Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=mesaspingpong.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 25, 2025
Valid Until
March 25, 2026
72 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
94:76:5F:55:B5:99:D0:D2:96:8E:1B:51:D6:EF:59:68:99:5F:72:67:48:74:DE:52:42:01:04:41:EB:8D:EC:B3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
itematic.vretta.com
23co.dev
actwo.site
acuerdo286sepgob.mx
dash.aicelabs.io
home.alexamin.de
antichess.app
app.staging.arealize.ai
uatcinepolis.biibiic.com
biweeklybudget.ca
app.calethe.com
capstex.com
admin.carpalcare.app
charisnugroho.com
www.majokolegal.co.zw
admin-dev.legal.coconala.com
user-prestg.legal.coconala.com
admin-staging.cokencode.com.br
bedtime.emma.crendle.com
notes.dallashoffman.com
editor.disedia.com
doctorjha.com
www.ecovie-export.com
auth.pm.efmax.com.br
livechat.emandai.net
www.emilyreikiandsound.fi
auth.feedback.farm
felloworship.com
app.generatebar.codes
list.getdealflow.ca
user.alnair.stg.gotoloop.dev
auth.parquesnacionales.gov.co
admin.icostem.com
link.lua-dev.idap.pro
cert.isanegc.org
www.iturnier.app
jaymemarques.com
joaoarmando.com
kallautomaticos.com.br
admin-lms.kcglobed.com
kognitec.com
www.lewoniec.com
www.masonicwebmaster.org
www.masonicwebmasters.org
mesaspingpong.com
milestoneshealthcentre.com
document-review.mindgeek.com
www.moonsnackgames.com
training.ndovoo.com
www.nehanagori.com
www.nkslearning.com
www.nooma.pk
parti.com
mandarina-gralpico.pedix.app
palta.pedix.app
parmabuenpastor.pedix.app
raffaello.pedix.app
rustica-pata-flambeada.pedix.app
stregaohiggins.pedix.app
api.pixelgardens.co.uk
s.plrm.in
portalhash.com
estoubem.pratic.com.br
www.prendu.com
app.qlub.io
qribar.com
ups.reaktor.com
reg.sy
www.reg.sy
ana.reservan.do
firebase.riteshjokhoe.com
rmabjadnames.com
connect-customer-ng-admin.rxoconnectmain.rxo.com
connect-ng-asset-management.rxoconnecthf.rxo.com
connect-ng-carrier-bids.rxoconnectmain.rxo.com
connect-ng-quotes.rxoconnecthf.rxo.com
connect-ng-widgets.rxoconnectmain.rxo.com
www.sainsnews.com
register.salesdashcrm.com
books.slotendrecht.nl
prod-jacarebet.iframe.survive.bet
admin.ticketqueens.com
timeoutnepal.com
services.tonio.com
list.tornroth.se
transup.id
safenow.tupoliza.mx
staging.europe.visenze.com
auth-dev.waffle.city
payment.waffle.city
well.online
auth.with.sb
www.xn--b3c4a2a2b5c.com
login.xn--feldfhler-u9a.app
www.xn--frgkonsult-q5a.se
www.xn--fysioterapeuttilhellsi-g5be.fi
www.xn--lasanluquea-beb.com
www.xn--q20bx22da519b.com
xn--voldinrerelasjoner-tub.com
zal.to
Other domains in certificate