Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=gsji418.pro
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 04, 2026
Valid Until
May 05, 2026
84 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BF:3C:FB:28:A4:4E:98:48:0C:B2:D2:D7:2B:FF:F0:C5:7F:58:32:6C:D5:DD:D7:C5:74:9F:EA:F8:F4:57:72:FB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
fraseai.com
*.fraseai.com
123b7.top
*.123b7.top
1531yjj.top
*.1531yjj.top
159970a4.shop
*.159970a4.shop
51278.wang
*.51278.wang
619775.club
*.619775.club
629.it
*.629.it
748011.vip
*.748011.vip
aixcoin.com
*.aixcoin.com
alwayspositive.it
*.alwayspositive.it
arpha.it
*.arpha.it
frauen-treffen.com
*.frauen-treffen.com
freckleshop.xyz
*.freckleshop.xyz
freshidea.it
*.freshidea.it
g4t4.cc
*.g4t4.cc
gamenaz.com
*.gamenaz.com
gardenbloomtop.com
*.gardenbloomtop.com
getwenlocktalentcrew.com
*.getwenlocktalentcrew.com
getworkgroundssite.com
*.getworkgroundssite.com
ghc.it
*.ghc.it
giochiandroid.it
*.giochiandroid.it
girlfriend.finance
*.girlfriend.finance
gitplayz.buzz
*.gitplayz.buzz
goldkayaotel.com
*.goldkayaotel.com
good-filler-417380386.click
*.good-filler-417380386.click
goodwine.it
*.goodwine.it
goplus.it
*.goplus.it
gpssystem.in
*.gpssystem.in
grabme.it
*.grabme.it
greenlifestyle.it
*.greenlifestyle.it
greenwearpro.com
*.greenwearpro.com
gsji418.pro
*.gsji418.pro
gunesbahcesi.org
*.gunesbahcesi.org
gurjan.com
*.gurjan.com
hannahfisher.com
*.hannahfisher.com
hearingaids310397.icu
*.hearingaids310397.icu
hedeffo.com
*.hedeffo.com
hellenicbeasts.com
*.hellenicbeasts.com
heritageparcellaire.com
*.heritageparcellaire.com
hetlh.pro
*.hetlh.pro
high-cortisol-395096688.click
*.high-cortisol-395096688.click
high-end-592592992.click
*.high-end-592592992.click
himjk.shop
*.himjk.shop
hokibet66.com
*.hokibet66.com
horrornights.it
*.horrornights.it
Other domains in certificate