Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=nationalgri.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 22, 2026
Valid Until
July 21, 2026
47 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
61:C4:A7:9F:82:39:86:92:ED:32:1C:52:12:F6:3A:B8:62:09:50:B4:FA:95:C3:AE:F0:A4:19:BE:13:06:7E:5E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
qob.it
*.qob.it
*.vserv.qob.it
*.www.qob.it
7vq98lnuqsgce25algl33q0zhn12jg3dvcb3lroa1d6d199k.click
*.7vq98lnuqsgce25algl33q0zhn12jg3dvcb3lroa1d6d199k.click
*.random.7vq98lnuqsgce25algl33q0zhn12jg3dvcb3lroa1d6d199k.click
appcierta.com
*.appcierta.com
*.concurso.appcierta.com
*.crm.appcierta.com
*.evento.appcierta.com
*.forum.appcierta.com
*.joomla.appcierta.com
*.jurado.appcierta.com
*.kidfy.appcierta.com
*.team.appcierta.com
*.web.appcierta.com
*.ws.appcierta.com
*.ww16.appcierta.com
appleidreset.com
*.appleidreset.com
*.m.appleidreset.com
*.random.appleidreset.com
daus.live
*.daus.live
individtual.pro
*.individtual.pro
*.sitemap.individtual.pro
*.sitemaps.individtual.pro
*.dns.nationalgri.com
*.mx7.nationalgri.com
nationalgri.com
*.nationalgri.com
*.us.nationalgri.com
*.cpanel.new-quay.com
new-quay.com
*.new-quay.com
*.ww25.new-quay.com
*.www.new-quay.com
*.arlecch.nodisco.it
*.bi.nodisco.it
*.metric.nodisco.it
nodisco.it
*.nodisco.it
*.reporting.nodisco.it
*.hostmaster.parke.it
parke.it
*.parke.it
perniaspopup.com
*.perniaspopup.com
petitmonde.co
*.petitmonde.co
*.sitemap.petitmonde.co
*.sitemaps.petitmonde.co
politicalleader.it
*.politicalleader.it
quickobooks.com
*.quickobooks.com
*.random.quickobooks.com
*.ww25.quickobooks.com
*.beta.requestlogistics.com
*.director.requestlogistics.com
*.jocuri.requestlogistics.com
requestlogistics.com
*.requestlogistics.com
*.static.requestlogistics.com
*.hostmaster.runkidrun.com
*.random.runkidrun.com
runkidrun.com
*.runkidrun.com
*.ww25.runkidrun.com
*.comwww.torturegalaxy.com
*.cpcalendars.torturegalaxy.com
torturegalaxy.com
*.torturegalaxy.com
*.ww25.torturegalaxy.com
*.ww38.torturegalaxy.com
*.www.torturegalaxy.com
*.wwwwww.torturegalaxy.com
vistaprints.in
*.vistaprints.in
*.ww25.vistaprints.in
*.ww38.vistaprints.in
*.cit.yourtvseries.com
*.ebwr.yourtvseries.com
*.pipeline.yourtvseries.com
yourtvseries.com
*.yourtvseries.com
Other domains in certificate