Open
Cached
·
just now
69/100
SECURITY SCORE
Certificate Information
Subject
CN=test.collegepass.org
Issuer
C=US, O=Let's Encrypt, CN=R3
Valid From
March 28, 2022
Valid Until
June 26, 2022
Expired
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4F:05:5C:FB:AC:C1:CE:79:52:B2:0B:AE:EB:04:22:5B:F0:F6:85:09:C7:8D:3A:DD:01:0B:14:C7:BD:0F:B7:1A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
- • Consider adding 'issuewild' records to control wildcard certificate issuance