SSL Certificate Analysis for chromiumore.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=01071.blog

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 27, 2026

Valid Until

August 25, 2026 76 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

BA:81:F7:46:7A:F2:53:4A:E3:E0:13:86:5C:DA:20:ED:C8:10:72:8F:A5:04:6A:09:B3:8E:6F:62:8F:B0:F8:60

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

chromiumore.com *.chromiumore.com

Other domains in certificate

01071.blog *.01071.blog

01896.my *.01896.my

06303.pro *.06303.pro

07592.my *.07592.my

14200.blog *.14200.blog

168vb.cc *.168vb.cc

26954061.vip *.26954061.vip

2ha8x3hm8.cc *.2ha8x3hm8.cc

30749.town *.30749.town

39bet.co *.39bet.co

443432.xyz *.443432.xyz

45275.blog *.45275.blog

54cua.mom *.54cua.mom

56387.my *.56387.my

63701.my *.63701.my

83453.my *.83453.my

919.mom *.919.mom

act-hub-wales.co.uk *.act-hub-wales.co.uk

advizex.one *.advizex.one

advizexhq.com *.advizexhq.com

ajaxjerseys.com *.ajaxjerseys.com

alljewelryshop.com *.alljewelryshop.com

alprocl.com *.alprocl.com

anakrantau99.com *.anakrantau99.com *.web.anakrantau99.com

arikiholidays.com *.arikiholidays.com

bffgirls.com *.bffgirls.com

brandedpodcasting.com *.brandedpodcasting.com

burgundiesgully.com *.burgundiesgully.com

business-airline-417520911.click *.business-airline-417520911.click

c06x.shop *.c06x.shop

c8jf8o.cyou *.c8jf8o.cyou

chaisebernadetteholdings.com *.chaisebernadetteholdings.com

choralcologne.top *.choralcologne.top

christinawatersinteriordesign.com *.christinawatersinteriordesign.com

chwea.mom *.chwea.mom

coinscounter.vip *.coinscounter.vip

coinscounterc.com *.coinscounterc.com

dairlond.online *.dairlond.online

deal.rent *.deal.rent

defghij.top *.defghij.top

planet-88.net *.planet-88.net

planet88.tv *.planet88.tv

plugdata.io *.plugdata.io