SSL Certificate Analysis for acadianlab.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=clotree.in

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

April 25, 2026

Valid Until

July 24, 2026 52 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

BF:6C:81:4B:E2:61:09:7C:11:74:91:5C:C4:9E:DA:AD:66:E1:5C:3C:59:4E:70:FA:E2:4E:F1:0E:63:9A:BF:A6

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

acadianlab.com *.acadianlab.com

Other domains in certificate

11my.tv *.11my.tv

134456.xyz *.134456.xyz

17av.one *.17av.one

332266rr.com *.332266rr.com

4-ppvip.vip *.4-ppvip.vip

47688.vip *.47688.vip

50266.center *.50266.center

56974.center *.56974.center

65764.plus *.65764.plus

9-ppvip.vip *.9-ppvip.vip

9jatide.com *.9jatide.com

a287rpt.top *.a287rpt.top

a668g.com *.a668g.com

actions.dev *.actions.dev

actu-solutions.com *.actu-solutions.com

aeobrowser.com *.aeobrowser.com

africanglobalfairs.com *.africanglobalfairs.com

ambaslifefarm.com *.ambaslifefarm.com

arcdesignstudios.com *.arcdesignstudios.com

audiograder.com *.audiograder.com

auto-loans-di-de.sbs *.auto-loans-di-de.sbs

badshahfoods.com *.badshahfoods.com

big-discount-waiting.com *.big-discount-waiting.com

billpayhelp.org *.billpayhelp.org

blendgood.net *.blendgood.net

clotree.in *.clotree.in

culinaryvalueverse.food *.culinaryvalueverse.food

dat-e.com *.dat-e.com

destinationintegrity.live *.destinationintegrity.live

dgjlg.net.cn *.dgjlg.net.cn

dhangadhinews.com *.dhangadhinews.com

didkey.me *.didkey.me

directgadgetsltd.com *.directgadgetsltd.com

dnxkgy217877.cc *.dnxkgy217877.cc

easternmotorsltd.com *.easternmotorsltd.com

ekgq.com *.ekgq.com

elasticmeter.com *.elasticmeter.com

enviroteksolutionssite.com *.enviroteksolutionssite.com

estatesclub.com *.estatesclub.com

evertopgloballtd.com *.evertopgloballtd.com

extremeviolins.com *.extremeviolins.com

playback.vc *.playback.vc

premium-apartments.com *.premium-apartments.com

primefitmovement.run *.primefitmovement.run