DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=escritosromanticos.xyz
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 31, 2026
Valid Until
May 01, 2026 81 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7D:6C:FA:09:E4:A3:0F:78:03:BC:6E:13:CE:32:BE:DA:6A:BC:00:25:0E:37:23:7C:6C:9E:C3:38:4B:23:E8:97
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
banconet.com *.banconet.com *.mailer.banconet.com

Other domains in certificate

boomerangbetfr.com *.boomerangbetfr.com *.dev.boomerangbetfr.com
column.tv *.column.tv *.m.column.tv
escritosromanticos.xyz *.escritosromanticos.xyz *.sitemaps.escritosromanticos.xyz
jangpung.com *.jangpung.com *.mail.jangpung.com *.support.jangpung.com *.wildcard.jangpung.com *.www.jangpung.com
jianglei.com *.jianglei.com *.members.jianglei.com *.vpn1.jianglei.com
*.desktop.joanfabrics.com joanfabrics.com *.joanfabrics.com *.terminal.joanfabrics.com
mestanza.com *.mestanza.com *.webvpn.mestanza.com
nmfet.bid *.nmfet.bid
onsiteforum.click *.onsiteforum.click
perfectweddingmoments.beauty *.perfectweddingmoments.beauty
porkbung.com *.porkbung.com
prostitute.to *.prostitute.to
reisters.com *.reisters.com
romanticweddingsinspo.beauty *.romanticweddingsinspo.beauty
sdvbm.net *.sdvbm.net
*.panvpn.segura.com segura.com *.segura.com
shao.net *.shao.net *.sslvpn.shao.net
sqlnatdev.com *.sqlnatdev.com
topwinner012.com *.topwinner012.com
trigifyserviceprojects.com *.trigifyserviceprojects.com
tuagg.net *.tuagg.net
ueda.xyz *.ueda.xyz
uniquevacationpaths.xyz *.uniquevacationpaths.xyz
vns378.cc *.vns378.cc
vns626.cc *.vns626.cc
wangi138.net *.wangi138.net
wangi69.com *.wangi69.com
www693595.com *.www693595.com
*.api.xiabb.chat *.proxy.xiabb.chat *.proxy2.xiabb.chat *.qiniu.xiabb.chat *.speed.xiabb.chat xiabb.chat *.xiabb.chat
yhgtr.net *.yhgtr.net
yklvt.academy *.yklvt.academy
yyds.academy *.yyds.academy
zeqto.net *.zeqto.net
zp279.com *.zp279.com