SSL Certificate Analysis for spacecypex.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=ashemaletuve.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 21, 2026

Valid Until

August 19, 2026 84 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

68:5C:4B:1F:EE:8F:0C:29:A8:20:0C:29:23:63:6A:94:3B:53:97:10:8A:0F:3C:64:FD:5B:E1:E3:B8:B4:17:57

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

spacecypex.com *.spacecypex.com *.admin.spacecypex.com *.remote.spacecypex.com *.sitemaps.spacecypex.com *.vpn.spacecypex.com

Other domains in certificate

ashemaletuve.com *.ashemaletuve.com *.ci.ashemaletuve.com *.es.ashemaletuve.com *.filme.ashemaletuve.com *.flow.ashemaletuve.com *.media.ashemaletuve.com *.superset.ashemaletuve.com *.ww16.ashemaletuve.com *.ww25.ashemaletuve.com *.ww38.ashemaletuve.com

df2doc.com *.df2doc.com *.ww16.df2doc.com *.ww25.df2doc.com *.ww38.df2doc.com

goghighlevel.com *.goghighlevel.com *.ww25.goghighlevel.com

*.465704a2-0d69-49f9-83b7-94d75776524d.hdbe-t.xyz *.6776229.hdbe-t.xyz *.7887862.hdbe-t.xyz *.8892397.hdbe-t.xyz *.api.hdbe-t.xyz *.app.hdbe-t.xyz *.backend.hdbe-t.xyz *.beta.hdbe-t.xyz *.d.hdbe-t.xyz *.docs.hdbe-t.xyz hdbe-t.xyz *.hdbe-t.xyz *.members.hdbe-t.xyz *.www.hdbe-t.xyz

heritageparkcare.com *.heritageparkcare.com *.kubeflow-pipeline.heritageparkcare.com *.pipelines.heritageparkcare.com

lowbikes.com *.lowbikes.com *.random.lowbikes.com

mypetsupplies.com.au *.mypetsupplies.com.au *.random.mypetsupplies.com.au *.ww16.mypetsupplies.com.au

*.design.panaera.com *.images.panaera.com *.nhac.panaera.com panaera.com *.panaera.com *.random.panaera.com *.sandbox.panaera.com *.up.panaera.com *.ww16.panaera.com *.zmail.panaera.com

retirementplan.de *.retirementplan.de

robertsupholstery.com *.robertsupholstery.com *.vpn.robertsupholstery.com *.www.robertsupholstery.com

*.api.thesmilesdental.com *.m.thesmilesdental.com thesmilesdental.com *.thesmilesdental.com

*.ka.trndbeauty.com trndbeauty.com *.trndbeauty.com

*.checkout.unbelievablepower.com *.cloud.unbelievablepower.com *.dev.unbelievablepower.com *.login.unbelievablepower.com *.m.unbelievablepower.com *.portal.unbelievablepower.com *.rd.unbelievablepower.com unbelievablepower.com *.unbelievablepower.com

*.buros.used-motorcycles.net *.checkout.used-motorcycles.net *.m.used-motorcycles.net *.mx.used-motorcycles.net *.random.used-motorcycles.net used-motorcycles.net *.used-motorcycles.net