Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=riffasvago.shop
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 05, 2026
Valid Until
May 06, 2026
70 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BD:24:57:5F:29:5C:0B:29:14:9A:3E:47:AB:79:09:63:3E:1C:CE:BA:33:74:DB:0F:76:BF:A7:5C:66:09:34:98
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
seems.it
*.seems.it
181709.bid
*.181709.bid
184xiao.buzz
*.184xiao.buzz
187396.vip
*.187396.vip
188usahasky.xyz
*.188usahasky.xyz
191vv.buzz
*.191vv.buzz
1win-avtomatyonline.sbs
*.1win-avtomatyonline.sbs
200064.xyz
*.200064.xyz
257bet.pro
*.257bet.pro
2829.my
*.2829.my
richmondweddingofficiant.com
*.richmondweddingofficiant.com
riffasvago.shop
*.riffasvago.shop
rj1t6h.top
*.rj1t6h.top
rojgarniyojan.net
*.rojgarniyojan.net
rokomari-business.co
*.rokomari-business.co
rtpdaget77moes.xyz
*.rtpdaget77moes.xyz
rummymingle.com
*.rummymingle.com
s63535.com
*.s63535.com
satoshilabs.support
*.satoshilabs.support
sausagesveggie.com
*.sausagesveggie.com
sawer55new.autos
*.sawer55new.autos
scrap.cafe
*.scrap.cafe
sde50.top
*.sde50.top
searchingdiscounts.biz
*.searchingdiscounts.biz
seekingai.info
*.seekingai.info
semhi.cfd
*.semhi.cfd
sgtelco.com
*.sgtelco.com
shawanxian.cn
*.shawanxian.cn
shchangwu.cn
*.shchangwu.cn
sinergyum.my
*.sinergyum.my
sklgf.mobi
*.sklgf.mobi
smh00011.cc
*.smh00011.cc
smpsialfalah.org
*.smpsialfalah.org
smtcgtxubyorlewsdcdu.com
*.smtcgtxubyorlewsdcdu.com
socia-linkz.xyz
*.socia-linkz.xyz
solanawallet.xyz
*.solanawallet.xyz
spiseraroniiosdaldock.shop
*.spiseraroniiosdaldock.shop
sqawva.us
*.sqawva.us
startcompany.co
*.startcompany.co
strands.it
*.strands.it
subcontract.it
*.subcontract.it
successpathway.sbs
*.successpathway.sbs
svdhay.gdn
*.svdhay.gdn
sviluppodelleorganizzazioni.it
*.sviluppodelleorganizzazioni.it
sz8e0.top
*.sz8e0.top
Other domains in certificate