Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=moonlighting.studio
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 08, 2026
Valid Until
April 08, 2026 46 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FF:77:69:24:FD:A3:FE:2C:83:C2:F0:7F:F2:40:2C:9E:1F:40:05:47:1A:79:FE:EC:7B:36:C1:6E:B5:03:5A:04
Alternative Names

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
ldict.cc *.ldict.cc *.m.ldict.cc *.remote.ldict.cc *.wildcard.ldict.cc *.ww1.ldict.cc *.ww25.ldict.cc *.ww3.ldict.cc *.ww38.ldict.cc

Other domains in certificate

247psychiatry.com.au *.247psychiatry.com.au
actionfaction.com.au *.actionfaction.com.au
*.anglican.aun.au *.asu.aun.au aun.au *.aun.au *.aur-schule-l.aun.au *.aur.aun.au *.birdcare.aun.au *.candk.aun.au *.com.aun.au *.edu.aun.au *.lesnoestudiadosviion.aun.au *.occderm.aun.au *.pswa.aun.au *.yhoole.aun.au
billets.cm *.billets.cm
centerbet.com.au *.centerbet.com.au
cgxmcpab1pco.us *.cgxmcpab1pco.us
charityraffles.net.au *.charityraffles.net.au
curilearn.co *.curilearn.co
dcrustasko.in *.dcrustasko.in
do-ts.us *.do-ts.us
dorstate-ma.us *.dorstate-ma.us
evrydachshund.com *.evrydachshund.com
hairflairbeautysalon.co.uk *.hairflairbeautysalon.co.uk
housesold.com.au *.housesold.com.au
ietgabrielamistral.co *.ietgabrielamistral.co
kidsfootloker.com *.kidsfootloker.com
loveclick.bio *.loveclick.bio
lvc.io *.lvc.io
mammaextensions.com *.mammaextensions.com
mitrakreasi.co *.mitrakreasi.co
moonlighting.studio *.moonlighting.studio
preneurs.com.au *.preneurs.com.au
*.beta.protonmail.cm *.mail.protonmail.cm protonmail.cm *.protonmail.cm *.ww17.protonmail.cm *.ww25.protonmail.cm *.ww38.protonmail.cm
ransentertainment.co *.ransentertainment.co
responsibleai.com.au *.responsibleai.com.au
rtpgemi1.online *.rtpgemi1.online
skilltest.me *.skilltest.me
solidbase.click *.solidbase.click
tonicinteriors.co *.tonicinteriors.co
vhx.com.au *.vhx.com.au
wesleymoore.me *.wesleymoore.me
xlsex.com *.xlsex.com