DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=paliativoscolombia.org
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 16, 2026
Valid Until
August 14, 2026 65 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
00:7C:82:FE:09:88:0A:4B:9C:20:12:3B:54:B4:2E:39:D1:9F:22:A6:22:7E:09:74:C9:7E:93:5A:0B:54:93:07
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
tokenfoundation.org *.tokenfoundation.org *.laravel.tokenfoundation.org *.m.tokenfoundation.org *.sqs.tokenfoundation.org

Other domains in certificate

*.1.centralsphereedge.com *.12.centralsphereedge.com *.a.centralsphereedge.com *.app.centralsphereedge.com *.bcopsmri.centralsphereedge.com *.bqphlsfc.centralsphereedge.com centralsphereedge.com *.centralsphereedge.com *.demo.centralsphereedge.com *.dev.centralsphereedge.com *.dmpasuxv.centralsphereedge.com *.fazqjolk.centralsphereedge.com *.kqvocdby.centralsphereedge.com *.mta-sts.centralsphereedge.com *.nfwsegix.centralsphereedge.com *.ntjfhveq.centralsphereedge.com *.preprod-pipeline.centralsphereedge.com *.production-ci.centralsphereedge.com *.tbflsipd.centralsphereedge.com *.test-ci.centralsphereedge.com *.test.centralsphereedge.com *.tuescmfp.centralsphereedge.com *.twkdazoj.centralsphereedge.com *.vcbjrzmt.centralsphereedge.com *.vpn.centralsphereedge.com *.webtest.centralsphereedge.com *.ww.centralsphereedge.com *.ww7.centralsphereedge.com
*.by1wp.lawfish.club *.iby1wp.lawfish.club lawfish.club *.lawfish.club
*.arturebeatriz.lovaple.app lovaple.app *.lovaple.app *.stableboxmanager.lovaple.app
*.blog.paliativoscolombia.org *.mg.paliativoscolombia.org paliativoscolombia.org *.paliativoscolombia.org
*.i8iauq.realestateprosup.com realestateprosup.com *.realestateprosup.com
stanforthhealthcare.org *.stanforthhealthcare.org *.ww38.stanforthhealthcare.org
*.3c9762ff-c01d-471c-a3af-72c7afd312a1.toolazytoblog.com *.409fd579-08c5-4378-9d57-3f44d261925f.toolazytoblog.com *.7553d80c-f18f-4a87-ae31-82904fcea5cb.toolazytoblog.com *.a.toolazytoblog.com *.admin-api.toolazytoblog.com *.api-test.toolazytoblog.com *.api.toolazytoblog.com *.api2.toolazytoblog.com *.apis.toolazytoblog.com *.app.toolazytoblog.com *.back.toolazytoblog.com *.backend.toolazytoblog.com *.board.toolazytoblog.com *.buyer-api.toolazytoblog.com *.cesia-api.toolazytoblog.com *.cloud.toolazytoblog.com *.collaborate.toolazytoblog.com *.common-api.toolazytoblog.com *.config.toolazytoblog.com *.dev.toolazytoblog.com *.f97f5b87-b767-4538-ac16-31ce5c392087.toolazytoblog.com *.gateway.toolazytoblog.com *.git.toolazytoblog.com *.hminxadmin-api.toolazytoblog.com *.hostmaster.toolazytoblog.com *.kfobatest.toolazytoblog.com *.m.toolazytoblog.com *.mail.toolazytoblog.com *.pdf.toolazytoblog.com *.service.toolazytoblog.com *.services.toolazytoblog.com *.spring.toolazytoblog.com *.springboot.toolazytoblog.com *.test-api.toolazytoblog.com toolazytoblog.com *.toolazytoblog.com *.uat.toolazytoblog.com *.vpifycommon-api.toolazytoblog.com