DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=flower-expressth.click
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 04, 2026
Valid Until
May 05, 2026 83 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FB:26:79:C3:9A:0D:FF:AF:A6:61:E4:9C:10:7F:FB:2B:63:7F:A5:28:00:23:96:B4:7E:64:F5:11:60:87:2B:4E
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
piot.it *.piot.it

Other domains in certificate

flower-expressth.click *.flower-expressth.click
flying-lessons-764335080.click *.flying-lessons-764335080.click
food-packing-jobs-c2-mb6.click *.food-packing-jobs-c2-mb6.click
formatgenius.com *.formatgenius.com
frp30.top *.frp30.top
geocalce.it *.geocalce.it
go-puravive.com *.go-puravive.com
nexarvoo.com *.nexarvoo.com
nexolum.info *.nexolum.info
nilightly.com *.nilightly.com
noblesky.com *.noblesky.com
nursingschoolsinindiana.net *.nursingschoolsinindiana.net
oastecs.com *.oastecs.com
office-space-vn-st.click *.office-space-vn-st.click
offisave.com *.offisave.com
offre-360.com *.offre-360.com
ogixi.org *.ogixi.org
ogphdt.biz *.ogphdt.biz
okbank.it *.okbank.it
okinawa-inspection-822511856.click *.okinawa-inspection-822511856.click
olimpewat.xyz *.olimpewat.xyz
olimpse07.xyz *.olimpse07.xyz
onthegocardetailing.ca *.onthegocardetailing.ca
onthehour.info *.onthehour.info
openworld.bet *.openworld.bet
orchestraadvahov.com *.orchestraadvahov.com
organic-bay.com *.organic-bay.com
origent.io *.origent.io
osmani.it *.osmani.it
oxqhk.net *.oxqhk.net
ozelkavram.info *.ozelkavram.info
ozvur.net *.ozvur.net
pagereturn.com *.pagereturn.com
palyboyclothingromania.com *.palyboyclothingromania.com
pandas.it *.pandas.it
panen300play.xyz *.panen300play.xyz
panoramic.tube *.panoramic.tube
parcheggioauto.it *.parcheggioauto.it
paslm.com *.paslm.com
pgcmjyoc.top *.pgcmjyoc.top
phatkid.com *.phatkid.com
picturesquevacationscenery.live *.picturesquevacationscenery.live
placestellsstory.com *.placestellsstory.com
play-ember-foundry.xyz *.play-ember-foundry.xyz