SSL Certificate Analysis for technolumiere.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=lemonlightprohq.top

Issuer

C=US, O=Let's Encrypt, CN=YR1

Valid From

June 13, 2026

Valid Until

September 11, 2026 82 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

10:BC:EC:52:73:89:67:B4:1E:EC:77:03:25:C9:36:62:75:12:7D:91:BA:00:4E:6A:1D:4C:77:C9:94:E3:DA:04

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

technolumiere.com *.technolumiere.com

Other domains in certificate

lemonlightprohq.top *.lemonlightprohq.top

liangjiapeixun.com *.liangjiapeixun.com

lido55ba.cloud *.lido55ba.cloud

lido55bi.net *.lido55bi.net

lifecoachlauncher.com *.lifecoachlauncher.com

liuliuzirou.com *.liuliuzirou.com

mahjong69rrtp.one *.mahjong69rrtp.one

mauveslake.com *.mauveslake.com

mavu.xyz *.mavu.xyz

megaclarityspace.click *.megaclarityspace.click

pastoramankwah.com *.pastoramankwah.com

paul797.cyou *.paul797.cyou

predforteprednisone.com *.predforteprednisone.com

pushwindsweet.life *.pushwindsweet.life

quantumxpu.com *.quantumxpu.com

roar76.org *.roar76.org

ruay91s.com *.ruay91s.com

scorchingideas.com *.scorchingideas.com

scrappyjoes.com *.scrappyjoes.com

sdchat.org *.sdchat.org

selectsoftwareapp.top *.selectsoftwareapp.top

shbetz.vip *.shbetz.vip

smartkatalystos.com *.smartkatalystos.com

spencerconetwork.com *.spencerconetwork.com

spencerconxt.com *.spencerconxt.com

spencerpromostactic.com *.spencerpromostactic.com

srisawadscorppcl.com *.srisawadscorppcl.com

stablecoinllc.com *.stablecoinllc.com

stlipchat.com *.stlipchat.com

successcmo.com *.successcmo.com

suidaibao.com *.suidaibao.com

superbet10.top *.superbet10.top

superblinkflow.click *.superblinkflow.click

susdevchat.com *.susdevchat.com

susdt.cc *.susdt.cc

susdt222.com *.susdt222.com

susdt33.com *.susdt33.com

susdt6666.com *.susdt6666.com

susdt77.com *.susdt77.com

susdt8.com *.susdt8.com

swiftblinkfield.click *.swiftblinkfield.click

taxi4d.click *.taxi4d.click

tcjgiqwwzj.qpon *.tcjgiqwwzj.qpon

telvana.top *.telvana.top