SSL Certificate Analysis for piastrine.com - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=100490.xyz

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 03, 2026

Valid Until

May 04, 2026 80 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

7C:DE:A9:2E:8B:55:94:72:3D:C8:EC:AA:11:CE:B4:88:90:BD:B9:4B:41:9C:CE:C9:30:4F:77:B4:26:75:18:DF

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

piastrine.com *.piastrine.com

Other domains in certificate

100490.xyz *.100490.xyz

10684.net *.10684.net

129580.loan *.129580.loan

15625.art *.15625.art

156938.top *.156938.top

19452.loan *.19452.loan

3027512.com *.3027512.com

30812.academy *.30812.academy

402399.vip *.402399.vip

42267.one *.42267.one

48960.co *.48960.co

4zx2q9.top *.4zx2q9.top

577340.club *.577340.club

58598.cc *.58598.cc

612251.xyz *.612251.xyz

67607.pizza *.67607.pizza

73fpllohqspdx.cc *.73fpllohqspdx.cc

94jk.cc *.94jk.cc

97346.co *.97346.co

978uv.vip *.978uv.vip

boundlessjoyweddings.beauty *.boundlessjoyweddings.beauty

bremner.net *.bremner.net

dubaivacation974800.icu *.dubaivacation974800.icu

housekringle.net *.housekringle.net

kftfr.gdn *.kftfr.gdn

mezupmpcdun.cc *.mezupmpcdun.cc

niotruaronitasdalnplay.cyou *.niotruaronitasdalnplay.cyou

nyyau.net *.nyyau.net

pgoor.cc *.pgoor.cc

pgoqo.cc *.pgoqo.cc

positivefocus.co.uk *.positivefocus.co.uk

rate-estimate.com *.rate-estimate.com

renownedtravelpassions.live *.renownedtravelpassions.live

sdfgg.pro *.sdfgg.pro

sese2se.com *.sese2se.com

v4ieqjwqn7yoh.com *.v4ieqjwqn7yoh.com

videointerattivo.com *.videointerattivo.com

vpazd.pro *.vpazd.pro

vsavi.co *.vsavi.co

wbsedclrrm.xyz *.wbsedclrrm.xyz

www36yh.cc *.www36yh.cc

x88a1399.cc *.x88a1399.cc

y6eop2vb.com *.y6eop2vb.com

yexftb.pro *.yexftb.pro