DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=jewelrystore.io
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 23, 2026
Valid Until
July 22, 2026 69 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8B:28:FC:9F:34:87:AF:3D:19:D8:C9:80:CA:88:F1:FE:D5:C1:56:A2:37:B8:17:46:A6:4F:CC:F0:FC:75:A7:FE
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
nibs.it *.nibs.it *.hostmaster.nibs.it *.remote.nibs.it *.www.nibs.it

Other domains in certificate

apptide.top *.apptide.top *.mail.apptide.top *.mta-sts.apptide.top *.staging.apptide.top
*.80ebb0f6-9e56-4b68-a544-e73f2d5c3d1e.babible.app babible.app *.babible.app *.demo.babible.app *.dev.babible.app *.stape.babible.app *.twnhtapp.babible.app
*.admin.celebrityautograph.it celebrityautograph.it *.celebrityautograph.it *.demo.celebrityautograph.it *.dev.celebrityautograph.it *.staging.celebrityautograph.it
chelny-m.com *.chelny-m.com *.comune.chelny-m.com *.mx.chelny-m.com
*.bi.infinita.it *.dash.infinita.it *.email.infinita.it *.hostmaster.infinita.it infinita.it *.infinita.it *.lastoria.infinita.it *.metrics.infinita.it *.musica.infinita.it *.preprod.infinita.it *.webmail.infinita.it
jewelrystore.io *.jewelrystore.io *.random.jewelrystore.io *.sitemap.jewelrystore.io *.sitemaps.jewelrystore.io *.www.jewelrystore.io
luchios13.com *.luchios13.com *.ww38.luchios13.com
metasex.pt *.metasex.pt *.whm.metasex.pt
*.app.pcxtfafafadma.vip *.hostmaster.pcxtfafafadma.vip pcxtfafafadma.vip *.pcxtfafafadma.vip *.sitemaps.pcxtfafafadma.vip
*.admin.picoles.com *.backup.picoles.com *.beta.picoles.com *.demo.picoles.com *.hostmaster.picoles.com *.m.picoles.com *.maquinas.picoles.com picoles.com *.picoles.com *.remote.picoles.com *.wildcard.picoles.com *.ww.picoles.com *.ww1.picoles.com *.ww11.picoles.com *.ww16.picoles.com *.ww17.picoles.com *.ww25.picoles.com *.ww38.picoles.com *.www.picoles.com
*.hacker.typer.it *.hostmaster.typer.it *.postmaster.typer.it typer.it *.typer.it *.webmail.typer.it *.www.typer.it
*.cs.whmcsmarters.com *.noc.whmcsmarters.com *.pe.whmcsmarters.com *.projects.whmcsmarters.com *.services.whmcsmarters.com *.webmail.whmcsmarters.com whmcsmarters.com *.whmcsmarters.com