SSL Certificate Analysis for japp15.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=astr.tv

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

January 10, 2026

Valid Until

April 10, 2026 45 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

E5:98:DE:B9:32:28:39:6B:57:A9:86:3C:27:4A:1D:EC:2C:16:12:B7:35:DB:F5:02:46:D0:5F:EF:E2:B0:EB:22

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

japp15.com *.japp15.com *.0e1idr.japp15.com *.0k74ef.japp15.com *.83s3op9.japp15.com *.8j81co8.japp15.com *.acha2.japp15.com *.evzbi0.japp15.com *.h986bo.japp15.com *.hekfvb.japp15.com *.pu.japp15.com *.xn--6xlk-5z5f.japp15.com

Other domains in certificate

810book.com *.810book.com *.img.810book.com *.m.810book.com *.vpn.810book.com

a6dedf30ec19725f.com *.a6dedf30ec19725f.com *.pz.a6dedf30ec19725f.com

astr.tv *.astr.tv *.comune.astr.tv *.cpanel.astr.tv *.shop.astr.tv *.ww25.astr.tv

belabelatourism.co.za *.belabelatourism.co.za *.gw.belabelatourism.co.za *.imap.belabelatourism.co.za *.mail3.belabelatourism.co.za *.outlook.belabelatourism.co.za *.rds.belabelatourism.co.za *.securemail.belabelatourism.co.za *.zimbra.belabelatourism.co.za

cheepstorage.com *.cheepstorage.com *.dan.cheepstorage.com

farmesr.com *.farmesr.com *.hostmaster.farmesr.com *.ns1.farmesr.com *.ns2.farmesr.com *.random.farmesr.com *.www.farmesr.com

firecrackers.eu *.firecrackers.eu *.www.firecrackers.eu

gatewaypetgrooming.com *.gatewaypetgrooming.com *.ww25.gatewaypetgrooming.com

karacsonyfa.com *.karacsonyfa.com *.static.karacsonyfa.com

*.ap6nx2.ksgw6aj.mom ksgw6aj.mom *.ksgw6aj.mom

*.hostmaster.mitra77slot.xyz *.m.mitra77slot.xyz mitra77slot.xyz *.mitra77slot.xyz *.ww25.mitra77slot.xyz

*.app.mymail.live mymail.live *.mymail.live *.wwww.mymail.live

*.akuntansi-admin.topupyuk.com *.app.topupyuk.com *.bayargampang.topupyuk.com *.blog-cms.topupyuk.com *.blog.topupyuk.com *.cpcalendars.topupyuk.com *.dev.topupyuk.com *.kagoo.topupyuk.com *.new.topupyuk.com *.old-admin.topupyuk.com *.old.topupyuk.com *.on-dev-admin.topupyuk.com *.on-dev.topupyuk.com *.partner.topupyuk.com *.portal-api.topupyuk.com *.seller.topupyuk.com *.shop.topupyuk.com topupyuk.com *.topupyuk.com *.zayzay.topupyuk.com

worldstarllc.com *.worldstarllc.com *.ww25.worldstarllc.com