SSL Certificate Analysis for imprima.co - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=shopq1assurancewireless.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

April 28, 2026

Valid Until

July 27, 2026 76 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

31:4B:C7:33:6A:F3:4D:C4:B7:A6:FD:3A:43:34:09:85:F1:DD:EF:F9:B2:E9:22:54:B4:46:6A:FC:C4:44:F7:D5

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

imprima.co *.imprima.co *.autodiscover.imprima.co *.cpanel.imprima.co *.hostmaster.imprima.co *.mail.imprima.co *.webdisk.imprima.co *.webmail.imprima.co *.www.imprima.co

Other domains in certificate

59rtpjempol55.click *.59rtpjempol55.click

*.adsrv-fe07.advsnx.net *.adsrv-fe08.advsnx.net *.adsrv-fe19.advsnx.net *.adsrv-fe70.advsnx.net *.adsrv-fe79.advsnx.net *.adsrv-fe80.advsnx.net *.adtest.advsnx.net advsnx.net *.advsnx.net *.banner.advsnx.net *.banners10.advsnx.net *.banners3.advsnx.net *.docs.advsnx.net *.fe02.advsnx.net *.haaretz-co-il.advsnx.net *.hm.advsnx.net *.livebroker.advsnx.net *.log.advsnx.net *.phpproxy.advsnx.net *.staging1.advsnx.net *.staging3.advsnx.net *.staging4.advsnx.net *.stagings.advsnx.net *.videocdn.advsnx.net *.videolb.advsnx.net *.wss.advsnx.net

almadaniya.info *.almadaniya.info *.website.almadaniya.info *.ww11.almadaniya.info

copricapo.com *.copricapo.com *.hostmaster.copricapo.com *.mail.copricapo.com *.mail2.copricapo.com

*.bbazi.dndspecialties.com dndspecialties.com *.dndspecialties.com *.rbdwi.dndspecialties.com *.tactd.dndspecialties.com

guessmaths.co *.guessmaths.co *.mx.guessmaths.co *.random.guessmaths.co

newvanity.it *.newvanity.it *.remote.newvanity.it

shopq1assurancewireless.com *.shopq1assurancewireless.com *.sitemap.shopq1assurancewireless.com *.sitemaps.shopq1assurancewireless.com *.swww.shopq1assurancewireless.com *.test.shopq1assurancewireless.com *.ww.shopq1assurancewireless.com

*.news.streaming.rodeo *.random.streaming.rodeo streaming.rodeo *.streaming.rodeo *.www.streaming.rodeo

*.mail.umc.life *.police.umc.life *.shop.umc.life *.staging.umc.life *.store.umc.life umc.life *.umc.life *.video.umc.life

*.sitemaps.warga789a.click warga789a.click *.warga789a.click

*.4218624.wsdxy.xyz *.4729521.wsdxy.xyz *.5332018.wsdxy.xyz *.api.wsdxy.xyz wsdxy.xyz *.wsdxy.xyz

*.mail.zserver.net zserver.net *.zserver.net