DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=new8821.top
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 07, 2026
Valid Until
May 08, 2026 89 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D2:EE:2B:E0:75:4F:41:04:09:57:33:B3:FC:00:74:0F:16:D1:6B:70:E5:95:02:12:BA:FE:69:57:B8:68:66:80
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
auctopi.com *.auctopi.com *.admin.auctopi.com *.api.auctopi.com *.assets.auctopi.com *.cloud.auctopi.com *.demo.auctopi.com *.dev.auctopi.com *.members.auctopi.com *.mta.auctopi.com *.rds.auctopi.com *.rdweb.auctopi.com *.remote.auctopi.com *.shop.auctopi.com *.test.auctopi.com *.webmail.auctopi.com *.www.auctopi.com *.zpnwfbecavrds.auctopi.com

Other domains in certificate

*.admin.ahijada.com ahijada.com *.ahijada.com *.api.ahijada.com *.assets.ahijada.com *.cunole.ahijada.com *.demo.ahijada.com *.m.ahijada.com *.mailer.ahijada.com *.mailhost.ahijada.com *.mta-sts.ahijada.com *.my.ahijada.com *.spam.ahijada.com *.staging.ahijada.com *.ww38.ahijada.com *.ww41.ahijada.com *.ww5.ahijada.com
*.33b01be9-8322-4b37-867a-eb75533e88ef.ahram.digital ahram.digital *.ahram.digital *.assets.ahram.digital *.gmuhicomune.ahram.digital *.jgqtdmembers.ahram.digital *.msk.ahram.digital *.slcfudemo.ahram.digital
javmienphi.live *.javmienphi.live *.vpn.javmienphi.live
*.lep-oa-api.miwoxun.com *.lep-oa.miwoxun.com *.linux-bt-login.miwoxun.com miwoxun.com *.miwoxun.com
*.kwid9.new8821.top new8821.top *.new8821.top *.nslow.new8821.top
*.lime.tonantzinpreschool.org tonantzinpreschool.org *.tonantzinpreschool.org
*.kwid9.ux78s.top ux78s.top *.ux78s.top
*.mp7tf.vibetplay.xyz vibetplay.xyz *.vibetplay.xyz
*.access.xn--fiqs8sda3r.com *.connect.xn--fiqs8sda3r.com *.edu.xn--fiqs8sda3r.com *.gp.xn--fiqs8sda3r.com *.home.xn--fiqs8sda3r.com *.lc1.xn--fiqs8sda3r.com *.m.xn--fiqs8sda3r.com *.mta-sts.xn--fiqs8sda3r.com *.portal.xn--fiqs8sda3r.com *.rd.xn--fiqs8sda3r.com *.rdp.xn--fiqs8sda3r.com *.rds.xn--fiqs8sda3r.com *.remote.xn--fiqs8sda3r.com *.remoteapp.xn--fiqs8sda3r.com *.shop.xn--fiqs8sda3r.com *.sitemaps.xn--fiqs8sda3r.com *.store.xn--fiqs8sda3r.com *.tfdloremoto.xn--fiqs8sda3r.com *.vpn1.xn--fiqs8sda3r.com *.vpn2.xn--fiqs8sda3r.com *.wap.xn--fiqs8sda3r.com *.ww.xn--fiqs8sda3r.com xn--fiqs8sda3r.com *.xn--fiqs8sda3r.com *.zklhbportal.xn--fiqs8sda3r.com