SSL Certificate Analysis for idiazm.com - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=boierjagat.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 03, 2026

Valid Until

May 04, 2026 80 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

D9:A4:8F:13:50:09:0C:E7:A4:37:E8:2D:26:14:FF:2B:15:91:1E:4C:F9:A2:81:79:D5:7B:4A:71:D5:3F:2C:90

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

idiazm.com *.idiazm.com

Other domains in certificate

boierjagat.com *.boierjagat.com

bradleymartincoach.com *.bradleymartincoach.com

bzgvl.pro *.bzgvl.pro

cajones.it *.cajones.it

cameraphonevegan.com *.cameraphonevegan.com

capitoline.it *.capitoline.it

caprenters-companies-us-pango.click *.caprenters-companies-us-pango.click

cardeal.it *.cardeal.it

cars-for-sale-near-me.click *.cars-for-sale-near-me.click

cbt.it *.cbt.it

cerbottane.it *.cerbottane.it

cfgit.pro *.cfgit.pro

changingover.it *.changingover.it

channelsportslive.com *.channelsportslive.com

chefstar.it *.chefstar.it

chidi.it *.chidi.it

ciaochat.it *.ciaochat.it

collinscarpets.net *.collinscarpets.net

componentefotovoltaico.it *.componentefotovoltaico.it

computadoras.it *.computadoras.it

congresosmp2025.com *.congresosmp2025.com

conspiracion.it *.conspiracion.it

giselda.it *.giselda.it

giser.it *.giser.it

grafika-online.com *.grafika-online.com

gymsportmode.com *.gymsportmode.com

happyending.it *.happyending.it

happyrestaurant.it *.happyrestaurant.it

harvest.capital *.harvest.capital

hcracingapk.com *.hcracingapk.com

healthgroupbv.com *.healthgroupbv.com

helloloftagency.com *.helloloftagency.com

herbivores.it *.herbivores.it

hhcnq.pro *.hhcnq.pro

ilmiodottoredifiducia.it *.ilmiodottoredifiducia.it

ilpantalone.it *.ilpantalone.it

iltranese.it *.iltranese.it

imagizer.it *.imagizer.it

imgazeta.org *.imgazeta.org

indexed.it *.indexed.it

inkcollection.it *.inkcollection.it

internetlive.it *.internetlive.it

invented.it *.invented.it

investy.co *.investy.co