Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=nftroyale.net
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 24, 2026
Valid Until
May 25, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7C:B4:2C:A9:D5:BD:F6:9E:6D:66:6D:1B:55:85:9B:7D:57:E5:59:63:E3:EA:82:49:75:66:8B:ED:FA:95:9E:D7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
cod.fi
*.cod.fi
*.04-1959.cod.fi
*.12.cod.fi
*.14.cod.fi
*.a.cod.fi
*.aint.cod.fi
*.analyze.cod.fi
*.bi.cod.fi
*.dans.cod.fi
*.dashboards.cod.fi
*.dirili.cod.fi
*.fecund.cod.fi
*.fin.cod.fi
*.i.cod.fi
*.ind.cod.fi
*.int.cod.fi
*.l.cod.fi
*.metrics.cod.fi
*.notexistsdirili.cod.fi
*.notexistslientepiva.cod.fi
*.notexistsr.cod.fi
*.nt.cod.fi
*.r.cod.fi
*.remote.cod.fi
*.reports.cod.fi
*.res.cod.fi
*.roma.cod.fi
*.rubr.cod.fi
*.scalaint.cod.fi
*.sercace.cod.fi
*.superset.cod.fi
*.supersets.cod.fi
*.t.cod.fi
*.unit.cod.fi
*.ven.cod.fi
*.visual.cod.fi
*.vlt.cod.fi
*.vltim.cod.fi
*.vm.cod.fi
*.vnic.cod.fi
*.vocentur.cod.fi
*.vpn.cod.fi
*.www.cod.fi
*.x.cod.fi
*.z.cod.fi
*.zi.cod.fi
*.admin.nftroyale.net
*.api.nftroyale.net
*.app.nftroyale.net
*.assets.nftroyale.net
*.autoconfig.nftroyale.net
*.autodiscover.nftroyale.net
*.beta.nftroyale.net
*.bot.nftroyale.net
*.carddav.nftroyale.net
*.contacts.nftroyale.net
*.cpanel.nftroyale.net
*.ddirxdemo.nftroyale.net
*.demo.nftroyale.net
*.docs.nftroyale.net
*.docses.nftroyale.net
*.e8df9b18-5dbf-4ebd-ab40-e68d15618046.nftroyale.net
*.ftp.nftroyale.net
*.hostmaster.nftroyale.net
*.hs2.nftroyale.net
*.mail.nftroyale.net
*.metric.nftroyale.net
nftroyale.net
*.nftroyale.net
*.owa.nftroyale.net
*.pagamento.nftroyale.net
*.psdhcdemo.nftroyale.net
*.sendy.nftroyale.net
*.sitemap.nftroyale.net
*.sitemaps.nftroyale.net
*.staging.nftroyale.net
*.test.nftroyale.net
*.vpn.nftroyale.net
*.webmail.nftroyale.net
*.www.nftroyale.net
*.kug.ntat.org
ntat.org
*.ntat.org
*.rdweb.sbhoteles.es
sbhoteles.es
*.sbhoteles.es
*.pequeheroes.visionart.studio
visionart.studio
*.visionart.studio
Other domains in certificate