SSL Certificate Analysis for gp.2626.net - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=refactorednoise.io

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 19, 2026

Valid Until

May 20, 2026 87 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

00:59:77:FB:38:26:4E:92:0B:21:4E:56:B9:EB:AB:5E:E9:AD:64:1F:49:A8:5A:BA:17:AC:88:4E:2F:E3:1F:A4

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

2626.net *.2626.net *.120.2626.net *.gp.2626.net *.remote.2626.net *.sitemap.2626.net *.sitemaps.2626.net *.vpn.2626.net *.ww38.2626.net

Other domains in certificate

123movies.fr *.123movies.fr

63xcoin.xyz *.63xcoin.xyz *.cpcalendars.63xcoin.xyz *.m.63xcoin.xyz *.ns.63xcoin.xyz *.remote.63xcoin.xyz *.whm.63xcoin.xyz *.www.63xcoin.xyz

biopls-slim.pro *.biopls-slim.pro *.m.biopls-slim.pro *.wap.biopls-slim.pro

braseiro.com *.braseiro.com *.hostmaster.braseiro.com *.livejasmin.braseiro.com *.store.braseiro.com *.wiki.braseiro.com *.ww01.braseiro.com *.ww16.braseiro.com *.ww25.braseiro.com *.ww38.braseiro.com

*.blog.conviccion.com conviccion.com *.conviccion.com *.crm.conviccion.com *.sitemaps.conviccion.com *.ww1.conviccion.com *.ww11.conviccion.com

cuc.com.au *.cuc.com.au *.mail.cuc.com.au *.prod.cuc.com.au *.ww38.cuc.com.au

floorel.com *.floorel.com

holderurl.com *.holderurl.com *.ww16.holderurl.com *.ww17.holderurl.com *.ww38.holderurl.com

lifecareinternationalhospital.com *.lifecareinternationalhospital.com *.reports.lifecareinternationalhospital.com *.sitemap.lifecareinternationalhospital.com *.sitemaps.lifecareinternationalhospital.com *.webdisk.lifecareinternationalhospital.com *.www.lifecareinternationalhospital.com

originators.com.au *.originators.com.au

refactorednoise.io *.refactorednoise.io

*.ab.sag.lt *.admin.sag.lt *.api.sag.lt *.cpanel.sag.lt *.ftp.sag.lt *.guz.sag.lt *.localhost.sag.lt *.pop.sag.lt sag.lt *.sag.lt *.shop.sag.lt *.smtp.sag.lt *.stoketravel.sag.lt *.webdisk.sag.lt *.webmail.sag.lt *.whm.sag.lt *.www.sag.lt

*.database.smartgardens.eu smartgardens.eu *.smartgardens.eu

*.hostmaster.trapped.it trapped.it *.trapped.it

veenix.online *.veenix.online

ydede.eu *.ydede.eu