SSL Certificate Analysis for com.fixprice.co - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=24767.loan

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

March 11, 2026

Valid Until

June 09, 2026 54 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

24:8A:D3:CF:71:7B:B0:C7:77:BF:BA:F5:76:92:1E:4E:6D:79:18:25:7D:F0:44:0B:7A:50:DF:12:1A:55:3D:52

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

fixprice.co *.fixprice.co

Other domains in certificate

24767.loan *.24767.loan

26855834.vip *.26855834.vip

53196.help *.53196.help

552bet.bet *.552bet.bet

57737.cam *.57737.cam

742yh.com *.742yh.com

762983.top *.762983.top

813890.vip *.813890.vip

815.lol *.815.lol

890695.vip *.890695.vip

97380.co *.97380.co

98671.loan *.98671.loan

987255.vip *.987255.vip

a002cst.top *.a002cst.top

anfrnaz1170.vip *.anfrnaz1170.vip

apostaganhas.bet *.apostaganhas.bet

axio88d.homes *.axio88d.homes

ayuahzh512.vip *.ayuahzh512.vip

burritomexicanrestaurant.com *.burritomexicanrestaurant.com

cedargrillexpress.com *.cedargrillexpress.com

chinacasatogo.com *.chinacasatogo.com

chinesemassagenorwich.co.uk *.chinesemassagenorwich.co.uk

ckzhhar1056.vip *.ckzhhar1056.vip

cyberflex.co *.cyberflex.co

cybersoc.co *.cybersoc.co

dnightwish.xyz *.dnightwish.xyz

driveguard.pro *.driveguard.pro

elin888.bet *.elin888.bet

elvallematthews.com *.elvallematthews.com

fumble.pro *.fumble.pro

goyooz.one *.goyooz.one

gqxufcigfkwogoymdz.com *.gqxufcigfkwogoymdz.com

javaburnn-burnn.com *.javaburnn-burnn.com

laautenticacharlotte.com *.laautenticacharlotte.com

lovhvxtwqenw0.com *.lovhvxtwqenw0.com

medeiavlao.com *.medeiavlao.com

mesinmpoku.com *.mesinmpoku.com

miraespaceboutique.com *.miraespaceboutique.com

mspe3-01.com *.mspe3-01.com

papasp42.top *.papasp42.top

taqueriajuquilita.com *.taqueriajuquilita.com

ubcobdtyegplfgaqtwfn.com *.ubcobdtyegplfgaqtwfn.com

ugadnbot.com *.ugadnbot.com

wellnessbargains.shop *.wellnessbargains.shop