Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=centro-ricerche.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 02, 2026
Valid Until
May 03, 2026
83 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C1:61:5E:87:CD:33:07:37:90:CB:4E:C3:38:09:64:DB:6F:1D:49:17:CD:EC:F0:CD:3F:8E:2F:E5:65:71:73:8B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
evitare.com
*.evitare.com
centro-ricerche.com
*.centro-ricerche.com
cmtop.shop
*.cmtop.shop
cois.com
*.cois.com
completare.com
*.completare.com
connessionegratuita.com
*.connessionegratuita.com
contenutionline.com
*.contenutionline.com
coverx.net
*.coverx.net
cursodespertemilionario.com
*.cursodespertemilionario.com
dimabalakirev.com
*.dimabalakirev.com
djufi.net
*.djufi.net
dluot.pro
*.dluot.pro
dmty14.vip
*.dmty14.vip
door-replacement-agent-mx.click
*.door-replacement-agent-mx.click
drfnccosmetics.com
*.drfnccosmetics.com
dtccorp.com
*.dtccorp.com
ecocamino.com
*.ecocamino.com
emmedue.com
*.emmedue.com
esibire.com
*.esibire.com
estinzione.com
*.estinzione.com
ethnopub.com
*.ethnopub.com
experiment.au
*.experiment.au
f1g.com
*.f1g.com
fabirco.net
*.fabirco.net
favhows.com
*.favhows.com
firenze.co
*.firenze.co
fiuuy.net
*.fiuuy.net
forewarningly.com
*.forewarningly.com
freebulkmail.com
*.freebulkmail.com
frilor.com
*.frilor.com
fristpremierbank.com
*.fristpremierbank.com
frontedellagioventu.com
*.frontedellagioventu.com
giudiziario.com
*.giudiziario.com
globalnewstoday.cyou
*.globalnewstoday.cyou
kjisi.net
*.kjisi.net
kjksd.net
*.kjksd.net
laziali.com
*.laziali.com
legalerisponde.com
*.legalerisponde.com
lezioniapagamento.com
*.lezioniapagamento.com
libreriaislamica.com
*.libreriaislamica.com
lineacapitale.com
*.lineacapitale.com
logorio.com
*.logorio.com
lottatori.com
*.lottatori.com
lvono.pro
*.lvono.pro
maigang.cc
*.maigang.cc
Other domains in certificate