Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=hecrowned.co
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 17, 2026
Valid Until
April 17, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
48:06:54:60:2C:BD:3F:35:68:E9:2F:50:49:A9:8E:BE:04:9E:40:65:A1:06:0C:25:0B:05:47:1A:C1:E0:B7:67
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
60 domains
amora-maille.com
*.amora-maille.com
*.ww25.amora-maille.com
19qq.cc
*.19qq.cc
abaoaquedizioni.info
*.abaoaquedizioni.info
academiaprime.online
*.academiaprime.online
hecrowned.co
*.hecrowned.co
instanttrading.online
*.instanttrading.online
internshipgo.online
*.internshipgo.online
irene-schneider.de
*.irene-schneider.de
ischgl-simplon.de
*.ischgl-simplon.de
its2enjoy.de
*.its2enjoy.de
jagata88.site
*.jagata88.site
jalna.site
*.jalna.site
japanshopmall22.online
*.japanshopmall22.online
javtop1.pw
*.javtop1.pw
jbbyyryezqqvq.top
*.jbbyyryezqqvq.top
jobs-center.online
*.jobs-center.online
jugalodoscasinoar.top
*.jugalodoscasinoar.top
juzidz1.top
*.juzidz1.top
jxgrzsfrhdwf.site
*.jxgrzsfrhdwf.site
*.lwesoes.lzenoqau0x.com
lzenoqau0x.com
*.lzenoqau0x.com
*.126.oplata-shtrafa24.site
*.2.oplata-shtrafa24.site
*.510.oplata-shtrafa24.site
*.614.oplata-shtrafa24.site
*.686.oplata-shtrafa24.site
*.913.oplata-shtrafa24.site
*.917.oplata-shtrafa24.site
oplata-shtrafa24.site
*.oplata-shtrafa24.site
*.wildcard.oplata-shtrafa24.site
*.ww25.oplata-shtrafa24.site
panen138i.xyz
*.panen138i.xyz
*.www.panen138i.xyz
*.25.rsudmtw.net
rsudmtw.net
*.rsudmtw.net
*.ww25.rsudmtw.net
Other domains in certificate