DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=123820.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 09, 2026
Valid Until
May 10, 2026 88 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BE:AE:D5:73:CD:AD:7E:81:80:5E:06:45:9D:07:07:27:05:9D:64:BA:47:3C:4E:36:AE:4E:A5:FA:2C:74:98:58
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
hederanft.com *.hederanft.com *.api.hederanft.com *.blog.hederanft.com *.demo.hederanft.com *.ftp.hederanft.com *.m.hederanft.com *.mail.hederanft.com *.portal.hederanft.com *.prod.hederanft.com *.rustore.hederanft.com *.staging.hederanft.com

Other domains in certificate

123820.com *.123820.com *.api.123820.com *.dev.123820.com *.redash.123820.com *.smtps.123820.com
*.0cba2ba8-442f-4566-9446-2f6669cd59ac.72557755.com *.1636cb44-859f-401e-94c8-c44da890ed6c.72557755.com *.4fb25032-3291-4201-8ed9-b052703d5aea.72557755.com 72557755.com *.72557755.com *.admin.72557755.com *.app.72557755.com *.beta.72557755.com *.intranet.72557755.com *.portal.72557755.com *.rd.72557755.com *.rds.72557755.com *.rdweb.72557755.com *.rtal.72557755.com *.store.72557755.com *.vkhedportal.72557755.com *.www.72557755.com
bizzinez.com *.bizzinez.com *.rd.bizzinez.com
*.bi.hibe.it *.cloud.hibe.it hibe.it *.hibe.it
longwooddermatology.com *.longwooddermatology.com *.sitemap.longwooddermatology.com *.staging.longwooddermatology.com
*.137e641c-ee3a-4f93-88f5-cc0f05300942.magneticjewelryetc.com *.api.magneticjewelryetc.com *.dcbsvcrm.magneticjewelryetc.com *.dev.magneticjewelryetc.com magneticjewelryetc.com *.magneticjewelryetc.com *.mail.magneticjewelryetc.com *.old.magneticjewelryetc.com *.sitemaps.magneticjewelryetc.com *.stg.magneticjewelryetc.com *.v2.magneticjewelryetc.com *.wildcard.magneticjewelryetc.com
*.hostmaster.silverforcash.com *.rustore.silverforcash.com silverforcash.com *.silverforcash.com *.sitemap.silverforcash.com *.sitemaps.silverforcash.com *.ww1.silverforcash.com *.ww17.silverforcash.com
*.changfengxian.smokinstyle.com *.feichengshi.smokinstyle.com *.guangdong.smokinstyle.com *.gucheng.smokinstyle.com *.hanchuanshi.smokinstyle.com *.jiedongxian.smokinstyle.com *.linghaishi.smokinstyle.com *.linqingshi.smokinstyle.com *.linyingxian.smokinstyle.com *.map.smokinstyle.com *.quzhoushi.smokinstyle.com smokinstyle.com *.smokinstyle.com *.suilingxian.smokinstyle.com *.tianyangxian.smokinstyle.com *.wildcard.smokinstyle.com *.wuweishi.smokinstyle.com *.wuzhixian.smokinstyle.com *.ww12.smokinstyle.com *.xiaoganshi.smokinstyle.com *.yangxixian.smokinstyle.com *.yunlongxian.smokinstyle.com *.zhanjiangshi.smokinstyle.com