DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=changefortheplanet.org
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 26, 2026
Valid Until
August 24, 2026 74 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5D:BC:81:E4:57:C0:31:DC:D0:35:38:7C:B5:61:0C:04:A8:E2:C3:03:94:13:5A:AB:45:DC:E5:C8:A3:59:6E:92
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
xertor.com *.xertor.com *.client.xertor.com

Other domains in certificate

changefortheplanet.org *.changefortheplanet.org *.sitemap.changefortheplanet.org *.sitemaps.changefortheplanet.org
datelocal.com *.datelocal.com *.jupsrold.datelocal.com *.store.datelocal.com
*.api.elise.news *.app.elise.news *.autodiscover.elise.news *.checkout.elise.news *.com.elise.news *.cpanel.elise.news *.cpcalendars.elise.news *.cpcontacts.elise.news *.cwappliedtechnwww.elise.news *.desid03cpcontacts.elise.news *.dev.elise.news elise.news *.elise.news *.imap.elise.news *.jobsearchexpress.elise.news *.localhost.elise.news *.m.elise.news *.mail.elise.news *.notexistscpcalendars.elise.news *.sitemaps.elise.news *.smtp.elise.news *.staging.elise.news *.v1.elise.news *.vpn.elise.news *.web.elise.news *.webdisk.elise.news *.webmail.elise.news *.www.elise.news
*.admin.elusivewines.com *.analytic.elusivewines.com *.analytics.elusivewines.com *.app.elusivewines.com *.auth.elusivewines.com *.backend.elusivewines.com *.cdn.elusivewines.com *.dashboard.elusivewines.com *.demo.elusivewines.com *.dev.elusivewines.com elusivewines.com *.elusivewines.com *.email.elusivewines.com *.gitlab.elusivewines.com *.intranet.elusivewines.com *.members.elusivewines.com *.notexistspost.elusivewines.com *.portal.elusivewines.com *.post.elusivewines.com *.rdp.elusivewines.com *.remote.elusivewines.com *.shop.elusivewines.com *.smtps.elusivewines.com *.store.elusivewines.com *.superset.elusivewines.com *.test.elusivewines.com *.vpn.elusivewines.com *.www.elusivewines.com
*.11.opy.info *.13.opy.info *.14.opy.info *.15.opy.info *.18.opy.info *.comune.opy.info *.karlstorzendosc.opy.info *.maps.opy.info opy.info *.opy.info *.p.opy.info *.sitemaps.opy.info *.storz-endosc.opy.info *.wildcard.opy.info *.www.opy.info
*.ns.petclinics.in petclinics.in *.petclinics.in *.pop.petclinics.in
riseandshinebb.com *.riseandshinebb.com *.sitemap.riseandshinebb.com