SSL Certificate Analysis for 01316.co - Security Grade & TLS Configuration

Certificate Information

Subject

CN=yumild.toys

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 02, 2026

Valid Until

May 03, 2026 83 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

B6:12:6D:A5:27:9A:72:A4:24:BB:42:2D:7D:80:0D:A7:BE:10:D1:A1:CF:E0:7C:FA:C5:B7:D0:43:4B:63:F7:ED

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

01316.co *.01316.co

Other domains in certificate

00464.locker *.00464.locker

2000bra.love *.2000bra.love

24379.win *.24379.win

700127.com *.700127.com

706tt.vip *.706tt.vip

*.admin.angellotti.com angellotti.com *.angellotti.com

fillys.com *.fillys.com *.sitemaps.fillys.com

*.desktop.gburns.com gburns.com *.gburns.com

ltcohio.org *.ltcohio.org *.ww17.ltcohio.org *.ww25.ltcohio.org *.www.ltcohio.org

new-houses-01.cfd *.new-houses-01.cfd

oncloudz.net *.oncloudz.net

pgajh.pro *.pgajh.pro

policyinstitution.com *.policyinstitution.com

psammophyte.com *.psammophyte.com

quakerdom.com *.quakerdom.com

quye.app *.quye.app

r2unyj.shop *.r2unyj.shop

rl8h658.top *.rl8h658.top

ruiguanfj.com *.ruiguanfj.com

s4s7kui.cyou *.s4s7kui.cyou

stunnings.net *.stunnings.net

theokushon.com *.theokushon.com

*.crm.tokatlioglu.com *.email.tokatlioglu.com tokatlioglu.com *.tokatlioglu.com

tourbookers.in *.tourbookers.in

trycodeninjahub.com *.trycodeninjahub.com

trylenscrew.com *.trylenscrew.com

vastola.com *.vastola.com *.ww1.vastola.com

*.obi.vena.org vena.org *.vena.org

*.browsernovelprt-stsdk.vivoon.com vivoon.com *.vivoon.com *.ww25.vivoon.com

vpvu.pro *.vpvu.pro

*.ru.what-a.info what-a.info *.what-a.info

www132887.com *.www132887.com

xxxpron.com *.xxxpron.com

ycjh88.shop *.ycjh88.shop

youandme.me *.youandme.me

*.app.yumild.toys *.m.yumild.toys yumild.toys *.yumild.toys