SSL Certificate Analysis for sintetiche.it - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Certificate Information

Subject

CN=roomforrent.it

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 04, 2026

Valid Until

May 05, 2026 83 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

BC:E5:9E:F5:2D:64:08:8D:E5:75:2E:9F:37:F5:1D:8E:DA:C2:6A:35:C4:73:51:67:77:92:0F:BA:79:90:E3:D6

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

sintetiche.it *.sintetiche.it

Other domains in certificate

roomforrent.it *.roomforrent.it

safebike.it *.safebike.it

safetyfinance.com *.safetyfinance.com

savastan0.click *.savastan0.click

selaluonline.club *.selaluonline.club

seooperators.com *.seooperators.com

shareideas.it *.shareideas.it

signaturepropertyinvestments.com *.signaturepropertyinvestments.com

singa.it *.singa.it

skillpoker.it *.skillpoker.it

smartbizconsult.com *.smartbizconsult.com

smarteducationjourney.live *.smarteducationjourney.live

sns24.top *.sns24.top

soccerball.it *.soccerball.it

socialbriefs.com *.socialbriefs.com

solcasino-ahti4.top *.solcasino-ahti4.top

sonuj.top *.sonuj.top

sored.it *.sored.it

soumoniiosdalwave.cyou *.soumoniiosdalwave.cyou

specialbox.it *.specialbox.it

speedstarcouriers.org *.speedstarcouriers.org

sportsbusiness.it *.sportsbusiness.it

stampacolor.it *.stampacolor.it

starworld.it *.starworld.it

stilearredamento.it *.stilearredamento.it

storyup4forge.com *.storyup4forge.com

stravaganze.it *.stravaganze.it

strumentista.it *.strumentista.it

suivi-relay-relivraison.info *.suivi-relay-relivraison.info

suon.it *.suon.it

sysflooassist.us *.sysflooassist.us

t22bet.live *.t22bet.live

tabellino.it *.tabellino.it

taswiq-online.shop *.taswiq-online.shop

techcellit.com *.techcellit.com

teleconsumatori.it *.teleconsumatori.it

teotkj.net *.teotkj.net

thanku.it *.thanku.it

themiddleeast.it *.themiddleeast.it

themutesixorigin.com *.themutesixorigin.com

thenoon.it *.thenoon.it

thepope.it *.thepope.it

tiho.it *.tiho.it

tjkotd.me *.tjkotd.me