Open
Cached
·
just now
79/100
SECURITY SCORE
Certificate Information
Subject
CN=anonima.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 04, 2026
Valid Until
May 05, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
81:09:39:E3:C8:EA:D2:52:13:16:41:71:5C:07:52:14:7B:DE:5B:48:03:8B:B6:17:16:09:72:F8:7D:AA:CA:A6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
mostime.cn
*.mostime.cn
9694505.co
*.9694505.co
969dmy.top
*.969dmy.top
96ivh7.shop
*.96ivh7.shop
979yhj.top
*.979yhj.top
99282.loan
*.99282.loan
99376.loan
*.99376.loan
99522.loan
*.99522.loan
9991j.com
*.9991j.com
99939.loan
*.99939.loan
99uucc.cc
*.99uucc.cc
activeholisticfitness.run
*.activeholisticfitness.run
admiralx-1lap.top
*.admiralx-1lap.top
afb889.com
*.afb889.com
agrdj.loan
*.agrdj.loan
alaska-cruises-6.cfd
*.alaska-cruises-6.cfd
alaska-cruises-8.cfd
*.alaska-cruises-8.cfd
alberghitermali.it
*.alberghitermali.it
almont.it
*.almont.it
alphaindustries.shop
*.alphaindustries.shop
animalmedicalclinic.net
*.animalmedicalclinic.net
anniegugliotta.net
*.anniegugliotta.net
anonima.it
*.anonima.it
anxiety-medication-653761323.click
*.anxiety-medication-653761323.click
appst3.xyz
*.appst3.xyz
arcstoneinc.link
*.arcstoneinc.link
arte-online.it
*.arte-online.it
artslawottawa.ca
*.artslawottawa.ca
asianload.cam
*.asianload.cam
mortgageapt.top
*.mortgageapt.top
mortgagefit.top
*.mortgagefit.top
mszb18.xyz
*.mszb18.xyz
mtav578.com
*.mtav578.com
mysterio.pro
*.mysterio.pro
n62ii.vip
*.n62ii.vip
naganotonic-web.us
*.naganotonic-web.us
new-gcash.college
*.new-gcash.college
new-phone-551047788.click
*.new-phone-551047788.click
newreviewflow.com
*.newreviewflow.com
newrevolution.it
*.newrevolution.it
nexagen-buy.co.nz
*.nexagen-buy.co.nz
nextdaydelivery.it
*.nextdaydelivery.it
nfsc.group
*.nfsc.group
nightrun.it
*.nightrun.it
niyama.it
*.niyama.it
Other domains in certificate