DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=duetsch.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 04, 2026
Valid Until
May 05, 2026 87 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7B:6E:47:9B:91:35:41:B7:54:11:B0:70:10:B5:3A:BF:1D:AC:91:65:32:B5:C6:96:1F:31:BE:BE:42:6D:DE:D7
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
colsan.it *.colsan.it

Other domains in certificate

cityhoki.com *.cityhoki.com
cloud-call-918277100.click *.cloud-call-918277100.click
tubidy.com.bz *.tubidy.com.bz
comenuovo.it *.comenuovo.it
copters.it *.copters.it
cosifannotutti.it *.cosifannotutti.it
covidtests.it *.covidtests.it
d0e2rl4eerp2.com *.d0e2rl4eerp2.com
dak69.top *.dak69.top
decoraciones.it *.decoraciones.it
diverseissues-in-highered-subscriptions.com *.diverseissues-in-highered-subscriptions.com
divertire.it *.divertire.it
duetsch.com *.duetsch.com *.hostmaster.duetsch.com
fgtco.net *.fgtco.net
msrmd.com *.msrmd.com *.rds.msrmd.com
pedneault.com *.pedneault.com *.ww1.pedneault.com *.ww17.pedneault.com *.ww38.pedneault.com
playstaioncheats.com *.playstaioncheats.com *.portal.playstaioncheats.com
rqmia.com *.rqmia.com
sancz.net *.sancz.net
savethedolphins.it *.savethedolphins.it
scjdxn.com *.scjdxn.com
twghdb.me *.twghdb.me
u4q6f5d.cyou *.u4q6f5d.cyou
undervalue.it *.undervalue.it
unionepopolare.it *.unionepopolare.it
urantia.it *.urantia.it
usdcoinreserve.com *.usdcoinreserve.com
viamarina.it *.viamarina.it
vnggamers.com *.vnggamers.com
weekendplan.it *.weekendplan.it
winetoursandiego.com *.winetoursandiego.com
workphone.it *.workphone.it
xn--8qr042hrkc33i91t.com *.xn--8qr042hrkc33i91t.com
y2kculture.com *.y2kculture.com
*.old.y2mate-guru.com *.vpn.y2mate-guru.com *.ww1.y2mate-guru.com *.ww25.y2mate-guru.com *.ww38.y2mate-guru.com *.www.y2mate-guru.com y2mate-guru.com *.y2mate-guru.com
youdogs.it *.youdogs.it
ytavsp276.com *.ytavsp276.com
ztgroup.co *.ztgroup.co