Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=aspenbooking.com
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
May 29, 2026
Valid Until
August 27, 2026
78 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
84:68:A5:E6:E7:6E:AB:C2:D1:A0:FC:BE:70:57:36:4A:73:30:2F:29:74:AE:E1:7F:4D:BD:14:E3:75:5D:1B:32
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
aspenbooking.com
*.aspenbooking.com
50741.buzz
*.50741.buzz
5aefc6a779ad1031.com
*.5aefc6a779ad1031.com
692137.cc
*.692137.cc
6c62d8f7a8e061e5.com
*.6c62d8f7a8e061e5.com
73275b001b64cc64.com
*.73275b001b64cc64.com
77d5ab838dafc01d.com
*.77d5ab838dafc01d.com
82b2ad7f6fddf204.com
*.82b2ad7f6fddf204.com
85369.pro
*.85369.pro
857top.com
*.857top.com
95201.wang
*.95201.wang
995522rr.cc
*.995522rr.cc
9cc8987ccb7d0613.com
*.9cc8987ccb7d0613.com
9um3n5a.com
*.9um3n5a.com
advantagediy.xyz
*.advantagediy.xyz
agbong88.mobi
*.agbong88.mobi
astrorealm.blog
*.astrorealm.blog
ba7411dd64270af3.com
*.ba7411dd64270af3.com
backsheesh.com
*.backsheesh.com
bd4b37cdb1f0e7f4.com
*.bd4b37cdb1f0e7f4.com
bestbeddingsets.com
*.bestbeddingsets.com
blindsonthebeach.com
*.blindsonthebeach.com
blood-sugar-tests.click
*.blood-sugar-tests.click
bluetooth-speakers-br1.sbs
*.bluetooth-speakers-br1.sbs
buyyourpushoperations.info
*.buyyourpushoperations.info
car-71.sbs
*.car-71.sbs
casibom1520.com
*.casibom1520.com
cell-phones.sbs
*.cell-phones.sbs
cssbl.com
*.cssbl.com
cybd.com
*.cybd.com
d1b8bff86e5ec9ee.com
*.d1b8bff86e5ec9ee.com
d599fce24043e91a.com
*.d599fce24043e91a.com
dd8d701e5f38b134.com
*.dd8d701e5f38b134.com
deformational.com
*.deformational.com
distractionden.com
*.distractionden.com
docwaters.com
*.docwaters.com
donutchain.org
*.donutchain.org
dt21i.top
*.dt21i.top
duqy.com
*.duqy.com
e6eeb88dae3a69ca.com
*.e6eeb88dae3a69ca.com
eaglehouse.org
*.eaglehouse.org
earthstakes.com
*.earthstakes.com
editorshriyansh.xyz
*.editorshriyansh.xyz
enclave.group
*.enclave.group
engagetopushoperations.info
*.engagetopushoperations.info
Other domains in certificate