Infrastructure
· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.BTLS Certificate Expiry & Recommendations59 days until leaf cert expires — 3 issues to addressREVIEW
Certificate validity
Recommended actions
- Enable HSTS: Strict-Transport-Security: max-age=31536000; includeSubDomains
- Enable DNSSEC on your domain for DNS spoofing protection
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
A+DNS Records2 A records, 32 ms lookupPASS
| A | 104.18.30.234, 104.18.31.234 |
| AAAA | 2606:4700::6812:1eea, 2606:4700::6812:1fea |
| CNAME | — |
| NS | gigi.ns.cloudflare.com, nikon.ns.cloudflare.com |
| MX | 0 termly-io.mail.protection.outlook.com |
| TXT | site24x7-signals-domain-verification=0901cb5716d1da880ed78fcbbc0c7e4e MS=ms42493348 stripe-verification=299f448f841653649fd468bb3a02b181b736122d0b96c493870905adc634... SPF v=spf1 a include:sendgrid.net include:spf.mandrillapp.com include:spf.protection... google-site-verification=qNAWwaIoUJBFFzqvU2HDyA0EH0Z3xccYUwEwEpj5-Vw have-i-been-pwned-verification=4d41a1ff9056c05ff26d8d5830f95127 google-site-verification=lZ8oqCMSbu5lstYpKjh84B0x-Ax3UxL2B70M7Qksq60 google-site-verification=VPMARGcGMkscXP5WJtngIJwBTEEratuNlkTONKNHqOo google-site-verification=KUlDUVOz3N5NEmafKnh4594NnVQKy8VV42Tmtv7Tq4Y google-site-verification=WG5CKGHqU0pO8dr3h_D08tiXUiycTyGU71WkuWXsiko |
| CAA | Lookup not available with standard resolver |
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.
A+Redirect ChainNo redirects — direct accessPASS
https://termly.io
77 ms · HTTP/1.1 FINAL
| # | URL | Status | Time | Protocol | Server |
|---|---|---|---|---|---|
| 1 | https://termly.io | 200 | 77 ms | HTTP/1.1 | cloudflare |
A+IPv6 ReadinessIPv6 reachable (17 ms)PASS
A+Crawlabilityrobots.txt present, sitemap with 4 URLsPASS
User-agent: Scrapy
Allow: /
User-agent: *
Disallow: /wp-admin/
Disallow: /?s=
Disallow: /*?s=*
Allow: /wp-admin/admin-ajax.php
Sitemap: https://termly.io/sitemap_index.xml
A+URL Variantswww/non-www, trailing slash, HTTP→HTTPSPASS
www / non-www
Preferred variant: non-www
HTTP → HTTPS
Consistent
A+Domain Intelligencetermly.io — via One.com A/S, 9 years, 10 months oldPASS
14 days
July 26, 2026
59 days
Issued by Let's Encrypt
9 years, 10 months
Registered July 26, 2016
Status unknown
Protects against DNS spoofing
Unknown
2606:4700::6812:1fea
One.com A/S
Expiry timeline
Recommended actions
- Renew the domain or enable auto-renewal to prevent accidental expiry
Domain cannot be transferred without explicit unlock from the registrar. This protects against unauthorized transfers.
Registrar lock (clientTransferProhibited et al.) prevents unauthorized domain transfers — strongest defense against domain hijacking.
Source: ICANN / domain-security best practice