SSL Certificate Analysis for random.flexboard.net - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=rileybeans.xyz

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 21, 2026

Valid Until

May 22, 2026 87 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

0D:E1:EC:17:3F:CA:2E:5E:52:B1:08:96:CF:08:94:A6:B4:57:A2:61:0F:A3:2E:5F:35:0C:2D:8B:07:B3:5F:1F

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

flexboard.net *.flexboard.net *.random.flexboard.net

Other domains in certificate

adoptastray.co.uk *.adoptastray.co.uk

aquariumtickets.au *.aquariumtickets.au

castyourlead.com *.castyourlead.com

drivingclasses.au *.drivingclasses.au

*.8.giassociates.org *.access.giassociates.org *.api.giassociates.org *.backend.giassociates.org *.client.giassociates.org *.demo.giassociates.org *.dev.giassociates.org giassociates.org *.giassociates.org *.poc-dash.giassociates.org *.remote.giassociates.org *.remoteaccess.giassociates.org *.ssl.giassociates.org *.sslvpn.giassociates.org *.stats.giassociates.org *.vpn2.giassociates.org *.webvpn.giassociates.org *.ww17.giassociates.org

hs30283.cc *.hs30283.cc *.www.hs30283.cc

*.3158f0ac366a.jardindeinfantes.net jardindeinfantes.net *.jardindeinfantes.net *.mail.jardindeinfantes.net

*.autoconfig.mailwent.com *.autodiscover.mailwent.com *.box.mailwent.com mailwent.com *.mailwent.com *.mta-sts.mailwent.com *.webmail.mailwent.com *.www.mailwent.com

*.dev.maxroblox.co *.leklowordpress.maxroblox.co maxroblox.co *.maxroblox.co *.wordpress.maxroblox.co *.www.maxroblox.co

microdistiller.au *.microdistiller.au

*.acc.qnys3.app *.admin.qnys3.app *.api.qnys3.app *.app.qnys3.app *.b04c6a3f-077b-41d2-b984-cfd7cb3b3b90.qnys3.app *.blog.qnys3.app *.demo.qnys3.app *.dev.qnys3.app *.mail.qnys3.app qnys3.app *.qnys3.app *.test.qnys3.app *.wp.qnys3.app

*.admin.qnys30.app *.api.qnys30.app *.app.qnys30.app *.assets.qnys30.app *.blog.qnys30.app *.demo.qnys30.app *.esus.qnys30.app *.hostmaster.qnys30.app qnys30.app *.qnys30.app *.test.qnys30.app *.wp.qnys30.app *.www.qnys30.app

*.newsletter.rileybeans.xyz rileybeans.xyz *.rileybeans.xyz *.ww25.rileybeans.xyz

shoko.me *.shoko.me

*.hostmaster.visitatrici.com visitatrici.com *.visitatrici.com

*.ww.xn--spiegel-g1a.de xn--spiegel-g1a.de *.xn--spiegel-g1a.de