DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=sat-transito.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 31, 2026
Valid Until
May 01, 2026 84 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
26:15:CC:8B:D5:BD:63:38:36:40:26:C3:2B:DC:EE:B4:78:6C:6F:44:49:19:03:CB:93:2C:47:6C:A0:E6:2F:C2
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
jayasurya.com *.jayasurya.com

Other domains in certificate

01.gd *.01.gd *.bms-01.01.gd *.hoiarapi.01.gd
178.live *.178.live *.aws.178.live *.manhua.178.live
*.api.bobil.com bobil.com *.bobil.com
cobbsherriff.org *.cobbsherriff.org *.inmae-search.cobbsherriff.org
cultured.us *.cultured.us *.wildcard.cultured.us
*.cpcontacts.framaroot.vip framaroot.vip *.framaroot.vip
*.bettybooks.grimpuppy.com *.blog.grimpuppy.com *.christinaricci.grimpuppy.com *.davespeaks.grimpuppy.com *.drewposada.grimpuppy.com *.forums.grimpuppy.com *.galleries.grimpuppy.com *.games.grimpuppy.com grimpuppy.com *.grimpuppy.com *.lorenzo.grimpuppy.com *.models.grimpuppy.com *.ricciblog.grimpuppy.com *.scottlewis.grimpuppy.com *.smileys.grimpuppy.com
henriettas.com *.henriettas.com *.test.henriettas.com
jagos.com *.jagos.com
jaming.com *.jaming.com
japanesehelmets.com *.japanesehelmets.com
*.client.jiao.net jiao.net *.jiao.net
*.dev.marketingprofit.com marketingprofit.com *.marketingprofit.com
nginx.cyou *.nginx.cyou *.ww17.nginx.cyou
nowmetv.net *.nowmetv.net *.ww38.nowmetv.net
*.net.pampam.com pampam.com *.pampam.com
*.auwww.roccoco.com.au *.cpcontacts.roccoco.com.au *.mastareventaffiliate.roccoco.com.au *.rifwebrafaffiliate.roccoco.com.au roccoco.com.au *.roccoco.com.au *.smtp.roccoco.com.au *.test.roccoco.com.au *.wholesale.roccoco.com.au *.ww16.roccoco.com.au *.ww17.roccoco.com.au *.ww38.roccoco.com.au
sat-transito.com *.sat-transito.com *.takealot-reschedule.sat-transito.com
*.admin.turandesigns.net *.blog.turandesigns.net *.demo.turandesigns.net *.docs.turandesigns.net *.owa.turandesigns.net *.pipeline.turandesigns.net *.share.turandesigns.net *.stores.turandesigns.net *.ttnlk.turandesigns.net turandesigns.net *.turandesigns.net *.vmcgxblog.turandesigns.net *.wildcard.turandesigns.net