Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=columbussoup.org
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 08, 2026
Valid Until
April 08, 2026 44 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
40:AB:DA:2A:78:4F:26:66:2C:58:C0:5A:F5:19:19:03:44:6B:94:3F:F9:DE:B0:06:3E:CD:3F:8D:68:81:27:15
Alternative Names

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
srt.au *.srt.au *.paypal-corp.srt.au *.random.srt.au *.rchlam.srt.au

Other domains in certificate

111540a.com *.111540a.com
360fx.info *.360fx.info
babyies.com *.babyies.com
bgtv.site *.bgtv.site
*.2024.bitcoingpu.org *.app.bitcoingpu.org bitcoingpu.org *.bitcoingpu.org *.random.bitcoingpu.org
bitcointickets.com *.bitcointickets.com *.dan.bitcointickets.com *.unhappy.bitcointickets.com
bitlayer.pro *.bitlayer.pro *.docs.bitlayer.pro
caomei11.xyz *.caomei11.xyz
carparkrental.online *.carparkrental.online
columbussoup.org *.columbussoup.org *.staging.columbussoup.org
conscientiousjob.top *.conscientiousjob.top
coordination-transfrontaliere.org *.coordination-transfrontaliere.org
dhvhjdiv.cc *.dhvhjdiv.cc
dkanime.online *.dkanime.online
driverlessbus.com.au *.driverlessbus.com.au
esmeralda.au *.esmeralda.au *.wildcard.esmeralda.au
*.autodiscover.ettalong.com.au *.cpanel.ettalong.com.au *.cpcalendars.ettalong.com.au *.cpcontacts.ettalong.com.au ettalong.com.au *.ettalong.com.au *.mail.ettalong.com.au *.random.ettalong.com.au
findallmedia.top *.findallmedia.top
grillflame.com *.grillflame.com
*.admin.helpmedevon.info helpmedevon.info *.helpmedevon.info
hhgergg.com *.hhgergg.com
igea.group *.igea.group
inksincere.com *.inksincere.com
js-video.xyz *.js-video.xyz
kdramahood.org *.kdramahood.org
kingdomtoto0622.com *.kingdomtoto0622.com
nursingservices.com.au *.nursingservices.com.au *.wildcard.nursingservices.com.au
properyradar.com *.properyradar.com
pusatliga88.xyz *.pusatliga88.xyz
solncrb.info *.solncrb.info
thottube.ch *.thottube.ch
tosils.com *.tosils.com
*.admin.unitoolstore.com unitoolstore.com *.unitoolstore.com
wssiajdfty.net *.wssiajdfty.net