SSL Certificate Analysis for climber.com.au - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=wedudd.xyz

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

April 13, 2026

Valid Until

July 12, 2026 36 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

C1:69:4E:AB:BE:ED:0E:07:34:4E:3B:B6:61:F3:CA:E5:A1:14:24:C5:05:AA:96:3C:12:2C:AE:48:2F:56:9C:85

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

climber.com.au *.climber.com.au

Other domains in certificate

1county.com *.1county.com *.admin.1county.com *.mobile.1county.com *.mx.1county.com *.site.1county.com *.support.1county.com

a187crxy.top *.a187crxy.top *.abc.a187crxy.top

apple-id.de *.apple-id.de *.deww25.apple-id.de *.hostmaster.apple-id.de *.k.apple-id.de

*.9j.blackchiney.com blackchiney.com *.blackchiney.com *.mail.blackchiney.com *.random.blackchiney.com *.ww1.blackchiney.com *.ww25.blackchiney.com

cinstreaming.com *.cinstreaming.com *.mx.cinstreaming.com

dndbeyond.co *.dndbeyond.co *.games-stg.dndbeyond.co *.hostmaster.dndbeyond.co *.ww25.dndbeyond.co *.ww38.dndbeyond.co

*.dev.etch.it etch.it *.etch.it

fisher.org *.fisher.org *.hammes.fisher.org *.howe.fisher.org *.kathleen.fisher.org *.pacocha.fisher.org *.schiller.fisher.org

*.admin.for-sure.studio *.co.for-sure.studio for-sure.studio *.for-sure.studio *.mail.for-sure.studio *.portal.for-sure.studio

gpf.com.pl *.gpf.com.pl

healthcj.com *.healthcj.com

iict.ca *.iict.ca *.mail.iict.ca *.www.iict.ca

istanaimpian2.com *.istanaimpian2.com *.link.istanaimpian2.com

ivecoelectric.online *.ivecoelectric.online

kizikfreedom.com *.kizikfreedom.com

*.2.legislatorwhipless.pro *.4.legislatorwhipless.pro *.5.legislatorwhipless.pro *.8.legislatorwhipless.pro legislatorwhipless.pro *.legislatorwhipless.pro

louisvillepolice.org *.louisvillepolice.org *.ww25.louisvillepolice.org

*.circulo.sienteteradiante.com sienteteradiante.com *.sienteteradiante.com

*.rustore.tellynews.pro tellynews.pro *.tellynews.pro

*.588f942b-4c9c-4f5f-a648-4cf741da31ae.wedudd.xyz *.cpanel.wedudd.xyz *.cpcalendars.wedudd.xyz *.health.wedudd.xyz wedudd.xyz *.wedudd.xyz *.ww25.wedudd.xyz

*.ww25.yarning.com.au *.ww38.yarning.com.au yarning.com.au *.yarning.com.au