Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=xn--lnene-mra.no
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 18, 2026
Valid Until
April 18, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
00:42:20:4D:30:57:AC:BB:2F:37:63:43:14:82:60:26:B9:F3:B1:84:1D:04:0E:7D:A6:F3:50:75:62:30:48:4A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
auth.g-rom.net
share.2go.im
staging.auth.agentnoon.com
laboratorium.agrotest.pl
tw.signage.aigens.com
viewer.stg.aiinsurance.io
www.alma2da.com
almasum.dev
apenergy.pl
www.apenergy.pl
blog.askdigsby.com
www.askdigsby.com
app.astroworx.de
sapp.avplat.com
exam.awarely.ro
arenberg.azfalte.com
fleet.azfalte.com
bangang-fokam.com
app-prod.basehq.com
beeai.cz
www.beeai.cz
vizio.blackdove.io
sales.bluewindowltd.com
boomerangmaker.app
www.bt-coding.com
www.buildo.sk
cantaio.com
social.cbdefi.site
web-staging.chippercash.com
lesotholc.co.ls
admin.cokencode.com.br
staging-1.commonowner.com
www.compare-goldinvesting.com
feature-requests.coophi.com
alphai-lp.copyweb.cz
xn--projetofnix-ubb.cubos.io
docs.dev-crazygames.be
www.dharasl.com
resume.edwinhoksberg.nl
www.eucasec.cl
www.freszkids.pl
santa.games235.com
shooting.games235.com
glorytale.fr
www.gooddystrybucja.pl
growy.site
hoaready.com
api.houl.app
interviewclear.com
www.janniemczyk.pl
gamecloud.jo3.org
panel.kouple.co
www.legalarchivist.com
ooo.staging.personal.lifebrand.life
yuriy-infinite-invites.staging.personal.lifebrand.life
www.michele-gentile.com
mindrail.ai
waitlist.myloyaltea.com
app.nugestao.com.br
www.onscene.pk
oromi.in
aractakip.pancar.io
pancar.io
pancargames.com
www.pebblejournal.com
audyt.piekarniaklos.pl
posrednictwo.pracy.org
www.posrednictwo.pracy.org
purplebook.ng
app.9810010.qzz.io
ilnadhost.qzz.io
torty.sainer.pl
samuitm.site
dex.sepezh.ooo
share.smartsolutions.ly
api-arc.southstatecorrespondent.com
www.sportiq24.com
www.stemshopkenya.com
steveapps.co
sutraops.com
pingpong.traffic-builders.com
tafeltennis.traffic-builders.com
unityriskresearch.com
dev.wali.co
staging.kaamelott2.webedia.tech
staging.wow.webedia.tech
billing.wonderschool.com
www.wyjazdycypr.pl
xn--80aj6acdgc.xn--90ais
xn--80aqfg1a.xn--80asehdb
www.xn--api-r49dj1s3vtlwpxy1bgu2c.com
www.xn--dittk-vra.dk
xn--dittk-vra.dk
admin.xn--hy1bm6gu0n8jf.com
www.xn--iakilanda-l6a.dev
xn--iakilanda-l6a.dev
xn--lnene-mra.no
xn--nckgz9qc8c.jp
staging.yuru28.com
yuru28.com
Other domains in certificate