SSL Certificate Analysis for handipacks.com - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=022340.me

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

January 29, 2026

Valid Until

April 29, 2026 74 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

80:29:6A:19:50:F9:AA:2A:CA:22:92:D1:B0:52:DF:CF:24:A4:6B:26:BD:09:A6:2A:C5:D4:4D:37:77:05:A4:DA

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

handipacks.com *.handipacks.com

Other domains in certificate

022340.me *.022340.me

037008.buzz *.037008.buzz

104907.com *.104907.com

19538.mobi *.19538.mobi

32069.pizza *.32069.pizza

335622.vip *.335622.vip

369slotpro.com *.369slotpro.com

373725.vip *.373725.vip

373926.me *.373926.me

382059.me *.382059.me

420228.cc *.420228.cc

472793.me *.472793.me

492401.me *.492401.me

50421.net *.50421.net

53518.ac *.53518.ac

53519.ac *.53519.ac

56217.academy *.56217.academy

61tv250129.top *.61tv250129.top

704828.vip *.704828.vip

80342.mobi *.80342.mobi

chinatrip.love *.chinatrip.love

dark-raw.com *.dark-raw.com

earringprivacy.com *.earringprivacy.com

evrenselsozluk.org *.evrenselsozluk.org

fttgps.com *.fttgps.com

getservice-geeni.com *.getservice-geeni.com

nikhilscode.com *.nikhilscode.com

nondemise.com *.nondemise.com

nzp41.top *.nzp41.top

openservicegeeni.com *.openservicegeeni.com

pqz65.top *.pqz65.top

questforecstasy.com *.questforecstasy.com

razeinnovations.com *.razeinnovations.com

rgw18.top *.rgw18.top

ro-fish.com *.ro-fish.com

ron99-trust.com *.ron99-trust.com

royalremix.com *.royalremix.com

sosfiles.com *.sosfiles.com

stockastrix.com *.stockastrix.com

topspbu888.com *.topspbu888.com

trywebdew.com *.trywebdew.com

visualdesignproject.com *.visualdesignproject.com

volleyballposter.com *.volleyballposter.com

vxbrcsk.biz *.vxbrcsk.biz