SSL Certificate Analysis for so6666.com - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=03000.lgbt

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 05, 2026

Valid Until

May 06, 2026 70 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

08:81:AD:E8:75:64:0D:6E:FF:BE:31:11:AC:3E:AA:28:38:CD:37:98:66:91:3A:C4:0A:26:D7:56:64:8E:C8:F4

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

so6666.com *.so6666.com

Other domains in certificate

03000.lgbt *.03000.lgbt

053650.vip *.053650.vip

05379.net *.05379.net

05380.loans *.05380.loans

054038.vip *.054038.vip

05470.bid *.05470.bid

05525.pizza *.05525.pizza

05617.loan *.05617.loan

05618.loan *.05618.loan

05620.one *.05620.one

056262.club *.056262.club

056677.pizza *.056677.pizza

05669.vip *.05669.vip

057990.vip *.057990.vip

07520.loan *.07520.loan

077276.cfd *.077276.cfd

09247.vip *.09247.vip

0d63be35f4d2f643.com *.0d63be35f4d2f643.com

1-8-8bet.net *.1-8-8bet.net

1005.pizza *.1005.pizza

11d.co *.11d.co

123b9.net *.123b9.net

sichuancuisineking.com *.sichuancuisineking.com

simgenoktasi.org *.simgenoktasi.org

slotlive22th.com *.slotlive22th.com

smaa2.net *.smaa2.net

smartrecognition.expert *.smartrecognition.expert

smarttradenetwork.cyou *.smarttradenetwork.cyou

smarttradeoptions.cfd *.smarttradeoptions.cfd

sodo66.tel *.sodo66.tel

software-us-en2.click *.software-us-en2.click

sophiejackson.com *.sophiejackson.com

sor76jp.cyou *.sor76jp.cyou

space-audiocase.vip *.space-audiocase.vip

space-deal-case.cloud *.space-deal-case.cloud

space-dealvine.best *.space-dealvine.best

spaceaudiovine.buzz *.spaceaudiovine.buzz

spatialgymnast.com *.spatialgymnast.com

spinstoko.xyz *.spinstoko.xyz

srggu.biz *.srggu.biz

startfrom.it *.startfrom.it

stepbystepdiy.xyz *.stepbystepdiy.xyz

storage-technology-345357027.click *.storage-technology-345357027.click

storagesolutionstoronto.org *.storagesolutionstoronto.org