DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=modaero.net
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 14, 2026
Valid Until
April 14, 2026 76 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D8:42:2E:09:06:7D:BB:9B:C6:32:6D:7F:59:83:81:C1:0E:F8:A7:09:7B:BB:0D:FD:D5:3A:B9:95:C0:65:5B:E9
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
okcupids.com *.okcupids.com

Other domains in certificate

3sexuals.info *.3sexuals.info *.app.3sexuals.info
besho.store *.besho.store *.ww38.besho.store
chadautosalesja.com *.chadautosalesja.com
clcd8d.top *.clcd8d.top *.ww25.clcd8d.top
creditcarddeal.com.au *.creditcarddeal.com.au
dog-training197655.icu *.dog-training197655.icu
elit.space *.elit.space *.www.elit.space
emergencyplumbingservices235247.icu *.emergencyplumbingservices235247.icu
goodteens.net *.goodteens.net
googlepasskey.com *.googlepasskey.com
k-yonk.site *.k-yonk.site *.www.k-yonk.site
lotteypost.com *.lotteypost.com
microosft365.com *.microosft365.com
modaero.net *.modaero.net *.www.modaero.net
publicrecord.com.au *.publicrecord.com.au
qhm.lol *.qhm.lol
rlplus.com *.rlplus.com
*.co.santaclara.ca *.newsletter.santaclara.ca santaclara.ca *.santaclara.ca
tvproduction.com.au *.tvproduction.com.au
verizonclaim.com *.verizonclaim.com
*.1.weatherchannwl.com *.25.weatherchannwl.com *.admin.weatherchannwl.com *.api.weatherchannwl.com *.argo.weatherchannwl.com *.bbs.weatherchannwl.com *.bi.weatherchannwl.com *.blog.weatherchannwl.com *.cabinet.weatherchannwl.com *.dashboard.weatherchannwl.com *.dashboards.weatherchannwl.com *.feedback.weatherchannwl.com *.mail.weatherchannwl.com *.metric.weatherchannwl.com *.metrics.weatherchannwl.com *.notexistsadmin.weatherchannwl.com *.owa.weatherchannwl.com *.redash.weatherchannwl.com *.reports.weatherchannwl.com *.secure.weatherchannwl.com *.superset.weatherchannwl.com *.supersets.weatherchannwl.com *.users.weatherchannwl.com *.vpn.weatherchannwl.com weatherchannwl.com *.weatherchannwl.com *.wildcard.weatherchannwl.com *.workflow.weatherchannwl.com *.ww1.weatherchannwl.com *.ww16.weatherchannwl.com *.ww25.weatherchannwl.com *.ww38.weatherchannwl.com *.www.weatherchannwl.com
*.staging.webay.de webay.de *.webay.de *.ww11.webay.de *.ww38.webay.de
xindae.com *.xindae.com