Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=gardendecor.com.au
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 08, 2026
Valid Until
April 08, 2026
67 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D5:95:2A:F1:0A:21:14:4C:2A:D3:C9:20:62:F9:F6:82:A5:B7:31:D1:60:A2:49:C2:CD:EC:52:CD:FE:BF:C3:C1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
ocn.com.au
*.ocn.com.au
*.lagoon.ocn.com.au
*.sweet.ocn.com.au
*.ww25.ocn.com.au
*.booking.diapered.com
diapered.com
*.diapered.com
*.dir.diapered.com
*.edge2.diapered.com
*.ict.diapered.com
*.images6.diapered.com
*.imap.diapered.com
*.karma.diapered.com
*.m.diapered.com
*.m0.diapered.com
*.mx.diapered.com
*.nl.diapered.com
*.ns1.diapered.com
*.relay.diapered.com
*.summer.diapered.com
*.trows.diapered.com
earnfromhome.com.au
*.earnfromhome.com.au
*.google.earnfromhome.com.au
*.random.earnfromhome.com.au
*.ww25.earnfromhome.com.au
gardendecor.com.au
*.gardendecor.com.au
*.ww25.gardendecor.com.au
*.3.indosatooredo.com
*.ads.indosatooredo.com
*.api.indosatooredo.com
*.api3.indosatooredo.com
*.appsdata.indosatooredo.com
*.area.indosatooredo.com
*.arena.indosatooredo.com
*.asik.indosatooredo.com
*.bug.indosatooredo.com
*.cdn.indosatooredo.com
*.cndn.indosatooredo.com
*.data.indosatooredo.com
*.doctorno.indosatooredo.com
*.edukasi.indosatooredo.com
*.im3.indosatooredo.com
indosatooredo.com
*.indosatooredo.com
*.instan.indosatooredo.com
*.instant.indosatooredo.com
*.iring.indosatooredo.com
*.iring808.indosatooredo.com
*.iscool.indosatooredo.com
*.istc.indosatooredo.com
*.kuota.indosatooredo.com
*.mms.indosatooredo.com
*.mycare.indosatooredo.com
*.myim3.indosatooredo.com
*.mym3.indosatooredo.com
*.myretail.indosatooredo.com
*.nakula.indosatooredo.com
*.ncdn.indosatooredo.com
*.ncnd.indosatooredo.com
*.netsafe.indosatooredo.com
*.org.indosatooredo.com
*.poinsenyum.indosatooredo.com
*.server.indosatooredo.com
*.superinternet.indosatooredo.com
*.webmail.indosatooredo.com
*.ww17.indosatooredo.com
*.ww2.indosatooredo.com
*.ww38.indosatooredo.com
*.www.indosatooredo.com
*.zero.indosatooredo.com
*.admin.instagral.com
*.c10r.instagral.com
*.deeppaaa.instagral.com
instagral.com
*.instagral.com
*.laujimbicura.instagral.com
*.m.instagral.com
*.ww25.instagral.com
*.danni.marchant.com.au
marchant.com.au
*.marchant.com.au
*.random.marchant.com.au
*.ww16.marchant.com.au
*.demo.threads.money
threads.money
*.threads.money
Other domains in certificate