Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=486002.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 02, 2026
Valid Until
May 03, 2026
84 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3B:05:59:8B:A6:B1:8A:DD:AF:79:00:A3:1B:D1:11:3B:4F:A0:C3:28:EC:A4:8D:4E:2C:BC:22:0C:0C:A9:A0:A4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
guido.org
*.guido.org
10756.net
*.10756.net
467638.com
*.467638.com
486002.com
*.486002.com
51613.locker
*.51613.locker
658137.top
*.658137.top
789be82.com
*.789be82.com
aastha.net
*.aastha.net
adnecto.com
*.adnecto.com
aglianica.com
*.aglianica.com
albumdigitale.com
*.albumdigitale.com
bistecca.com
*.bistecca.com
buktijpusahatoto.cfd
*.buktijpusahatoto.cfd
caratteristici.com
*.caratteristici.com
centonovanta.com
*.centonovanta.com
central-virginia-watercolor-guild.org
*.central-virginia-watercolor-guild.org
checkmyfilters.com
*.checkmyfilters.com
componentifotovoltaici.com
*.componentifotovoltaici.com
contestato.com
*.contestato.com
eyb76.top
*.eyb76.top
guardianazionaleitaliana.com
*.guardianazionaleitaliana.com
habze.org
*.habze.org
hesperiidae.com
*.hesperiidae.com
indaginimercato.com
*.indaginimercato.com
indifferentemente.com
*.indifferentemente.com
investign.com
*.investign.com
kc3000k5.lol
*.kc3000k5.lol
laterradeicuochi.com
*.laterradeicuochi.com
lavanderiautomatica.com
*.lavanderiautomatica.com
lettone.com
*.lettone.com
livedreamgirls.com
*.livedreamgirls.com
maccheroncelli.com
*.maccheroncelli.com
maschere.net
*.maschere.net
max-designs.com
*.max-designs.com
mobilidilusso.com
*.mobilidilusso.com
mtqr4.my
*.mtqr4.my
ottenuto.com
*.ottenuto.com
pacchettino.com
*.pacchettino.com
pd9vsszfqpdqjal.top
*.pd9vsszfqpdqjal.top
pokerquattro.com
*.pokerquattro.com
price-shop.com
*.price-shop.com
progettoenergiarinnovabile.com
*.progettoenergiarinnovabile.com
raccogli.com
*.raccogli.com
rescaldina.com
*.rescaldina.com
rotolificio.com
*.rotolificio.com
Other domains in certificate