ECDSA certificate not NIST/HIPAA compliant, SERVER CERTIFICATES ARE SIGNED WITH A WRONG ALGORITHM (sha256WithRSAEncryption instead ecdsa-with-SHA256).
https://www.immuniweb.com/ssl/?id=cRcQCUmb
Why you sha256WithRSAEncryption instead ecdsa-with-SHA256?