SSL Certificate Analysis for admnet.org - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=03685.me

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 10, 2026

Valid Until

May 11, 2026 78 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

6C:57:6F:5B:27:62:DC:78:18:35:B0:57:09:21:5F:5C:A5:86:C4:52:6B:85:A9:5D:05:07:56:59:0B:18:56:E2

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

admnet.org *.admnet.org

Other domains in certificate

03685.me *.03685.me

100557.cc *.100557.cc

122365fv.shop *.122365fv.shop

136703.xyz *.136703.xyz

27279082.top *.27279082.top

27288429.top *.27288429.top

444522.com *.444522.com

4499.me *.4499.me

54584.co *.54584.co

546352434.xyz *.546352434.xyz

55766.auction *.55766.auction

55ffbet.love *.55ffbet.love

5678917.vip *.5678917.vip

578571.cc *.578571.cc

608664.vip *.608664.vip

60987.ws *.60987.ws

62253.loan *.62253.loan

733959.club *.733959.club

81569.best *.81569.best

85564.my *.85564.my

908ylxx301.top *.908ylxx301.top

bitcoincloud.site *.bitcoincloud.site

buffcars.com *.buffcars.com

c54c54.name *.c54c54.name

cobraclients.business *.cobraclients.business

cobracontacts.life *.cobracontacts.life

compagniaassicuratrice.it *.compagniaassicuratrice.it

crash-lawyers-698308066.click *.crash-lawyers-698308066.click

creativeware.online *.creativeware.online

donkong.site *.donkong.site

dtyqqgd576.vip *.dtyqqgd576.vip

f64302410.com *.f64302410.com

fcdog.live *.fcdog.live

financialfitnesschallenge.com *.financialfitnesschallenge.com

googlesearchsucks.com *.googlesearchsucks.com

histoires-d-enfants.com *.histoires-d-enfants.com

ht55ff.xyz *.ht55ff.xyz

indiscutibile.com *.indiscutibile.com

ktjpc.co *.ktjpc.co

kyvoid.site *.kyvoid.site

litio.site *.litio.site

lucidatori.com *.lucidatori.com

luckyyywin.cfd *.luckyyywin.cfd

ridersfood.it *.ridersfood.it