DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=dirtysecrets.pw
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 10, 2026
Valid Until
April 10, 2026 62 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
31:79:4F:20:4C:0C:6A:78:DB:46:3B:93:C5:7B:6C:03:64:39:C7:B1:DB:52:8E:37:CC:62:B6:5C:9A:16:08:71
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
impmail.com *.impmail.com

Other domains in certificate

airstreamforum.com *.airstreamforum.com
americanarcherysupply.com *.americanarcherysupply.com
ascii-art-studio.com *.ascii-art-studio.com
ashelyhomestore.com *.ashelyhomestore.com
automatedpla.net *.automatedpla.net
basepla.net *.basepla.net
botanicals.au *.botanicals.au
*.citrix.mkk.com.pl *.dev.mkk.com.pl *.magento.mkk.com.pl mkk.com.pl *.mkk.com.pl *.shop.mkk.com.pl *.staging.mkk.com.pl *.store.mkk.com.pl *.test.mkk.com.pl
dirtysecrets.pw *.dirtysecrets.pw *.www.dirtysecrets.pw
doublelist.net *.doublelist.net
equitandiselleria.com *.equitandiselleria.com *.mx.equitandiselleria.com *.random.equitandiselleria.com
fatboythin.com.au *.fatboythin.com.au
firewoodfred.com *.firewoodfred.com
gearfarmer.com *.gearfarmer.com
guyspla.net *.guyspla.net
homiesworld.com *.homiesworld.com
*.hostmaster.iphoneime.info iphoneime.info *.iphoneime.info *.random.iphoneime.info *.www.iphoneime.info
japan-movie.biz *.japan-movie.biz
jodaviessgis.net *.jodaviessgis.net
kagome.life *.kagome.life
koamnewnow.com *.koamnewnow.com
lepla.net *.lepla.net
lopezpla.net *.lopezpla.net
mockracy.info *.mockracy.info
newparties.org *.newparties.org
ou-trouver-lamour.com *.ou-trouver-lamour.com
payperminute.au *.payperminute.au
ramirezpla.net *.ramirezpla.net
rewardspla.net *.rewardspla.net
robinsonspla.net *.robinsonspla.net
sagefdn.org *.sagefdn.org
solarpanelsydney.au *.solarpanelsydney.au
sonoragamers.com *.sonoragamers.com
*.hostmaster.sumptuous.com.au *.random.sumptuous.com.au sumptuous.com.au *.sumptuous.com.au *.www.sumptuous.com.au
twmshiftknobs.com *.twmshiftknobs.com
wilsonspla.net *.wilsonspla.net