Open
Cached
·
just now
91/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=biki.exchange
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 25, 2026
Valid Until
August 23, 2026
87 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E6:D9:DF:99:9B:3E:38:45:F7:E1:EB:DC:F7:CA:DD:D2:3B:32:6D:EC:3A:74:F5:21:71:93:D8:0D:26:80:2E:8B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=31536000; includeSubDomains; preload
X-Frame-Options
Excellent
DENY
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin
Permissions-Policy
Present
geolocation=(), midi=(), sync-xhr=(); +6 more
Recommendations
- • Add Content-Security-Policy header to prevent XSS attacks
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
eacha.de
*.eacha.de
biki.exchange
*.biki.exchange
canvas.pink
*.canvas.pink
cfr.fish
*.cfr.fish
charhutdavie.com
*.charhutdavie.com
corsair.engineering
*.corsair.engineering
*.3j96zi.creativepaintwork.click
*.api.creativepaintwork.click
*.app.creativepaintwork.click
*.autoconfig.creativepaintwork.click
*.cdn.creativepaintwork.click
*.cms.creativepaintwork.click
*.cpanel.creativepaintwork.click
creativepaintwork.click
*.creativepaintwork.click
*.demo.creativepaintwork.click
*.development.creativepaintwork.click
*.docs.creativepaintwork.click
*.game.creativepaintwork.click
*.hostmaster.creativepaintwork.click
*.info.creativepaintwork.click
*.ipv6.creativepaintwork.click
*.local.creativepaintwork.click
*.mailx.creativepaintwork.click
*.media.creativepaintwork.click
*.mta-sts.creativepaintwork.click
*.mx.creativepaintwork.click
*.mx0.creativepaintwork.click
*.owa.creativepaintwork.click
*.pop3.creativepaintwork.click
*.posta.creativepaintwork.click
*.root.creativepaintwork.click
*.smtp3.creativepaintwork.click
*.spam.creativepaintwork.click
*.srv.creativepaintwork.click
*.staging.creativepaintwork.click
*.store.creativepaintwork.click
*.test.creativepaintwork.click
*.v2.creativepaintwork.click
*.wap.creativepaintwork.click
*.webdisk.creativepaintwork.click
*.webmail.creativepaintwork.click
*.whm.creativepaintwork.click
*.ww38.creativepaintwork.click
*.7f625b5f-2b7f-4249-9e60-2044ae8f4c8e.learnextra.co.za
*.8dfa1ab7-b288-4b64-b755-02f5a71f278c.learnextra.co.za
*.admin.learnextra.co.za
*.api.learnextra.co.za
*.app.learnextra.co.za
*.auth.learnextra.co.za
*.backup.learnextra.co.za
*.blog.learnextra.co.za
*.client.learnextra.co.za
*.dashboard.learnextra.co.za
*.dev.learnextra.co.za
*.extranet.learnextra.co.za
*.f657eb58-792f-47d2-9a26-b9a9ebdd2c02.learnextra.co.za
*.hangman.learnextra.co.za
*.intranet.learnextra.co.za
learnextra.co.za
*.learnextra.co.za
*.localhost.learnextra.co.za
*.login.learnextra.co.za
*.marketing.learnextra.co.za
*.members.learnextra.co.za
*.news.learnextra.co.za
*.notexistsww25.learnextra.co.za
*.ns.learnextra.co.za
*.old.learnextra.co.za
*.qa.learnextra.co.za
*.qrgjaqyxavww6.learnextra.co.za
*.qyxavww6.learnextra.co.za
*.secure.learnextra.co.za
*.shop.learnextra.co.za
*.sitemap.learnextra.co.za
*.support.learnextra.co.za
*.usps.learnextra.co.za
*.ww.learnextra.co.za
*.ww1.learnextra.co.za
*.ww25.learnextra.co.za
*.ww6.learnextra.co.za
*.www.learnextra.co.za
*.www2.learnextra.co.za
*.www5.learnextra.co.za
Other domains in certificate