Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=infiniteseating.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 04, 2026
Valid Until
May 05, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FB:14:2F:31:9D:91:34:18:98:F3:D6:4E:3D:CA:C3:F6:DF:29:1A:43:CF:44:E9:89:90:88:6E:C6:E0:B1:82:B0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
saorsa.army
*.saorsa.army
*.ameriabank.saorsa.army
infiniteseating.com
*.infiniteseating.com
innovativefoodcrafts.food
*.innovativefoodcrafts.food
itfmoniiosdalrce.cyou
*.itfmoniiosdalrce.cyou
jatengmerpati.com
*.jatengmerpati.com
jdav239.com
*.jdav239.com
jrav297.com
*.jrav297.com
juliebyrne.com
*.juliebyrne.com
junjingruye.com
*.junjingruye.com
key75.top
*.key75.top
ldjb215.icu
*.ldjb215.icu
legallyuncensored.com
*.legallyuncensored.com
loans-credits3.click
*.loans-credits3.click
majortrips.com
*.majortrips.com
makisushi.it
*.makisushi.it
marcolino.it
*.marcolino.it
mayte.it
*.mayte.it
mostbet-tl9z.xyz
*.mostbet-tl9z.xyz
mujpqsi.cyou
*.mujpqsi.cyou
mxavsp251.com
*.mxavsp251.com
nhacaine.net
*.nhacaine.net
obese.it
*.obese.it
ogfdf.loan
*.ogfdf.loan
onparkslope.com
*.onparkslope.com
phim33.co
*.phim33.co
photoinstant.it
*.photoinstant.it
primeinfo.co
*.primeinfo.co
psg69menangterus.xyz
*.psg69menangterus.xyz
pyledesignbuild.com
*.pyledesignbuild.com
quhixmz.cn
*.quhixmz.cn
readmanga.tv
*.readmanga.tv
redcornertop.com
*.redcornertop.com
relicbertep.com
*.relicbertep.com
relief.it
*.relief.it
retromemoryvault.live
*.retromemoryvault.live
rnizvp.cc
*.rnizvp.cc
rokubet283.com
*.rokubet283.com
seifgifts.com
*.seifgifts.com
selleruov.com
*.selleruov.com
setupcohleycompany.com
*.setupcohleycompany.com
shanghaihunc.com
*.shanghaihunc.com
shisuihouse.net
*.shisuihouse.net
siahboz.lol
*.siahboz.lol
spamguard.it
*.spamguard.it
Other domains in certificate