Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=rentmycarvan.com.au
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
December 23, 2025
Valid Until
March 23, 2026
32 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6B:1B:90:D1:90:86:8D:C2:91:56:CE:0D:87:22:DC:CC:7F:48:43:A2:FD:3F:D4:5F:58:69:57:5F:ED:17:B6:CB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
antiample.org
*.antiample.org
adoramosromancesebook.com.br
*.adoramosromancesebook.com.br
amarit.xyz
*.amarit.xyz
appolice.me
*.appolice.me
*.blog.appolice.me
*.ww25.appolice.me
awan.studio
*.awan.studio
*.beta.awan.studio
*.billing.awan.studio
*.cdn.awan.studio
*.dash.awan.studio
*.hesty.awan.studio
chandbpn.xyz
*.chandbpn.xyz
cleaning-time.online
*.cleaning-time.online
*.alldun.creativepossibility.com.au
*.confirm.creativepossibility.com.au
*.cpclient1.creativepossibility.com.au
*.cpclient2.creativepossibility.com.au
creativepossibility.com.au
*.creativepossibility.com.au
*.magneticme.creativepossibility.com.au
*.newsite.creativepossibility.com.au
*.sammacdonaldhair.creativepossibility.com.au
*.shannonbush.creativepossibility.com.au
*.ttmagissues.creativepossibility.com.au
*.vipmembers.creativepossibility.com.au
cscsk.xyz
*.cscsk.xyz
domenic.com.au
*.domenic.com.au
f1smm.online
*.f1smm.online
grsedlin.com
*.grsedlin.com
hourcoin.store
*.hourcoin.store
*.2020.humanz.space
*.androidlib.humanz.space
*.androlib.humanz.space
*.api.humanz.space
*.blackmass.humanz.space
humanz.space
*.humanz.space
*.internetscale.humanz.space
*.mail.humanz.space
*.meat.humanz.space
*.new.humanz.space
*.nord.humanz.space
*.onepda.humanz.space
*.projects.humanz.space
*.puzzaks.humanz.space
*.star.humanz.space
instigence.com
*.instigence.com
*.admin.joester.com
*.app.joester.com
*.fd5464ba-2d70-4a77-aed1-e164f25deceb.joester.com
joester.com
*.joester.com
*.login.joester.com
*.mail.joester.com
*.ww38.joester.com
*.www.joester.com
lifeinsurance373188.icu
*.lifeinsurance373188.icu
lifeinsurance872322.icu
*.lifeinsurance872322.icu
*.facebook.maspo.info
maspo.info
*.maspo.info
nursingjobs874258.icu
*.nursingjobs874258.icu
onlinewholesalersinsouthafrica474872.icu
*.onlinewholesalersinsouthafrica474872.icu
rentmycarvan.com.au
*.rentmycarvan.com.au
*.citrix.rivieraweymouth.co.uk
*.ftp.rivieraweymouth.co.uk
*.imap.rivieraweymouth.co.uk
rivieraweymouth.co.uk
*.rivieraweymouth.co.uk
subscriptionbox.life
*.subscriptionbox.life
Other domains in certificate