Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=vaga-online.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
December 20, 2025
Valid Until
March 20, 2026
33 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
ED:EA:3B:32:80:B4:73:4D:37:C9:60:7C:BF:CD:41:C7:39:86:9B:68:19:23:DE:A3:1B:8D:03:8D:A7:15:14:79
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
subscribers.live
*.subscribers.live
*.login.subscribers.live
*.o365.subscribers.live
addresslabels.com.au
*.addresslabels.com.au
adobeesign.com
*.adobeesign.com
*.au1.adobeesign.com
*.control.adobeesign.com
*.eu.adobeesign.com
*.eu1.adobeesign.com
*.helpdesk.adobeesign.com
*.jp.adobeesign.com
*.jp1.adobeesign.com
*.live.adobeesign.com
*.login.adobeesign.com
*.na1.adobeesign.com
*.na2.adobeesign.com
*.na3.adobeesign.com
*.na4.adobeesign.com
*.random.adobeesign.com
*.school.adobeesign.com
*.sg1.adobeesign.com
*.shop.adobeesign.com
*.spb.adobeesign.com
*.ww25.adobeesign.com
*.www.adobeesign.com
*.br.dentsplaysirona.com
dentsplaysirona.com
*.dentsplaysirona.com
*.bestspinner.emoneyspro.com
emoneyspro.com
*.emoneyspro.com
*.freestuffs.emoneyspro.com
fintrademine.com
*.fintrademine.com
friendlymovers.co.uk
*.friendlymovers.co.uk
*.analytics-storage.ihentai.bio
*.failover-kpi.ihentai.bio
ihentai.bio
*.ihentai.bio
*.poc.ihentai.bio
*.slave-vis.ihentai.bio
*.trends-preprod.ihentai.bio
kuaiingmaihuo.com
*.kuaiingmaihuo.com
*.seler.kuaiingmaihuo.com
*.seller.kuaiingmaihuo.com
*.uat.kuaiingmaihuo.com
*.ww2seller.kuaiingmaihuo.com
milazzo.live
*.milazzo.live
mytoon.top
*.mytoon.top
newedu.com
*.newedu.com
*.operator.newedu.com
*.random.newedu.com
squaredealcarspares.co.uk
*.squaredealcarspares.co.uk
*.checkout.targettimes.online
*.cpcontacts.targettimes.online
*.mail.targettimes.online
targettimes.online
*.targettimes.online
*.webdisk.targettimes.online
*.ww.targettimes.online
*.ww38.targettimes.online
*.bi.vaga-online.com
*.cadastro.vaga-online.com
*.comww.vaga-online.com
*.comww16.vaga-online.com
*.extra.vaga-online.com
*.leroy.vaga-online.com
*.leroymerlin.vaga-online.com
*.production.vaga-online.com
*.sesi.vaga-online.com
vaga-online.com
*.vaga-online.com
*.www1.vaga-online.com
xn--tl3bs2gt7d30d75i.com
*.xn--tl3bs2gt7d30d75i.com
*.game.xuhuong.me
*.new.xuhuong.me
*.ww25.xuhuong.me
xuhuong.me
*.xuhuong.me
Other domains in certificate