SSL Certificate Analysis for ownjoinhighbot.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=26116547.vip

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 19, 2026

Valid Until

August 17, 2026 73 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

5D:80:F1:12:01:D1:5F:15:AD:30:5B:F2:01:37:6B:38:07:F9:1F:A9:4B:55:1D:B6:37:50:8A:82:CB:A2:0A:AF

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

ownjoinhighbot.com *.ownjoinhighbot.com

Other domains in certificate

26116547.vip *.26116547.vip

26810298.vip *.26810298.vip

26812278.vip *.26812278.vip

41625.one *.41625.one

440012b3.buzz *.440012b3.buzz

45857.agency *.45857.agency

92489.loan *.92489.loan

99893.mobi *.99893.mobi

99969.mobi *.99969.mobi

99997.mobi *.99997.mobi

basius.club *.basius.club

btggg.com *.btggg.com *.connect.btggg.com

citidexli-smithtown.com *.citidexli-smithtown.com

clearwaterpoolsandspas.net *.clearwaterpoolsandspas.net

clki.io *.clki.io

clyvora.world *.clyvora.world

coinflownow.com *.coinflownow.com

coinsimulator.io *.coinsimulator.io

cointiply.co *.cointiply.co

coker.live *.coker.live

connectvisionhub.live *.connectvisionhub.live

cpwshop.co *.cpwshop.co

craniognomic.com *.craniognomic.com

crayzgames.co *.crayzgames.co

cross-land.net *.cross-land.net

exodus.biz *.exodus.biz

headbang.co *.headbang.co

helloadminops.com *.helloadminops.com

insta.spot *.insta.spot *.portal.insta.spot

kaki4d-dom.com *.kaki4d-dom.com

kdm8968.cc *.kdm8968.cc

kiswissjoinus.com *.kiswissjoinus.com

konica.pro *.konica.pro

koolooly.com *.koolooly.com

kopernikus.co *.kopernikus.co

lyndamiles.com *.lyndamiles.com

peliculashd.co *.peliculashd.co

savvytravelnest.live *.savvytravelnest.live

scalabilityconsultinggroup.com *.scalabilityconsultinggroup.com

verifiedtcads.com *.verifiedtcads.com

vn88ux.com *.vn88ux.com

w13726240.com *.w13726240.com

w13728623.com *.w13728623.com