Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=dier.life
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 07, 2026
Valid Until
May 08, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D2:93:6F:29:3A:E7:DA:35:72:21:56:3E:0E:EE:70:63:52:D5:E2:DD:4E:82:EB:E5:04:6B:CC:22:A8:04:4D:92
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
staiger.com
*.staiger.com
*.anyconnect.staiger.com
*.app.staiger.com
*.autodiscover.staiger.com
*.ciscoasa.staiger.com
*.cloudvpn.staiger.com
*.connect.staiger.com
*.crm.staiger.com
*.customers.staiger.com
*.dashboard.staiger.com
*.dev.staiger.com
*.email.staiger.com
*.ftp.staiger.com
*.gp.staiger.com
*.imap.staiger.com
*.leads.staiger.com
*.mail.staiger.com
*.ns.staiger.com
*.portal.staiger.com
*.ra.staiger.com
*.random.staiger.com
*.ravpn.staiger.com
*.relay.staiger.com
*.remote.staiger.com
*.sales.staiger.com
*.secure.staiger.com
*.sitemap.staiger.com
*.sitemaps.staiger.com
*.smtp.staiger.com
*.ssl.staiger.com
*.sslvpn.staiger.com
*.support.staiger.com
*.test.staiger.com
*.vpn.staiger.com
*.webmail.staiger.com
*.ww1.staiger.com
*.ww16.staiger.com
*.www.staiger.com
*.admin.appliedmedicine.ai
*.app.appliedmedicine.ai
appliedmedicine.ai
*.appliedmedicine.ai
*.sfqybtest.appliedmedicine.ai
*.shop.appliedmedicine.ai
*.test.appliedmedicine.ai
*.www.appliedmedicine.ai
*.di.dier.life
dier.life
*.dier.life
*.01f4c65f-2449-4dc9-b2fe-0085f08c4b51.okeraja33.quest
*.023602f8-98bc-4389-b59c-bbdae8ebe30c.okeraja33.quest
*.0ea1380b-5589-4cf6-9ac1-5ce1c9ff4b77.okeraja33.quest
*.146ee01a-9d77-423f-92bd-f06174a50590.okeraja33.quest
*.2013be67-7bca-4640-9165-62c34247d372.okeraja33.quest
*.24b96b86-ab27-4ece-8b3c-033e2d6571ec.okeraja33.quest
*.2d9063a0-6eeb-4214-badf-acda97977337.okeraja33.quest
*.2dcb0934-cf49-4136-a755-43f0aa1a3229.okeraja33.quest
*.33937314-6533-42d1-a510-f59df744bb30.okeraja33.quest
*.43092a7e-7eb1-42fa-a7f9-846b559f589b.okeraja33.quest
*.48ecce08-cd29-4069-a50b-8b4f7f68c32d.okeraja33.quest
*.505250c2-d0fd-4985-bcc6-bc220f66ac19.okeraja33.quest
*.7e0646e6-cc09-49c4-ad56-3a0a41d78534.okeraja33.quest
*.845455b6-f47d-4fa4-befe-84b567875fff.okeraja33.quest
*.885c7178-e6ae-4b8e-a50c-3338515516c6.okeraja33.quest
*.916879ed-6057-4649-a3d4-938b130d746e.okeraja33.quest
*.9bee165c-34e6-4424-8fd6-a905a01c6d18.okeraja33.quest
*.a1c306d4-4a1e-40a9-86c4-63cb06f98e4d.okeraja33.quest
*.adblock.okeraja33.quest
*.adguard01.okeraja33.quest
*.ae29b89c-d5f1-402d-bad2-c3f900c19abc.okeraja33.quest
*.cc96556f-bd38-45a7-bde7-044a5a07b58c.okeraja33.quest
*.db6eb6fb-2d2b-413a-a405-2fd562f3d57b.okeraja33.quest
*.dns.okeraja33.quest
*.dns1.okeraja33.quest
*.doh.okeraja33.quest
*.e7fb067c-f070-45a2-9a78-0df470a931ce.okeraja33.quest
*.ebdisk.okeraja33.quest
*.f0e0d624-7ec3-4ea5-9394-e980b3ed0dd5.okeraja33.quest
okeraja33.quest
*.okeraja33.quest
*.pop.okeraja33.quest
*.resolver.okeraja33.quest
*.hostmaster.pownage.com
*.m.pownage.com
pownage.com
*.pownage.com
*.rds1.pownage.com
*.remote.pownage.com
*.www.pownage.com
Other domains in certificate