SSL Certificate Analysis for mx.jorgepolanco.com - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=travelokal.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 09, 2026

Valid Until

May 10, 2026 85 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

CD:E6:3B:F1:6C:32:67:D2:6C:CB:1F:BB:73:5D:66:77:DE:02:50:3E:78:40:4B:2D:B6:D8:15:A5:71:28:38:53

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

jorgepolanco.com *.jorgepolanco.com

Other domains in certificate

hotelbabot.com *.hotelbabot.com

hqywn.net *.hqywn.net

hucdjlzm.xyz *.hucdjlzm.xyz

hyperspacepark.com *.hyperspacepark.com

hyroxnetherland.com *.hyroxnetherland.com

jakssowa.com *.jakssowa.com

jeods.pro *.jeods.pro

jkkkpp.bid *.jkkkpp.bid

kangaroocoin.org *.kangaroocoin.org

kangaroooinvertibles.com *.kangaroooinvertibles.com

lereligioni.com *.lereligioni.com

lidopjtb.xyz *.lidopjtb.xyz

ligasudamericana.com *.ligasudamericana.com

luckychanceplay.com *.luckychanceplay.com

m14btc.xyz *.m14btc.xyz

small.toys *.small.toys

sos-acessoire.com *.sos-acessoire.com

strangerinyourbed.com *.strangerinyourbed.com

subordinationism.com *.subordinationism.com

tachymeterwatch.site *.tachymeterwatch.site

takamatsuairport.com *.takamatsuairport.com

tantifiln.site *.tantifiln.site

thegold365.green *.thegold365.green

travelokal.com *.travelokal.com

urbanapparelcollection.sbs *.urbanapparelcollection.sbs

vasel.top *.vasel.top

vjsitogh.xyz *.vjsitogh.xyz

webmaintenance.it *.webmaintenance.it

wellgoing.it *.wellgoing.it

wielkanoc.com *.wielkanoc.com

xci1.com *.xci1.com

xgame61.biz *.xgame61.biz

xh78.top *.xh78.top

xosodongthap.fun *.xosodongthap.fun

xwtvc.net *.xwtvc.net

yy-wall.com *.yy-wall.com

zusriyn192.vip *.zusriyn192.vip

zuz88rp.shop *.zuz88rp.shop

zvpib.bid *.zvpib.bid

zwaxj.wang *.zwaxj.wang

zwugq.cc *.zwugq.cc

zwwnd.co *.zwwnd.co

zx113366.com *.zx113366.com

zxc3433.xyz *.zxc3433.xyz