Cached · just now
79/100 SECURITY SCORE

Certificate Information

Subject
CN=amazonpfs.co
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
December 29, 2025
Valid Until
March 29, 2026 31 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
49:FB:AB:8E:59:9E:80:AB:BA:96:EC:A7:27:92:52:65:14:36:D2:48:AC:BD:1D:09:CE:95:A3:F1:6F:9F:A4:69
Alternative Names

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

88 domains
compatible.au *.compatible.au

Other domains in certificate

91kgj.net *.91kgj.net
aiken.au *.aiken.au
amazonpfs.co *.amazonpfs.co *.ww25.amazonpfs.co
bestfatburnersforwomenover40.us *.bestfatburnersforwomenover40.us
bristolrenaissance.com *.bristolrenaissance.com
celebritytattoos.com *.celebritytattoos.com
designeminence.co *.designeminence.co
eveadambodybutter.com *.eveadambodybutter.com
firstnatioanlcc.com *.firstnatioanlcc.com *.random.firstnatioanlcc.com *.ww38.firstnatioanlcc.com
heihu.info *.heihu.info
horizondart.net *.horizondart.net
houseofhoundsshoes.com *.houseofhoundsshoes.com *.ww16.houseofhoundsshoes.com *.ww38.houseofhoundsshoes.com
intellectualpropertyaustralia.com.au *.intellectualpropertyaustralia.com.au
juanmarine.com *.juanmarine.com *.mowlex.juanmarine.com
kallista.au *.kallista.au
kamona.store *.kamona.store
ktown.store *.ktown.store *.mx.ktown.store
legalsoft.com.au *.legalsoft.com.au
*.com.mvnk.com *.mail.mvnk.com mvnk.com *.mvnk.com
positivokeys.com *.positivokeys.com *.ww38.positivokeys.com
primerinpacto.com *.primerinpacto.com *.random.primerinpacto.com
realberksbeacon.com *.realberksbeacon.com
rooflounge.com *.rooflounge.com
streamtvhub.com *.streamtvhub.com
*.af.sugarmommas.org *.affiliate.sugarmommas.org sugarmommas.org *.sugarmommas.org *.ww2.sugarmommas.org *.www.sugarmommas.org *.wwww.sugarmommas.org
thesreameast.st *.thesreameast.st
*.api-ny-node1.thirsty.io *.api-ny.thirsty.io *.api.thirsty.io *.hostmaster.thirsty.io thirsty.io *.thirsty.io
tokyoweird.com *.tokyoweird.com *.www.tokyoweird.com
u8.au *.u8.au
womensphil.org *.womensphil.org
xn--oi2bw1pfmepobl86a.com *.xn--oi2bw1pfmepobl86a.com
*.sitemap.yallaeshtry.store yallaeshtry.store *.yallaeshtry.store