Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=nappilla.blog
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 05, 2026
Valid Until
May 06, 2026
87 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
38:0E:6B:E1:2B:84:C7:7B:CB:58:84:3A:47:9D:67:0C:AD:A7:61:23:A6:7F:BC:3D:1A:A0:FA:8E:53:64:60:D0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
forvard.com
*.forvard.com
berimtel.com
*.berimtel.com
*.card.berimtel.com
*.cdn.berimtel.com
*.mail.berimtel.com
*.port.berimtel.com
*.smtp.berimtel.com
*.vpn.berimtel.com
*.webdisk.berimtel.com
*.webmail.berimtel.com
*.ww1.berimtel.com
*.www.berimtel.com
bytemeta.vip
*.bytemeta.vip
cairnswebsites.com.au
*.cairnswebsites.com.au
campfrank.com
*.campfrank.com
casadasaude.com
*.casadasaude.com
cassinouruguai.vip
*.cassinouruguai.vip
celebratetravelglobe.live
*.celebratetravelglobe.live
celebrateweddingmagic.beauty
*.celebrateweddingmagic.beauty
celestialcakes.com
*.celestialcakes.com
cellphoneads.com
*.cellphoneads.com
changod.com
*.changod.com
chretiente.com
*.chretiente.com
cogil168westham.xyz
*.cogil168westham.xyz
desirulez.com
*.desirulez.com
*.random.desirulez.com
*.shop.desirulez.com
*.w.desirulez.com
*.wiki.desirulez.com
*.wildcard.desirulez.com
*.ww10.desirulez.com
*.ww25.desirulez.com
*.ww31.desirulez.com
*.ww35.desirulez.com
*.ww38.desirulez.com
domainroofer.com
*.domainroofer.com
dymondhosting.com.au
*.dymondhosting.com.au
ecovacationexcursions.xyz
*.ecovacationexcursions.xyz
esperantistes.com
*.esperantistes.com
*.hostmaster.esperantistes.com
fasady.com
*.fasady.com
freepoints.online
*.freepoints.online
fritidsresor.com
*.fritidsresor.com
hi3x.net
*.hi3x.net
*.nice8in.hi3x.net
*.www.hi3x.net
igrd96sg.online
*.igrd96sg.online
*.wn7hhjvw9sm0zefu.igrd96sg.online
nappilla.blog
*.nappilla.blog
*.staging.nappilla.blog
pagocuentas.com
*.pagocuentas.com
*.telsur.pagocuentas.com
panaloka.com
*.panaloka.com
*.mail.popupevent.com
popupevent.com
*.popupevent.com
*.alpha.speedcheck.net
speedcheck.net
*.speedcheck.net
tautofinance.com
*.tautofinance.com
*.wildcard.tautofinance.com
*.ww25.tautofinance.com
Other domains in certificate