Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=politicalamazon.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
November 04, 2025
Valid Until
February 02, 2026
53 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
14:EF:AE:30:29:C2:0C:CF:F6:85:34:C6:FA:96:7F:F5:40:9B:5B:B0:E3:83:EE:70:B7:A8:46:53:8E:16:6A:7E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
uux1.xyz
*.uux1.xyz
*.1388km.uux1.xyz
*.daohang.uux1.xyz
*.nav.uux1.xyz
*.qaz.uux1.xyz
*.sm.uux1.xyz
*.sma.uux1.xyz
*.yh.uux1.xyz
afriagent.com
*.afriagent.com
africabikes.com
*.africabikes.com
africaclassifieds.com
*.africaclassifieds.com
*.app.espa.services
*.autodiscover.espa.services
*.cpanel.espa.services
*.cpcalendars.espa.services
*.cpcontacts.espa.services
espa.services
*.espa.services
*.ipv6.espa.services
*.m.espa.services
*.sitemaps.espa.services
*.webdisk.espa.services
*.webmail.espa.services
*.www.espa.services
*.app.funniez.net
funniez.net
*.funniez.net
*.wildcard.funniez.net
*.www.funniez.net
just-taste.com
*.just-taste.com
*.cpanel.kacangijo3.click
*.cpcontacts.kacangijo3.click
kacangijo3.click
*.kacangijo3.click
*.m.kacangijo3.click
newisci.space
*.newisci.space
*.oneaffinity.newisci.space
*.mail.pe99.org
pe99.org
*.pe99.org
perfectteeth757659.icu
*.perfectteeth757659.icu
*.amicexpress.platrons.com
*.demoo.platrons.com
platrons.com
*.platrons.com
*.plusnaija.platrons.com
*.preview.platrons.com
*.usatrustunion.platrons.com
politicalamazon.com
*.politicalamazon.com
*.ww38.politicalamazon.com
*.1t8.qqb1.com
qqb1.com
*.qqb1.com
*.rrz.qqb1.com
*.t0j.qqb1.com
*.ww25.qqb1.com
*.www.qqb1.com
schweighofer-initiative.org
*.schweighofer-initiative.org
sexyvids.cc
*.sexyvids.cc
*.ww25.sexyvids.cc
simboluri.com
*.simboluri.com
*.ww25.simboluri.com
*.fqtg.thegladgame.net
thegladgame.net
*.thegladgame.net
tublamugolf.com
*.tublamugolf.com
*.zhujunhua.tublamugolf.com
*.ftp.vip777.pro
*.pop.vip777.pro
*.smtp.vip777.pro
vip777.pro
*.vip777.pro
woodenapple.blog
*.woodenapple.blog
*.webdisk.zaikachesterfield.co.uk
*.www.zaikachesterfield.co.uk
zaikachesterfield.co.uk
*.zaikachesterfield.co.uk
Other domains in certificate