DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=universeastext.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 11, 2026
Valid Until
April 11, 2026 58 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0E:A5:DF:E5:F5:CB:3B:98:BD:01:9C:7B:EB:11:F4:E9:23:CE:8B:68:B3:1D:A9:84:C7:8C:D8:E7:97:12:88:7B
Alternative Names
87 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

87 domains
coolsocks.com.au *.coolsocks.com.au

Other domains in certificate

2020optical.org *.2020optical.org
98ddos.com *.98ddos.com
acualia.es *.acualia.es *.apemsa.acualia.es *.emabesa.acualia.es *.oficinavirtual.acualia.es *.virtual.acualia.es *.ww25.acualia.es
american-politics-group-uk.net *.american-politics-group-uk.net
authcode.au *.authcode.au
booksussi.com *.booksussi.com *.random.booksussi.com
crownpizzacranbourne.com.au *.crownpizzacranbourne.com.au
damkrebs.de *.damkrebs.de
digitali.xyz *.digitali.xyz
eiweissbroetchen.at *.eiweissbroetchen.at
energyadvantage.com.au *.energyadvantage.com.au
gainupproducts.com *.gainupproducts.com
giftforward.co *.giftforward.co
home-insurance.us *.home-insurance.us
icaes2008.org *.icaes2008.org
identalinstalaciones.com *.identalinstalaciones.com
lapastorasevilla.com *.lapastorasevilla.com
*.backup.makijaz.com *.mail.makijaz.com makijaz.com *.makijaz.com *.random.makijaz.com *.wildcard.makijaz.com *.ww1.makijaz.com *.ww16.makijaz.com *.www.makijaz.com
monkeysmoke.eu *.monkeysmoke.eu
mrlocal.co.nz *.mrlocal.co.nz
*.forum.nghetienganh.com *.forums.nghetienganh.com *.help.nghetienganh.com *.luyennghetienganh.nghetienganh.com nghetienganh.com *.nghetienganh.com *.wildcard.nghetienganh.com *.ww16.nghetienganh.com *.ww17.nghetienganh.com
nostalgieart.de *.nostalgieart.de
pornthub.com *.pornthub.com *.ww25.pornthub.com
senatorstack.com *.senatorstack.com
skinnypayment.com *.skinnypayment.com
svenska1.com *.svenska1.com
tradesmanjob.com.au *.tradesmanjob.com.au
universeastext.com *.universeastext.com
verticalblinds.de *.verticalblinds.de
vitalydesign.click *.vitalydesign.click
xn--eiweissbrtchen-3pb.at *.xn--eiweissbrtchen-3pb.at
xn--underwsche-v5a.de *.xn--underwsche-v5a.de