Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=bsfinance.ltd
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 31, 2026
Valid Until
May 01, 2026
81 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F1:2F:D8:DE:EC:E6:4C:F3:05:68:83:74:14:FB:E6:4A:EB:78:06:21:DF:C3:63:78:B0:19:48:7D:27:DF:CB:AF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
tiendaoficial.com
*.tiendaoficial.com
*.njwrieasajadmin.tiendaoficial.com
announces.com.au
*.announces.com.au
*.gameinstitute.announces.com.au
*.hcv.announces.com.au
*.wap.announces.com.au
*.zj.announces.com.au
beneficios.online
*.beneficios.online
*.consulta.beneficios.online
*.hostmaster.beneficios.online
*.www.beneficios.online
*.autodiscover.biketraining.co.uk
biketraining.co.uk
*.biketraining.co.uk
*.owa.biketraining.co.uk
bsfinance.ltd
*.bsfinance.ltd
dja.agency
*.dja.agency
*.cpcontacts.filmstream.ws
filmstream.ws
*.filmstream.ws
*.webdisk.filmstream.ws
gongyue.com
*.gongyue.com
*.xm.gongyue.com
*.get.healthcod.site
*.go.healthcod.site
healthcod.site
*.healthcod.site
*.mail.healthcod.site
*.pop.healthcod.site
*.he.kendallhunt.co
*.hostmaster.kendallhunt.co
*.k.kendallhunt.co
kendallhunt.co
*.kendallhunt.co
*.ns04.kendallhunt.co
*.ww38.kendallhunt.co
*.balinath.librery.com
*.jw.librery.com
librery.com
*.librery.com
*.ums.librery.com
*.ww16.librery.com
*.ww38.librery.com
*.awards.liveinfo.xyz
*.com.liveinfo.xyz
liveinfo.xyz
*.liveinfo.xyz
lvivguild.store
*.lvivguild.store
makitapromozioni.com
*.makitapromozioni.com
*.beta.mikrotakt.co
mikrotakt.co
*.mikrotakt.co
*.ww25.mikrotakt.co
proces.solutions
*.proces.solutions
reforma.chat
*.reforma.chat
rios.news
*.rios.news
*.api.tre.bet
tre.bet
*.tre.bet
vpcreative.studio
*.vpcreative.studio
*.jxdx.wjee.com
wjee.com
*.wjee.com
workingcommunity.com
*.workingcommunity.com
*.ww17.workingcommunity.com
*.bbb-www700sebacom-m.youjizz.info
*.bbs.youjizz.info
*.httpxa3xbawww.youjizz.info
*.httwww.youjizz.info
*.jp.youjizz.info
*.m.youjizz.info
*.mobile.youjizz.info
*.partner.youjizz.info
*.ww38.youjizz.info
youjizz.info
*.youjizz.info
Other domains in certificate