Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=osusume-ski-guide.xyz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 14, 2025
Valid Until
March 14, 2026
35 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9F:64:91:F9:61:40:55:D9:3D:8A:0D:C8:68:7F:C0:C4:E6:31:86:74:FD:E5:6C:53:85:6F:24:40:D1:98:2A:A0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
75 domains
tf-games.site
*.tf-games.site
*.1.tf-games.site
*.2.tf-games.site
*.25.tf-games.site
*.3.tf-games.site
*.38.tf-games.site
*.6kgoohmdprex7def.tf-games.site
*.bwsvjbjlu7xdslcq.tf-games.site
*.e1y3gija0maqxlcn.tf-games.site
*.ww1.tf-games.site
*.ww2.tf-games.site
*.ww25.tf-games.site
*.ww38.tf-games.site
*.109.34.com.au
*.120.34.com.au
*.156.34.com.au
*.16.34.com.au
*.210.34.com.au
34.com.au
*.34.com.au
*.61.34.com.au
*.lax0.34.com.au
*.mail.34.com.au
*.monitor.34.com.au
*.supportteamwestpac.34.com.au
*.td.34.com.au
*.test7.34.com.au
*.ww38.34.com.au
3isqdf.sbs
*.3isqdf.sbs
detran-cnh.me
*.detran-cnh.me
digital-hub-app.work
*.digital-hub-app.work
*.ww25.digital-hub-app.work
*.beacon.legacycaraudio.com
*.dbis.legacycaraudio.com
legacycaraudio.com
*.legacycaraudio.com
*.random.legacycaraudio.com
*.ww16.legacycaraudio.com
*.ww38.legacycaraudio.com
*.ww43.legacycaraudio.com
leicausa.com
*.leicausa.com
*.random.leicausa.com
*.ww1.leicausa.com
*.ww16.leicausa.com
macyx.xyz
*.macyx.xyz
*.1.news-article.online
*.2.news-article.online
*.25.news-article.online
*.3.news-article.online
*.38.news-article.online
*.7bhcjps7r4lr7apu.news-article.online
*.bingo.news-article.online
*.kos.news-article.online
news-article.online
*.news-article.online
*.random.news-article.online
*.ww1.news-article.online
*.ww2.news-article.online
*.ww25.news-article.online
*.ww3.news-article.online
*.ww38.news-article.online
*.buyiycpanel.osusume-ski-guide.xyz
osusume-ski-guide.xyz
*.osusume-ski-guide.xyz
parttime53.com
*.parttime53.com
*.ww25.parttime53.com
undredtwo.sbs
*.undredtwo.sbs
Other domains in certificate