Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=elevated-horizons.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 05, 2026
Valid Until
May 06, 2026
84 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BF:9B:4F:22:6E:41:98:65:8A:20:B9:57:CD:76:29:3B:F2:8D:67:A1:46:8A:2C:07:A0:BC:7C:AE:67:CD:25:C8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
everspicy.com
*.everspicy.com
0288bet.xyz
*.0288bet.xyz
07177.loan
*.07177.loan
072749.club
*.072749.club
10400.loan
*.10400.loan
13111kk.com
*.13111kk.com
cukrg.app
*.cukrg.app
dazzlingdayweddings.beauty
*.dazzlingdayweddings.beauty
dcils.com
*.dcils.com
defai.tips
*.defai.tips
deliusafood.com
*.deliusafood.com
deyow.net
*.deyow.net
digitalartists.it
*.digitalartists.it
dijitaalgelir.com
*.dijitaalgelir.com
disruptiveproject.it
*.disruptiveproject.it
divinemargherita.com
*.divinemargherita.com
dizizone2.com
*.dizizone2.com
dk7bet.club
*.dk7bet.club
dlbbk.com
*.dlbbk.com
dlpmwtiy.biz
*.dlpmwtiy.biz
dukeisback.com
*.dukeisback.com
dutyfreezone.it
*.dutyfreezone.it
e5465131.vip
*.e5465131.vip
eartmovingworldwide.xyz
*.eartmovingworldwide.xyz
ecommerce-ch-4196.buzz
*.ecommerce-ch-4196.buzz
eden-life.com
*.eden-life.com
edjecast.com
*.edjecast.com
egpjpmania.vip
*.egpjpmania.vip
elevated-horizons.com
*.elevated-horizons.com
elysiumautotop.com
*.elysiumautotop.com
en-en-en-primera.com
*.en-en-en-primera.com
endlesshorizonspace.com
*.endlesshorizonspace.com
eo8u6e00ylnv0ft.top
*.eo8u6e00ylnv0ft.top
exeterone.com
*.exeterone.com
f5190.top
*.f5190.top
f64539120.com
*.f64539120.com
f64839413.com
*.f64839413.com
familyvacationplans.xyz
*.familyvacationplans.xyz
fantasticgardeningteam.live
*.fantasticgardeningteam.live
feigeliaotian.com
*.feigeliaotian.com
fenix-horizon.mobi
*.fenix-horizon.mobi
fenix-vision.live
*.fenix-vision.live
fenixenlor.digital
*.fenixenlor.digital
firstshotz.com
*.firstshotz.com
fitnesscompassjourney.xyz
*.fitnesscompassjourney.xyz
Other domains in certificate