DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=namekagon.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 03, 2026
Valid Until
May 04, 2026 82 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E1:AD:85:2C:E8:67:EE:8A:F8:D7:3B:5D:7C:A8:15:38:30:C8:AB:BE:0B:44:5A:17:1A:CF:89:54:0F:BB:CE:BF
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
amarresrapidos.com *.amarresrapidos.com *.ww25.amarresrapidos.com

Other domains in certificate

aavasaksa.com *.aavasaksa.com *.dev.aavasaksa.com *.hostmaster.aavasaksa.com *.test.aavasaksa.com
banx.net *.banx.net *.notexistsapp.banx.net
dentalmobile.com *.dentalmobile.com *.sitemaps.dentalmobile.com
*.api.duplafortuna.vip duplafortuna.vip *.duplafortuna.vip *.ww25.duplafortuna.vip
*.convert.exspida.com *.cygnus.exspida.com *.db6.exspida.com exspida.com *.exspida.com *.film.exspida.com *.gsm.exspida.com *.labor.exspida.com *.mqtt.exspida.com *.offline.exspida.com *.p2.exspida.com *.tms.exspida.com *.ul-cat6506-gw.exspida.com
kabolo.com *.kabolo.com *.mail.kabolo.com *.mail02.kabolo.com *.out.kabolo.com *.portal.kabolo.com *.sitemap.kabolo.com *.sslvpn.kabolo.com *.wildcard.kabolo.com *.ww1.kabolo.com *.ww25.kabolo.com *.ww5.kabolo.com
lentedecontato.com *.lentedecontato.com *.pop3.lentedecontato.com
*.mailer.mastersdegreeprograms.org mastersdegreeprograms.org *.mastersdegreeprograms.org *.secure.mastersdegreeprograms.org *.stg.mastersdegreeprograms.org
musgraves.com *.musgraves.com *.sitemaps.musgraves.com *.webmail.musgraves.com
*.api.namekagon.com *.m.namekagon.com namekagon.com *.namekagon.com
*.25.qiongren.com *.film.qiongren.com *.hostmaster.qiongren.com *.image.qiongren.com qiongren.com *.qiongren.com *.ww16.qiongren.com *.ww25.qiongren.com
*.com.shengchan.com *.hjsp.shengchan.com *.iwdohutug.shengchan.com shengchan.com *.shengchan.com *.www.shengchan.com *.yicloud.shengchan.com
*.44.sslxj.cn *.d5y3b03v.sslxj.cn sslxj.cn *.sslxj.cn
*.hostmaster.vantuong.com vantuong.com *.vantuong.com
*.ar.vimuo.com *.hotfix.vimuo.com *.mail12.vimuo.com *.net.vimuo.com vimuo.com *.vimuo.com *.ww.vimuo.com
zanotto.studio *.zanotto.studio