SSL Certificate Analysis for oblero.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=jokersloto.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

April 24, 2026

Valid Until

July 23, 2026 73 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

37:81:4B:A1:DA:E8:3E:FF:3D:25:45:6D:41:A9:70:40:A8:D3:12:DE:C7:6F:C0:81:ED:70:25:A2:F9:4F:AA:55

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

oblero.com *.oblero.com

Other domains in certificate

adultsearc.com *.adultsearc.com

airasai.com *.airasai.com *.hostmaster.airasai.com *.xyzwww.airasai.com

apx97.com *.apx97.com *.ww25.apx97.com

brainset.com *.brainset.com

chesneylind.com *.chesneylind.com *.log.chesneylind.com *.random.chesneylind.com

constructionalgo.com *.constructionalgo.com *.ww16.constructionalgo.com

downgirlz.com *.downgirlz.com *.superset.downgirlz.com *.ww1.downgirlz.com

fdowm.net *.fdowm.net

*.7f330e29-5cbd-4305-9113-a6057bd45fda.game789go.xyz *.app.game789go.xyz *.bd9ef06e-2945-4584-9868-e38cd3677884.game789go.xyz *.dd8c9909-56f1-4219-805a-17f7cd401b37.game789go.xyz game789go.xyz *.game789go.xyz *.zsaqydev.game789go.xyz

*.comwww.hamaracd.com hamaracd.com *.hamaracd.com *.w.hamaracd.com

intakes.com.au *.intakes.com.au *.mailserver.intakes.com.au

jokersloto.com *.jokersloto.com

lezoche.com *.lezoche.com

lfstore.com *.lfstore.com

*.hostmaster.medbooksvn.net medbooksvn.net *.medbooksvn.net *.pa.medbooksvn.net *.vpn.medbooksvn.net *.ww25.medbooksvn.net

mingding.shop *.mingding.shop

modchurchunion.org *.modchurchunion.org

navajosagecreations.com *.navajosagecreations.com *.random.navajosagecreations.com *.ww25.navajosagecreations.com

*.api.panoramas.it *.dashboard.panoramas.it *.mx.panoramas.it panoramas.it *.panoramas.it *.staging.panoramas.it

sellfish.com *.sellfish.com

*.manhwa.solo-leveling.com solo-leveling.com *.solo-leveling.com *.w11.solo-leveling.com *.w15.solo-leveling.com *.w43.solo-leveling.com

*.random.teetime.in teetime.in *.teetime.in

theshelbyresidences.com *.theshelbyresidences.com

wwwljetblue.com *.wwwljetblue.com

*.random.yoyogi.com.au *.wildcard.yoyogi.com.au *.ww38.yoyogi.com.au *.www.yoyogi.com.au yoyogi.com.au *.yoyogi.com.au

zivanovic.com *.zivanovic.com