SSL Certificate Analysis for franges.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Certificate Information

Subject

CN=gamingnewsetesportechfrometruesports.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 10, 2026

Valid Until

May 11, 2026 88 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

B2:49:51:89:C7:CD:07:6F:CC:19:0B:28:BD:52:8D:D3:09:BF:FA:84:BC:79:5D:01:B9:CB:CD:E0:56:82:C9:90

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

franges.com *.franges.com *.sitemap.franges.com

Other domains in certificate

*.1yme1.analyjoy.xyz *.4kxnn.analyjoy.xyz *.5qutp.analyjoy.xyz analyjoy.xyz *.analyjoy.xyz *.fcvkr.analyjoy.xyz *.i51qg.analyjoy.xyz *.nktjv.analyjoy.xyz *.o1ghs.analyjoy.xyz *.osc36.analyjoy.xyz *.svzzq.analyjoy.xyz *.www.analyjoy.xyz

*.0c4cf538-834e-497c-a85d-b04cdb21df50.gametx88.bio *.adg.gametx88.bio *.adguard.gametx88.bio *.adguard01.gametx88.bio *.agh.gametx88.bio *.app.gametx88.bio *.backup.gametx88.bio *.c0859440-e6b0-418d-be38-32e4fd4094b6.gametx88.bio *.dashboard.gametx88.bio *.dns1.gametx88.bio *.doh.gametx88.bio gametx88.bio *.gametx88.bio *.intranet.gametx88.bio *.marketing.gametx88.bio *.nptuzyllwvdoh.gametx88.bio *.nqletns.gametx88.bio *.ns.gametx88.bio *.portal.gametx88.bio *.secure.gametx88.bio *.stg.gametx88.bio *.store.gametx88.bio *.web.gametx88.bio

*.admin.gamingnewsetesportechfrometruesports.com *.api.gamingnewsetesportechfrometruesports.com *.app.gamingnewsetesportechfrometruesports.com gamingnewsetesportechfrometruesports.com *.gamingnewsetesportechfrometruesports.com *.intranet.gamingnewsetesportechfrometruesports.com *.sitemap.gamingnewsetesportechfrometruesports.com *.sitemaps.gamingnewsetesportechfrometruesports.com

heritagetop.com *.heritagetop.com *.lavender.heritagetop.com *.pensiveness.heritagetop.com *.reigns-view.heritagetop.com *.teensy.heritagetop.com *.there-scheme.heritagetop.com

holisticayalternativa.com *.holisticayalternativa.com *.random.holisticayalternativa.com *.shop.holisticayalternativa.com *.ww38.holisticayalternativa.com

*.m0.rqkopfb.com *.m1.rqkopfb.com *.m12.rqkopfb.com *.m15.rqkopfb.com *.m17.rqkopfb.com *.m19.rqkopfb.com *.m21.rqkopfb.com *.m26.rqkopfb.com *.m29.rqkopfb.com *.m30.rqkopfb.com *.m31.rqkopfb.com *.m32.rqkopfb.com *.m34.rqkopfb.com *.m35.rqkopfb.com *.m37.rqkopfb.com *.m38.rqkopfb.com *.m5.rqkopfb.com *.m6.rqkopfb.com *.m7.rqkopfb.com *.m8.rqkopfb.com *.root.rqkopfb.com rqkopfb.com *.rqkopfb.com

*.hermes.tarotdeluna.com *.sitemaps.tarotdeluna.com *.smtp1.tarotdeluna.com tarotdeluna.com *.tarotdeluna.com *.vpn.tarotdeluna.com *.ww1.tarotdeluna.com *.ww11.tarotdeluna.com *.ww38.tarotdeluna.com