Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=wineyard.space
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
December 19, 2025
Valid Until
March 19, 2026
36 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
61:03:39:BD:DC:74:13:DC:5F:60:51:56:90:32:F0:50:EE:49:6D:20:69:CA:B4:09:E7:29:9E:01:8A:60:5A:C7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
sdsolar.com
*.sdsolar.com
*.a.sdsolar.com
*.hk.sdsolar.com
*.mobi.sdsolar.com
*.projects.sdsolar.com
*.rustore.sdsolar.com
*.stat.sdsolar.com
*.ww16.sdsolar.com
*.ww25.sdsolar.com
10086fabu.xyz
*.10086fabu.xyz
*.digitalocean.10086fabu.xyz
*.ww25.10086fabu.xyz
96shu.net
*.96shu.net
activ-life.com
*.activ-life.com
*.love.activ-life.com
*.ww38.activ-life.com
aft334t7.xyz
*.aft334t7.xyz
*.ww25.aft334t7.xyz
amthucdongsaigon.com
*.amthucdongsaigon.com
baleiaoutlet.store
*.baleiaoutlet.store
exirfad.com
*.exirfad.com
gamudalandgroup.com
*.gamudalandgroup.com
grandchase.io
*.grandchase.io
*.mail-transfer-agent-b58afe6bd123b5.grandchase.io
*.tracker.grandchase.io
limitededition1.click
*.limitededition1.click
lmahalsmail.com
*.lmahalsmail.com
*.bk.megabank.online
*.f0g9gmisyqp5c594.megabank.online
megabank.online
*.megabank.online
*.zh6t68z2vqizj0sm.megabank.online
*.mail.mobicom.pro
mobicom.pro
*.mobicom.pro
*.sitemap.mobicom.pro
*.www.mobicom.pro
muck.live
*.muck.live
*.mx.muck.live
*.git.online-casino-southafrica.xyz
*.m.online-casino-southafrica.xyz
online-casino-southafrica.xyz
*.online-casino-southafrica.xyz
*.3ae.pej.net
*.7p2k.pej.net
*.ell6u.pej.net
*.p5d9l1e8a.pej.net
pej.net
*.pej.net
*.t6e7y.pej.net
rammalla.com
*.rammalla.com
sitiodemascotas.com
*.sitiodemascotas.com
snajajob.com
*.snajajob.com
startaf.com.br
*.startaf.com.br
trianglemedia.com.au
*.trianglemedia.com.au
*.ns2.turbodogs.com
turbodogs.com
*.turbodogs.com
vespa777i.click
*.vespa777i.click
*.be.wineyard.space
*.dev.wineyard.space
*.qa.wineyard.space
wineyard.space
*.wineyard.space
*.moodle.yendung.com
*.umbuoww38.yendung.com
*.ww38.yendung.com
yendung.com
*.yendung.com
zantacclaims.com.au
*.zantacclaims.com.au
Other domains in certificate