapling
offered
cert ocspRevoked
not revoked
cert mustStapleExtension
--
DNS CAArecord
--
certificate transparency
yes (certificate extension)
Chain
3
certs list ordering problem
no
Certificate authority issuers
R3 (Let's Encrypt from US)
intermediate cert
-----BEGIN CERTIFICATE----- MIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAw TzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2Vh cmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAw WhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3Mg RW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cP R5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdx sxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8Zutm NHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxg Z3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG /kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMC AYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYB Af8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaA FHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcw AoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRw Oi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQB gt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6W PTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wl ikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQz CkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BIm lJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4 avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2 yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1O yK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90Ids hCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+ HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6Zv MldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqX nLRbwHOoq7hHwg== -----END CERTIFICATE-----
intermediate cert fingerprintSHA256
67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD
intermediate cert notBefore
2020-09-04 00:00
intermediate cert notAfter
2025-09-15 16:00
intermediate cert expiration
ok > 40 days
intermediate cert chain
R3 <-- ISRG Root X1
intermediate cert
-----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/ MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMT DkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1ow TzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2Vh cmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEB AQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XC ov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpL wYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+D LtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK 4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5 bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5y sR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZ Xmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4 FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBc SLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2ql PRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TND TwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYw SwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1 c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx +tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEB ATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQu b3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9E U1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26Ztu MA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC 5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW 9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuG WCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9O he8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFC Dfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5 -----END CERTIFICATE-----
intermediate cert fingerprintSHA256
6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F
intermediate cert notBefore
2021-01-20 19:14
intermediate cert notAfter
2024-09-30 18:14
intermediate cert expiration
ok > 40 days
intermediate cert chain
ISRG Root X1 <-- DST Root CA X3
intermediate cert badOCSP
intermediate certificate(s) is/are ok

Server Preferences

order
server
Which protocol negotiated
Default protocol TLS1.2
negotiated
ECDHE-RSA-AES256-GCM-SHA384, 256 bit ECDH (P-256)
order TLSv1 2
ECDHE-RSA-AES256-GCM-SHA384

Ciphers

Browser Simulations

Android 2.3.7
No connection
Android 4.1.1
No connection
Android 4.3
No connection
Android 4.4.2
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Android 5.0.0
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 6.0
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 7.0
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows Chrome 51
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows Chrome 57
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows Firefox 47
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows Firefox 53
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows XP Internet Explorer 6
No connection
Windows Vista Internet Explorer 7
No connection
Windows XP Internet Explorer 8
No connection
Windows 7 Internet Explorer 8
No connection
Windows 7 Internet Explorer 11
No connection
Windows 8.1 Internet Explorer 11
No connection
Windows 8.1 update Internet Explorer 11
No connection
Windows 10 Internet Explorer 11
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows 10 Edge 13
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows Phone 10 Edge 13
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows 7 Opera 17
No connection
MacOSX 10.6.8 Safari 5.1.9
No connection
iOS 7 Safari 7
No connection
MacOSX 10.11 Safari 9
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
MacOSX 10.12 Safari 10
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
iOS 9 App Transport Security 9
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows 7 Tor 7.0.9
No connection
Java 6 update 45
No connection
Java 7 update 25
No connection
Java 8 update 31
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
OpenSSL 1.1.1
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
OpenSSL 1.0.2e
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384