Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=mrsjeweljohnson.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 20, 2026
Valid Until
August 18, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
69:31:AC:DE:F0:A2:7C:18:A7:56:2E:09:04:A2:E1:3A:7A:34:67:41:AB:74:F0:6F:CD:1F:5D:3B:25:2C:F9:0D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
88 domains
klyix.com
*.klyix.com
*.dl.klyix.com
*.gr.klyix.com
*.pay.klyix.com
*.www.klyix.com
*.admin.bonanomi.com
*.autodiscover.bonanomi.com
bonanomi.com
*.bonanomi.com
*.client.bonanomi.com
*.connectvpn.bonanomi.com
*.cpcontacts.bonanomi.com
*.drvpn.bonanomi.com
*.email.bonanomi.com
*.exchange.bonanomi.com
*.firewall.bonanomi.com
*.ftp.bonanomi.com
*.gateway.bonanomi.com
*.login.bonanomi.com
*.mail.bonanomi.com
*.mobile.bonanomi.com
*.owa.bonanomi.com
*.remoteaccess.bonanomi.com
*.secure.bonanomi.com
*.secureaccess.bonanomi.com
*.ssl.bonanomi.com
*.sslvpn.bonanomi.com
*.vpn.bonanomi.com
*.vpn1.bonanomi.com
*.vpn2.bonanomi.com
*.web.bonanomi.com
*.webconnect.bonanomi.com
*.webmail.bonanomi.com
*.webvpn.bonanomi.com
*.ww1.bonanomi.com
*.ww11.bonanomi.com
igronomicon.org
*.igronomicon.org
*.top.igronomicon.org
*.2avij0s5.lisheng68.cn
lisheng68.cn
*.lisheng68.cn
*.random.lisheng68.cn
*.ws71i5b9.lisheng68.cn
*.www.lisheng68.cn
*.wwww.lisheng68.cn
ltube.vip
*.ltube.vip
*.www.ltube.vip
mr90210.co
*.mr90210.co
*.www.mr90210.co
mrsjeweljohnson.com
*.mrsjeweljohnson.com
*.www.mrsjeweljohnson.com
*.assets.optimallivingbodycoaching.com
optimallivingbodycoaching.com
*.optimallivingbodycoaching.com
*.www.optimallivingbodycoaching.com
*.anyconnect.timboe.com
*.autoconfig.timboe.com
*.autodiscover.timboe.com
*.ciscovpn.timboe.com
*.cloudvpn.timboe.com
*.cpanel.timboe.com
*.cpcalendars.timboe.com
*.drvpn.timboe.com
*.exchange.timboe.com
*.gateway.timboe.com
*.hostmaster.timboe.com
*.imap.timboe.com
*.office.timboe.com
*.owa.timboe.com
*.ra.timboe.com
*.ravpn.timboe.com
*.relay.timboe.com
*.remote.timboe.com
*.secure.timboe.com
*.smtp.timboe.com
*.sslvpn.timboe.com
timboe.com
*.timboe.com
*.vpn.timboe.com
*.ww.xlys02.me
*.ww25.xlys02.me
xlys02.me
*.xlys02.me
Other domains in certificate