SSL Certificate Analysis for bokepgratis.com - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=bokepgratis.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 12, 2026

Valid Until

May 13, 2026 88 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

B3:D0:F5:4C:49:44:CF:E1:10:4B:E1:AF:36:99:26:EE:19:04:1E:25:B0:D1:86:FF:9A:DF:4A:5E:24:97:C8:4D

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

bokepgratis.com *.bokepgratis.com *.access.bokepgratis.com *.admin.bokepgratis.com *.api.bokepgratis.com *.app.bokepgratis.com *.apps.bokepgratis.com *.blog.bokepgratis.com *.click.bokepgratis.com *.cloud.bokepgratis.com *.demo.bokepgratis.com *.dokzdexchangecorp.bokepgratis.com *.exchangecorp.bokepgratis.com *.gateway.bokepgratis.com *.hostmaster.bokepgratis.com *.m.bokepgratis.com *.mail.bokepgratis.com *.portal.bokepgratis.com *.rdp.bokepgratis.com *.rds.bokepgratis.com *.rds1.bokepgratis.com *.rdweb.bokepgratis.com *.remote.bokepgratis.com *.ruhislsxzrexchangecorp.bokepgratis.com *.shop.bokepgratis.com *.sitemaps.bokepgratis.com *.test.bokepgratis.com *.ts.bokepgratis.com *.tv.bokepgratis.com *.vpn.bokepgratis.com *.ww25.bokepgratis.com

Other domains in certificate

*.api.arimura.com arimura.com *.arimura.com *.dev.arimura.com *.forums.arimura.com *.redbusprimarydns.arimura.com *.rustore.arimura.com *.smtp.arimura.com *.test.arimura.com *.ww1.arimura.com *.ww11.arimura.com *.ww16.arimura.com *.ww38.arimura.com *.www.arimura.com

*.access.vigilia.com *.anyconnect.vigilia.com *.api.vigilia.com *.att.vigilia.com *.autodiscover.vigilia.com *.cisapp.vigilia.com *.clientesvpn.vigilia.com *.connect.vigilia.com *.desktop.vigilia.com *.dev.vigilia.com *.em.vigilia.com *.email.vigilia.com *.gateway.vigilia.com *.gp.vigilia.com *.gps.vigilia.com *.hostmaster.vigilia.com *.hotspot.vigilia.com *.loja.vigilia.com *.mail.vigilia.com *.mobileconnect.vigilia.com *.officevpn.vigilia.com *.palovpn.vigilia.com *.portal.vigilia.com *.ra-vpn.vigilia.com *.rd.vigilia.com *.rds1.vigilia.com *.rdweb.vigilia.com *.remote.vigilia.com *.remoto.vigilia.com *.secure.vigilia.com *.ssl.vigilia.com *.studentsvpn.vigilia.com *.vdi.vigilia.com vigilia.com *.vigilia.com *.vpn.vigilia.com *.vpn2.vigilia.com *.vpngate.vigilia.com *.vpnssl.vigilia.com *.webmail.vigilia.com *.webvpn.vigilia.com *.ww16.vigilia.com *.ww17.vigilia.com *.ww25.vigilia.com *.ww38.vigilia.com