DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=alsaadflower.it.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 29, 2026
Valid Until
April 29, 2026 79 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B7:B1:6C:EF:51:63:3B:CC:38:64:BA:0D:63:4C:7E:1D:4D:D4:D7:FC:F7:A2:CE:4C:D9:C6:3F:3F:93:5C:DF:69
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
bronav.com *.bronav.com

Other domains in certificate

bettingmidwest.com *.bettingmidwest.com
bia2sv.in *.bia2sv.in
bibleindia.in *.bibleindia.in
bidfaq.com *.bidfaq.com
bitporno.sx *.bitporno.sx
blueberriesorganic.com *.blueberriesorganic.com
bolly4u.in *.bolly4u.in
car4sale.tw *.car4sale.tw
carboncorner.com *.carboncorner.com
cbseacademics.in *.cbseacademics.in
cheapname.cc *.cheapname.cc
citespot.com *.citespot.com
clcknads.pro *.clcknads.pro
workcard.com.cn *.workcard.com.cn
craigslistcars.com *.craigslistcars.com
custody.cc *.custody.cc
cwlmb.gdn *.cwlmb.gdn
decentralization.group *.decentralization.group
diplomru2.top *.diplomru2.top
domekit.cc *.domekit.cc
dontorrent.cloud *.dontorrent.cloud
downloadhub.forex *.downloadhub.forex
dramaq.tw *.dramaq.tw
ejzz.tw *.ejzz.tw
er.vc *.er.vc
espanol-ingles.com.mx *.espanol-ingles.com.mx *.random.espanol-ingles.com.mx
exploit.me *.exploit.me
expohost.com *.expohost.com
exponentialroi.com *.exponentialroi.com
expressedgedelivercompany.com *.expressedgedelivercompany.com
fmovie.sc *.fmovie.sc
alsaadflower.it.com *.alsaadflower.it.com *.www.alsaadflower.it.com
sorte.vc *.sorte.vc
tahoeinnthepines.com *.tahoeinnthepines.com
tmsg.net *.tmsg.net
vantagebusinessbrokers.com *.vantagebusinessbrokers.com
vintrava.com *.vintrava.com
vision-pro-wireless.com *.vision-pro-wireless.com
wokkahcrew.com *.wokkahcrew.com
xn--69-uqi5d8aa2ec7c1e3b6gre.com *.xn--69-uqi5d8aa2ec7c1e3b6gre.com
yayabeachandjunglepark.com *.yayabeachandjunglepark.com
zahramas.com *.zahramas.com
zonadosjogos.com *.zonadosjogos.com