SSL Certificate Analysis for btnull.si - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=30237672.top

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 01, 2026

Valid Until

May 02, 2026 78 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

EE:91:79:31:C1:58:E7:A9:F6:D8:A4:4A:3B:33:36:B9:FE:28:2F:B7:5F:2E:09:33:09:62:6B:8F:24:43:EF:53

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

btnull.si *.btnull.si

Other domains in certificate

28923.locker *.28923.locker

30237672.top *.30237672.top

32492004.top *.32492004.top

42971.locker *.42971.locker

46459.locker *.46459.locker

55541.locker *.55541.locker

59639.one *.59639.one

59656.one *.59656.one

5kgame.love *.5kgame.love

62b19z1k.top *.62b19z1k.top

726265.club *.726265.club

87558aae.vip *.87558aae.vip

89701.loan *.89701.loan

909385.vip *.909385.vip

91nms33.top *.91nms33.top

9991bet.love *.9991bet.love

acoxf.forex *.acoxf.forex

betwinner3-brazil.com *.betwinner3-brazil.com

dentalassociates.ca *.dentalassociates.ca

e3hxt4i.top *.e3hxt4i.top

e9zmqzyz.top *.e9zmqzyz.top

fineartportfolio.co.za *.fineartportfolio.co.za

fmovies.wf *.fmovies.wf

funrich.cz *.funrich.cz

game90.pro *.game90.pro

gftrf.pro *.gftrf.pro

goobet.pro *.goobet.pro

gwsecj.pro *.gwsecj.pro

gyive.tv *.gyive.tv

h35552.co *.h35552.co

hcmxoe.bid *.hcmxoe.bid

luxprivat.lu *.luxprivat.lu

merletgaarde32.nl *.merletgaarde32.nl

mhdhcs.pro *.mhdhcs.pro

monportail-masante.info *.monportail-masante.info

neuro-spine.com *.neuro-spine.com

okmpl.gdn *.okmpl.gdn

pgonm.cc *.pgonm.cc

pjrva.gdn *.pjrva.gdn

qsrcs.net *.qsrcs.net

readcomics.li *.readcomics.li

rgt304.com *.rgt304.com

rh533.top *.rh533.top

service-client.lu *.service-client.lu