Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=decoratingtips.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 09, 2026
Valid Until
May 10, 2026 82 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D1:5E:CD:C9:5D:D2:A3:80:A3:8B:2B:66:F9:76:83:0D:7F:A7:67:E0:14:80:B4:F5:31:94:61:CC:11:95:2E:84
Alternative Names

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

88 domains
decoratingtips.it *.decoratingtips.it *.superset.decoratingtips.it

Other domains in certificate

43983.vip *.43983.vip *.api.43983.vip
4s99.me *.4s99.me *.photos01.4s99.me *.photos02.4s99.me *.photos03.4s99.me *.photos04.4s99.me *.photos05.4s99.me
789betvole.com *.789betvole.com *.m.789betvole.com
advertises.org *.advertises.org *.random.advertises.org *.torch.advertises.org
beaconrv.com *.beaconrv.com *.seascapescottages.beaconrv.com
botpay.me *.botpay.me *.crm.botpay.me
buildyouragency.net *.buildyouragency.net
circulars.com.au *.circulars.com.au
crscapital.click *.crscapital.click
*.api.deepseek-portugues.com *.cpanel.deepseek-portugues.com deepseek-portugues.com *.deepseek-portugues.com *.ftp.deepseek-portugues.com *.localhost.deepseek-portugues.com *.mail.deepseek-portugues.com *.rd.deepseek-portugues.com *.rds.deepseek-portugues.com *.rdweb.deepseek-portugues.com *.remote.deepseek-portugues.com *.webdisk.deepseek-portugues.com
dresseduptee.com *.dresseduptee.com *.giveaway.dresseduptee.com
embezzlementteddy.com *.embezzlementteddy.com
factoryoutletsshop.com *.factoryoutletsshop.com
*.bpf.floortoyourdoor.co.uk *.bpframes.floortoyourdoor.co.uk *.buycarpetsonline.floortoyourdoor.co.uk floortoyourdoor.co.uk *.floortoyourdoor.co.uk *.llawns.floortoyourdoor.co.uk *.lovelylawns.floortoyourdoor.co.uk
joepro.co *.joepro.co *.www.joepro.co
laeje.com *.laeje.com
luigisramen.com *.luigisramen.com *.ww25.luigisramen.com *.www.luigisramen.com
mobeln.space *.mobeln.space
naberco.net *.naberco.net
*.demo.obuoba.com obuoba.com *.obuoba.com *.rnthpshop.obuoba.com
psychologycircumvent.com *.psychologycircumvent.com
*.mail.queenstownmall.com queenstownmall.com *.queenstownmall.com *.ww25.queenstownmall.com
slovapatsana.online *.slovapatsana.online
swingtoeswinds.com *.swingtoeswinds.com
*.stop.ylianvin.space ylianvin.space *.ylianvin.space