Looks fine to me:
curl -Iv https://benevolentwoman.com
* Rebuilt URL to: https://benevolentwoman.com/
* Trying 188.166.150.243...
* TCP_NODELAY set
* Connected to benevolentwoman.com (188.166.150.243) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
* CAfile: /etc/ssl/certs/ca-certificates.crt
CApath: /etc/ssl/certs
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.3 (IN), TLS Unknown, Certificate Status (22):
* TLSv1.3 (IN), TLS handshake, Unknown (8):
* TLSv1.3 (IN), TLS Unknown, Certificate Status (22):
* TLSv1.3 (IN), TLS handshake, Certificate (11):
* TLSv1.3 (IN), TLS Unknown, Certificate Status (22):
* TLSv1.3 (IN), TLS handshake, CERT verify (15):
* TLSv1.3 (IN), TLS Unknown, Certificate Status (22):
* TLSv1.3 (IN), TLS handshake, Finished (20):
* TLSv1.3 (OUT), TLS change cipher, Client hello (1):
* TLSv1.3 (OUT), TLS Unknown, Certificate Status (22):
* TLSv1.3 (OUT), TLS handshake, Finished (20):
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server accepted to use h2
* Server certificate:
* subject: CN=benevolentwoman.com
* start date: May 13 23:45:38 2022 GMT
* expire date: Aug 11 23:45:37 2022 GMT
* subjectAltName: host "benevolentwoman.com" matched cert's "benevolentwoman.com"
* issuer: C=US; O=Let's Encrypt; CN=R3
* SSL certificate verify ok.
* Using HTTP2, server supports multi-use
* Connection state changed (HTTP/2 confirmed)
* Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
* TLSv1.3 (OUT), TLS Unknown, Unknown (23):
* TLSv1.3 (OUT), TLS Unknown, Unknown (23):
* TLSv1.3 (OUT), TLS Unknown, Unknown (23):
* Using Stream ID: 1 (easy handle 0x5604bfc30620)
* TLSv1.3 (OUT), TLS Unknown, Unknown (23):
> HEAD / HTTP/2
> Host: benevolentwoman.com
> User-Agent: curl/7.58.0
> Accept: */*
>
* TLSv1.3 (IN), TLS Unknown, Certificate Status (22):
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* TLSv1.3 (IN), TLS Unknown, Certificate Status (22):
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* TLSv1.3 (IN), TLS Unknown, Unknown (23):
* Connection state changed (MAX_CONCURRENT_STREAMS updated)!
* TLSv1.3 (OUT), TLS Unknown, Unknown (23):
* TLSv1.3 (IN), TLS Unknown, Unknown (23):
< HTTP/2 200
HTTP/2 200
< server: nginx
server: nginx
< date: Sat, 14 May 2022 02:14:43 GMT
date: Sat, 14 May 2022 02:14:43 GMT
< content-type: text/html; charset=UTF-8
content-type: text/html; charset=UTF-8
< vary: Accept-Encoding
vary: Accept-Encoding
< expires: Thu, 19 Nov 1981 08:52:00 GMT
expires: Thu, 19 Nov 1981 08:52:00 GMT
< cache-control: no-store, no-cache, must-revalidate
cache-control: no-store, no-cache, must-revalidate
< pragma: no-cache
pragma: no-cache
< link: <https://benevolentwoman.com/wp-json/>; rel="https://api.w.org/", <https://benevolentwoman.com/wp-json/wp/v2/pages/30>; rel="alternate"; type="application/json", <https://benevolentwoman.com/>; rel=shortlink
link: <https://benevolentwoman.com/wp-json/>; rel="https://api.w.org/", <https://benevolentwoman.com/wp-json/wp/v2/pages/30>; rel="alternate"; type="application/json", <https://benevolentwoman.com/>; rel=shortlink
< cache-provider: CLOUDWAYS-CACHE-DC
cache-provider: CLOUDWAYS-CACHE-DC
< vary: Accept-Encoding
vary: Accept-Encoding
< last-modified: Sat, 14 May 2022 02:14:43 GMT
last-modified: Sat, 14 May 2022 02:14:43 GMT
< age: 0
age: 0
< x-cache: MISS
x-cache: MISS
< accept-ranges: bytes
accept-ranges: bytes
<
* Connection #0 to host benevolentwoman.com left intact