Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=oops-fitness.pl
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 10, 2026
Valid Until
August 08, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3D:6B:B9:B9:F2:FA:7B:DD:A3:BE:D1:E9:A8:0A:44:EA:24:7B:F4:39:23:82:1E:41:21:3B:D6:03:75:62:19:01
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
buildandplay.store
*.buildandplay.store
*.comune.buildandplay.store
*.mail.buildandplay.store
*.ww38.buildandplay.store
*.anzin.foireduverre.be
*.cambrai.foireduverre.be
*.cluses.foireduverre.be
*.douai.foireduverre.be
*.eaubonne.foireduverre.be
foireduverre.be
*.foireduverre.be
*.forbach.foireduverre.be
*.fresnes.foireduverre.be
*.grasse.foireduverre.be
*.juvisy-sur-orge.foireduverre.be
*.laval.foireduverre.be
*.libourne.foireduverre.be
*.metz.foireduverre.be
*.nancy.foireduverre.be
*.orthez.foireduverre.be
*.poitou-charentes.foireduverre.be
*.riedisheim.foireduverre.be
*.roubaix.foireduverre.be
*.saint-etienne.foireduverre.be
*.saint-lazare.foireduverre.be
*.saint-lo.foireduverre.be
*.sallaumines.foireduverre.be
*.sarthe.foireduverre.be
*.torcy.foireduverre.be
*.toulouse.foireduverre.be
*.vendee.foireduverre.be
*.verdun.foireduverre.be
*.villemomble.foireduverre.be
*.vitre.foireduverre.be
*.actv3.lk21.ac
lk21.ac
*.lk21.ac
*.tv2.lk21.ac
*.tv3.lk21.ac
*.tv6.lk21.ac
*.tv7.lk21.ac
*.tv8.lk21.ac
oops-fitness.pl
*.oops-fitness.pl
*.ww16.oops-fitness.pl
*.ww38.oops-fitness.pl
*.12.sunce8.top
*.13.sunce8.top
*.14.sunce8.top
*.15.sunce8.top
*.17.sunce8.top
*.19.sunce8.top
*.20.sunce8.top
*.22.sunce8.top
*.24.sunce8.top
*.27.sunce8.top
*.28.sunce8.top
*.30.sunce8.top
*.32.sunce8.top
*.34.sunce8.top
*.36.sunce8.top
*.37.sunce8.top
*.39.sunce8.top
*.40.sunce8.top
*.45.sunce8.top
*.46.sunce8.top
*.47.sunce8.top
*.49.sunce8.top
*.51.sunce8.top
*.52.sunce8.top
*.54.sunce8.top
*.57.sunce8.top
*.58.sunce8.top
*.60.sunce8.top
*.63.sunce8.top
*.64.sunce8.top
*.65.sunce8.top
*.66.sunce8.top
*.70.sunce8.top
*.72.sunce8.top
*.73.sunce8.top
*.74.sunce8.top
*.75.sunce8.top
*.78.sunce8.top
sunce8.top
*.sunce8.top
tarjetarojatvenvivo.tv
*.tarjetarojatvenvivo.tv
*.ww38.tarjetarojatvenvivo.tv
Other domains in certificate