Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=tcsportscards.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 03, 2026
Valid Until
May 04, 2026 75 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2D:40:DD:F9:7E:0D:D1:82:B6:D0:AD:BD:B4:D1:7B:3F:B7:6F:6C:F7:F9:4B:E4:26:72:5E:F0:2F:2F:CC:1D:30
Alternative Names

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
pangas.it *.pangas.it

Other domains in certificate

887469.com *.887469.com
99175.loan *.99175.loan
batuka.com *.batuka.com *.us.batuka.com
cocars.com *.cocars.com *.fca.cocars.com
dartmouthalumni.com *.dartmouthalumni.com *.ww16.dartmouthalumni.com
giudicare.com *.giudicare.com
hj7686.top *.hj7686.top
michigantax.directory *.michigantax.directory
muscat.best *.muscat.best
natureassociation.org *.natureassociation.org
nongduyumi.cn *.nongduyumi.cn
nqb.org *.nqb.org
oahgk.pro *.oahgk.pro
pinkiesout.com *.pinkiesout.com *.xyz.pinkiesout.com
quntruaronioasdalumleap.cyou *.quntruaronioasdalumleap.cyou
qvrpn.co *.qvrpn.co
r2lo6.academy *.r2lo6.academy
rudetalk.com *.rudetalk.com
selfhatch.com *.selfhatch.com
servizioincamera.com *.servizioincamera.com
sgxdfr.pro *.sgxdfr.pro
sparedrop.com *.sparedrop.com
srinugarifarms.online *.srinugarifarms.online
ssg1kci.top *.ssg1kci.top
starfitnessvibes.run *.starfitnessvibes.run
*.random.tcsportscards.com tcsportscards.com *.tcsportscards.com *.workspace2.tcsportscards.com *.ww38.tcsportscards.com
*.aad.tertre.com tertre.com *.tertre.com *.web.tertre.com
trabeated.com *.trabeated.com
travelinspirequests.live *.travelinspirequests.live
travelroutecaptains.live *.travelroutecaptains.live
uesze.pro *.uesze.pro
uey777.info *.uey777.info
ufref.pro *.ufref.pro
ultimatetravelexperience.live *.ultimatetravelexperience.live
umgeb.bid *.umgeb.bid
urbanapparelchoice.sbs *.urbanapparelchoice.sbs
vccov.cc *.vccov.cc
yourcareerpathway.live *.yourcareerpathway.live
zgblpo.pro *.zgblpo.pro