SSL Certificate Analysis for m.vldeo.com - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=akaeastbaltimore.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 13, 2026

Valid Until

May 14, 2026 88 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

11:60:8A:32:D3:E8:C3:19:B6:53:F1:4F:3F:B6:53:8E:35:39:26:34:66:D3:E4:D3:2A:DD:99:22:6F:34:DE:22

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

vldeo.com *.vldeo.com *.3gp.vldeo.com *.afri.vldeo.com *.autocut.vldeo.com *.bangla.vldeo.com *.bf.vldeo.com *.en.vldeo.com *.exclus.vldeo.com *.javhd.vldeo.com *.ko.vldeo.com *.ldin.vldeo.com *.m.vldeo.com *.magistv.vldeo.com *.nxx.vldeo.com *.pom.vldeo.com *.rou.vldeo.com *.sex.vldeo.com *.sexv.vldeo.com *.sexy.vldeo.com *.sfw.vldeo.com *.sg.vldeo.com *.slx.vldeo.com *.sxe.vldeo.com *.tv.vldeo.com *.txxx.vldeo.com *.wayne.vldeo.com *.ww.vldeo.com *.x.vldeo.com *.xnxx.vldeo.com *.xxnxx.vldeo.com *.xxx.vldeo.com *.xxxs.vldeo.com *.xxxx.vldeo.com *.xxxxx.vldeo.com *.yuotoy.vldeo.com

Other domains in certificate

akaeastbaltimore.com *.akaeastbaltimore.com

analydev.xyz *.analydev.xyz *.kwid9.analydev.xyz *.me7q1.analydev.xyz

ecarrental.in *.ecarrental.in

*.esscaonlinecampus.instruucture.com instruucture.com *.instruucture.com *.tns.instruucture.com *.ww25.instruucture.com *.ww38.instruucture.com

katsu.it *.katsu.it *.redash.katsu.it *.reporting.katsu.it

*.access.wetterling.com *.admin.wetterling.com *.anyconnect.wetterling.com *.api.wetterling.com *.asa.wetterling.com *.autodiscover.wetterling.com *.ciscovpn.wetterling.com *.cloudvpn.wetterling.com *.cpcalendars.wetterling.com *.dev.wetterling.com *.firewall.wetterling.com *.ftp.wetterling.com *.gate.wetterling.com *.gateway.wetterling.com *.m.wetterling.com *.mail.wetterling.com *.office.wetterling.com *.portal.wetterling.com *.ra.wetterling.com *.ravpn.wetterling.com *.relay.wetterling.com *.remote.wetterling.com *.smtp.wetterling.com *.ssl.wetterling.com *.test.wetterling.com *.vpn.wetterling.com *.webmail.wetterling.com wetterling.com *.wetterling.com *.ww16.wetterling.com *.ww38.wetterling.com

*.api.ziko.im *.demo.ziko.im *.hostmaster.ziko.im ziko.im *.ziko.im