Open
Cached
·
9h ago
76/100
SECURITY SCORE
Certificate Information
Subject
CN=louis-aragon-item.org
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 11, 2025
Valid Until
March 11, 2026
35 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F4:1D:A1:2A:5E:EE:53:3A:80:D4:68:4E:D6:5F:EB:B0:A2:D0:2D:C0:69:E5:DB:B5:9F:5E:0A:B5:00:CC:E1:14
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
codeinsta.tech
*.codeinsta.tech
*.gameversehub.codeinsta.tech
*.admin.akunsensasional.net
akunsensasional.net
*.akunsensasional.net
*.api.akunsensasional.net
*.app.akunsensasional.net
*.cpanel.akunsensasional.net
*.demo.akunsensasional.net
*.dev.akunsensasional.net
*.lyncdiscover.akunsensasional.net
*.mail.akunsensasional.net
*.webdisk.akunsensasional.net
*.whm.akunsensasional.net
*.ww99.akunsensasional.net
*.www.akunsensasional.net
amazonmpt.co
*.amazonmpt.co
*.ww25.amazonmpt.co
avenirya.store
*.avenirya.store
bak.agency
*.bak.agency
banderas-del-mundo.com
*.banderas-del-mundo.com
*.drapeauxanimes.banderas-del-mundo.com
*.ww38.banderas-del-mundo.com
*.www.banderas-del-mundo.com
*.221.bisous.online
*.73.bisous.online
bisous.online
*.bisous.online
*.m1.bisous.online
*.payments.bisous.online
*.pc1.bisous.online
*.plex.bisous.online
*.cpanel.cuentasclarasecuador.com
cuentasclarasecuador.com
*.cuentasclarasecuador.com
*.maxiprint.cuentasclarasecuador.com
*.ww25.cuentasclarasecuador.com
*.ww38.cuentasclarasecuador.com
*.www.cuentasclarasecuador.com
illusions.world
*.illusions.world
*.ww25.illusions.world
jmlawngeneralservices.com
*.jmlawngeneralservices.com
*.random.jmlawngeneralservices.com
*.goddessorder.kakaogames.co
kakaogames.co
*.kakaogames.co
*.pcpf.kakaogames.co
louis-aragon-item.org
*.louis-aragon-item.org
*.decision.medra.bio
medra.bio
*.medra.bio
*.www.medra.bio
mmbyt.click
*.mmbyt.click
muse-photo.studio
*.muse-photo.studio
mustaja.store
*.mustaja.store
*.nand.newart.website
newart.website
*.newart.website
*.nomp.newart.website
*.belmarpartyboat.njpartyboat.com
njpartyboat.com
*.njpartyboat.com
*.chat.ph777a1.cc
ph777a1.cc
*.ph777a1.cc
*.ww25.ph777a1.cc
sandbar.life
*.sandbar.life
*.autodiscover.sugih4d-amp.com
*.cpcontacts.sugih4d-amp.com
sugih4d-amp.com
*.sugih4d-amp.com
tempur99.life
*.tempur99.life
textura.life
*.textura.life
vctbikes-honeyzbeachbar.co.uk
*.vctbikes-honeyzbeachbar.co.uk
Other domains in certificate