DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=impact-leisure.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 03, 2026
Valid Until
May 04, 2026 82 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9B:B9:E6:DD:D1:E6:94:C8:0B:BC:AA:56:C4:3F:C5:E8:AE:F8:C6:3D:8A:BC:EE:E7:77:F9:A0:BF:80:CC:8D:B6
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
gotzmann.com *.gotzmann.com

Other domains in certificate

ammyraj.com *.ammyraj.com *.baby.ammyraj.com *.honey.ammyraj.com
chinesecresteddogs.com *.chinesecresteddogs.com *.download.chinesecresteddogs.com *.m.chinesecresteddogs.com *.ww1.chinesecresteddogs.com
*.0a05dr2.cloudfrontc.xyz *.3d7bjgo.cloudfrontc.xyz *.3i7uy89.cloudfrontc.xyz *.5pu6wuf.cloudfrontc.xyz *.5rjhwee.cloudfrontc.xyz *.5uqrpte.cloudfrontc.xyz *.6fj8v18.cloudfrontc.xyz *.7w1xsqi.cloudfrontc.xyz *.8u8x666.cloudfrontc.xyz cloudfrontc.xyz *.cloudfrontc.xyz *.dg3ywsr.cloudfrontc.xyz *.g53evie.cloudfrontc.xyz *.hdoop3u.cloudfrontc.xyz *.njvvp9y.cloudfrontc.xyz *.p3n2ey2.cloudfrontc.xyz *.pmg2svi.cloudfrontc.xyz *.qau4aao.cloudfrontc.xyz *.rig0ktb.cloudfrontc.xyz *.vd8mluk.cloudfrontc.xyz *.wplwevb.cloudfrontc.xyz
flickadult.com *.flickadult.com *.ww25.flickadult.com
gjeje.com *.gjeje.com
globalentrepreneurship.com *.globalentrepreneurship.com
gloriet.com *.gloriet.com
grinon.com *.grinon.com
gxsnmlx1584.vip *.gxsnmlx1584.vip
happygreeting.com *.happygreeting.com
hardenbergh.com *.hardenbergh.com
hautlanguedoc.com *.hautlanguedoc.com
herlambang.com *.herlambang.com
hertman.com *.hertman.com
hkjpg.gdn *.hkjpg.gdn
*.datahub.hoaphonglan.com hoaphonglan.com *.hoaphonglan.com
hodjat.com *.hodjat.com
hofame.com *.hofame.com
hofstrasse.com *.hofstrasse.com
hongqianzi.com *.hongqianzi.com
hoopsgear.com *.hoopsgear.com
howsay.com *.howsay.com
hrconsultant.net *.hrconsultant.net
hrwz.com *.hrwz.com
huanluyenvien.com *.huanluyenvien.com
impact-leisure.com *.impact-leisure.com *.ww25.impact-leisure.com
*.engine.quechollotia.bio quechollotia.bio *.quechollotia.bio *.sup-hotfix.quechollotia.bio *.ww25.quechollotia.bio
stayipedia.com *.stayipedia.com *.ww25.stayipedia.com