Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=41255.plus
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 19, 2026
Valid Until
May 20, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EC:34:CE:8F:F5:98:ED:CB:43:E0:88:48:4A:B8:60:67:39:AD:D6:26:9B:B8:19:36:81:28:F6:FD:40:11:70:99
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
cod.fi
*.cod.fi
*.04-1959.cod.fi
*.12.cod.fi
*.14.cod.fi
*.a.cod.fi
*.aint.cod.fi
*.analyze.cod.fi
*.dans.cod.fi
*.dashboards.cod.fi
*.dirili.cod.fi
*.fecund.cod.fi
*.fin.cod.fi
*.i.cod.fi
*.ind.cod.fi
*.int.cod.fi
*.l.cod.fi
*.metrics.cod.fi
*.notexistsdirili.cod.fi
*.notexistslientepiva.cod.fi
*.notexistsr.cod.fi
*.nt.cod.fi
*.r.cod.fi
*.remote.cod.fi
*.reports.cod.fi
*.roma.cod.fi
*.rubr.cod.fi
*.scalaint.cod.fi
*.sercace.cod.fi
*.superset.cod.fi
*.supersets.cod.fi
*.t.cod.fi
*.unit.cod.fi
*.ven.cod.fi
*.visual.cod.fi
*.vlt.cod.fi
*.vltim.cod.fi
*.vm.cod.fi
*.vnic.cod.fi
*.vocentur.cod.fi
*.vpn.cod.fi
*.www.cod.fi
*.x.cod.fi
*.z.cod.fi
*.zi.cod.fi
41255.plus
*.41255.plus
*.api.41255.plus
*.app.41255.plus
*.dev.41255.plus
*.external.41255.plus
*.hosting.41255.plus
*.hostmaster.41255.plus
*.members.41255.plus
*.share.41255.plus
*.test.41255.plus
*.www.41255.plus
asiratoon.com
*.asiratoon.com
*.ci.asiratoon.com
*.cicd.asiratoon.com
*.emv1.asiratoon.com
*.wildcard.asiratoon.com
*.www.asiratoon.com
*.4937fdfe-6a86-4ab5-a4f5-4fe48cf30961.recordcredit.be
*.anagemycredit.recordcredit.be
*.anagermycredit.recordcredit.be
*.analytics-dev.recordcredit.be
*.apps.recordcredit.be
*.ci-superset.recordcredit.be
*.dashboard.recordcredit.be
*.development.recordcredit.be
*.hotfix.recordcredit.be
*.managaemycredit.recordcredit.be
*.managememycredit.recordcredit.be
*.managemycredid.recordcredit.be
*.managemyctedit.recordcredit.be
*.manamycredit.recordcredit.be
*.mangemycredit.recordcredit.be
*.notexists00-www.recordcredit.be
*.notexistsmanagemycredit.recordcredit.be
*.partnerportal.recordcredit.be
recordcredit.be
*.recordcredit.be
*.report.recordcredit.be
*.superset.recordcredit.be
*.visual.recordcredit.be
susoessfuel.my
*.susoessfuel.my
*.www.susoessfuel.my
Other domains in certificate