DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=cubus.store
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 02, 2026
Valid Until
April 02, 2026 52 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A8:6E:07:59:51:F3:7D:24:61:4C:3D:B1:D7:84:A4:1E:F2:83:B4:2E:EA:93:A9:F7:BF:E2:6A:58:9E:44:08:04
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
nwfx.org *.nwfx.org *.random.nwfx.org

Other domains in certificate

91dv50.com *.91dv50.com
beau-vallon.com *.beau-vallon.com *.mail.beau-vallon.com *.temp2019.beau-vallon.com *.test.beau-vallon.com
carpetcleaning-redding.com *.carpetcleaning-redding.com
chatropoolis.com *.chatropoolis.com *.ww25.chatropoolis.com
crosstowntees.com *.crosstowntees.com
cubus.store *.cubus.store *.ww38.cubus.store
doufusai.store *.doufusai.store
*.cv.elhanan.com elhanan.com *.elhanan.com *.wildcard.elhanan.com *.ww1.elhanan.com *.ww25.elhanan.com *.ww38.elhanan.com *.www.elhanan.com
ethicaljewellery.com.au *.ethicaljewellery.com.au
featheredback.com *.featheredback.com
financialcontent.co *.financialcontent.co
goedbegin.co *.goedbegin.co
lectomh.com *.lectomh.com
*.hostmaster.letsyou.com letsyou.com *.letsyou.com
mundowiseplay.com *.mundowiseplay.com
njgrfl.store *.njgrfl.store
pocyomkin1220.com *.pocyomkin1220.com
*.1337x.proxybit.club *.extratorrent.proxybit.club *.eztv.proxybit.club *.gowatchseries.proxybit.club *.hostmaster.proxybit.club *.isohunt.proxybit.club *.movies24free.proxybit.club *.moviesub.proxybit.club proxybit.club *.proxybit.club *.psdkeys.proxybit.club *.putlockerseries.proxybit.club *.releasebb.proxybit.club *.tgx.proxybit.club *.torlock.proxybit.club *.torrentbutler.proxybit.club *.torrentfunk.proxybit.club *.torrentgalaxy.proxybit.club *.www.proxybit.club *.yts.proxybit.club
seonetworkaccess-en9.com *.seonetworkaccess-en9.com
smo.au *.smo.au
swb.solutions *.swb.solutions *.ws.swb.solutions *.wss.swb.solutions
*.comune.tameca.co *.smtp2.tameca.co tameca.co *.tameca.co *.ww.tameca.co
*.random.wellnesstips.info wellnesstips.info *.wellnesstips.info *.ww25.wellnesstips.info *.ww38.wellnesstips.info
xxxvintage.pro *.xxxvintage.pro