SSL Certificate Analysis for gp.educarium.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=rk1177.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 20, 2026

Valid Until

August 18, 2026 76 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

13:E9:D2:99:0A:97:D9:35:D3:B1:5B:93:DC:EA:08:32:04:39:0E:7D:3A:64:5A:E1:71:80:41:DD:7A:D3:CB:DA

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

educarium.com *.educarium.com *.crm.educarium.com *.gp.educarium.com *.portal.educarium.com *.remote.educarium.com *.sklep.educarium.com *.vpn.educarium.com *.ww1.educarium.com *.ww11.educarium.com *.ww38.educarium.com

Other domains in certificate

automotiveparts.au *.automotiveparts.au

ch9d8e8g5y.top *.ch9d8e8g5y.top

chidinest.com *.chidinest.com

*.3416fb5c-a2b6-42bc-b007-9aca943d516a.consensus.pics *.admin.consensus.pics *.api.consensus.pics *.app.consensus.pics *.assets.consensus.pics consensus.pics *.consensus.pics *.demo.consensus.pics *.dev.consensus.pics *.dk8k3r.consensus.pics *.ioxdnassets.consensus.pics *.mail.consensus.pics *.test.consensus.pics

csxdn.one *.csxdn.one

*.ekb.nelsonics.com *.ftp.nelsonics.com nelsonics.com *.nelsonics.com *.www3.nelsonics.com

*.com-www.rk1177.com *.comwww.rk1177.com *.m.rk1177.com rk1177.com *.rk1177.com

*.analytics.samiyah.net *.backend.samiyah.net *.mail.samiyah.net samiyah.net *.samiyah.net *.stats.samiyah.net *.superset.samiyah.net *.www.samiyah.net

*.api.txupin.games *.demo.txupin.games *.dev.txupin.games *.m.txupin.games txupin.games *.txupin.games *.www.txupin.games

*.api.xc151.shop *.app.xc151.shop *.ar0bh1.xc151.shop *.dev.xc151.shop *.mail.xc151.shop *.members.xc151.shop *.staging.xc151.shop *.test.xc151.shop xc151.shop *.xc151.shop

*.an.ziua.de *.ani.ziua.de *.apropie.ziua.de *.are.ziua.de *.astept.ziua.de *.ca.ziua.de *.copii.ziua.de *.cu.ziua.de *.era.ziua.de *.este.ziua.de *.in.ziua.de *.la.ziua.de *.mea.ziua.de *.n.ziua.de *.pentru.ziua.de *.sicu.ziua.de *.treaca.ziua.de *.ww38.ziua.de *.xn--aai-1lb.ziua.de ziua.de *.ziua.de

zymwo.qpon *.zymwo.qpon