Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=43950.academy
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 13, 2026
Valid Until
May 14, 2026 81 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
45:CB:F9:DC:4D:07:BE:AB:87:32:06:3E:20:3F:6B:C3:23:98:CC:1C:05:D2:5D:B7:77:34:95:E8:C2:D0:87:26
Alternative Names

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
ipropose.it *.ipropose.it *.www.ipropose.it

Other domains in certificate

43950.academy *.43950.academy *.5fe7f9c0-ed1d-4b05-b585-322405f63301.43950.academy *.9ac653c4-f46b-4872-95e7-e4edcc8d528c.43950.academy *.articles.43950.academy *.arvundmq.43950.academy *.dashboard.43950.academy *.e395796a-d2d8-4838-b381-b3394222b5ff.43950.academy *.ec45787b-b0f4-4273-8efa-e7379fe2e52d.43950.academy *.hostmaster.43950.academy *.marketing.43950.academy *.press.43950.academy *.secure.43950.academy *.vwfeqpji.43950.academy *.www.43950.academy
4tees.com *.4tees.com *.hostmaster.4tees.com *.rustore.4tees.com *.sitemap.4tees.com *.sitemaps.4tees.com *.sports.4tees.com *.ww1.4tees.com *.ww16.4tees.com *.ww25.4tees.com
definnovate.com *.definnovate.com *.m.definnovate.com
*.1.gb777.boats *.admin.gb777.boats *.backup.gb777.boats *.billing.gb777.boats *.dashboards.gb777.boats gb777.boats *.gb777.boats *.login.gb777.boats *.marketing.gb777.boats *.new.gb777.boats *.pixels.gb777.boats *.secure.gb777.boats *.staging.gb777.boats *.stg.gb777.boats *.v1.gb777.boats *.web.gb777.boats
globalverse.tech *.globalverse.tech
hippychic.com *.hippychic.com *.hostmaster.hippychic.com *.sitemap.hippychic.com *.sitemaps.hippychic.com *.ww1.hippychic.com *.ww41.hippychic.com
kansascitywedding.com *.kansascitywedding.com *.shop.kansascitywedding.com *.wiki.kansascitywedding.com *.ww16.kansascitywedding.com
*.dbhmusic.pocock.net pocock.net *.pocock.net *.w001.pocock.net *.ww17.pocock.net *.ww38.pocock.net
*.api.sitescouts.com *.dev.sitescouts.com *.imap3d.sitescouts.com *.log.sitescouts.com *.mail.sitescouts.com *.mx4.sitescouts.com *.postman.sitescouts.com *.restricted.sitescouts.com *.server.sitescouts.com *.sitemaps.sitescouts.com sitescouts.com *.sitescouts.com *.ssh.sitescouts.com *.webadmin.sitescouts.com *.ww0.sitescouts.com *.ww17.sitescouts.com *.www02.sitescouts.com
*.admin.thenobleeducation.org *.hostmaster.thenobleeducation.org *.sitemaps.thenobleeducation.org thenobleeducation.org *.thenobleeducation.org *.www.thenobleeducation.org