DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=artesanales.online
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 31, 2026
Valid Until
May 01, 2026 82 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
32:71:1F:D4:4A:B0:A7:3A:4A:E8:95:9D:BE:8F:B8:5C:F1:A9:BA:CE:CB:9C:35:1B:89:E2:57:6D:C7:2E:CE:DA
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
theremodel.com *.theremodel.com

Other domains in certificate

artesanales.online *.artesanales.online *.cpanel.artesanales.online *.cpcalendars.artesanales.online *.webdisk.artesanales.online *.wildcard.artesanales.online
dreammember-journey.com *.dreammember-journey.com *.nwzprr2.dreammember-journey.com
*.api-dev.ecosynthetixa.com *.dist.ecosynthetixa.com ecosynthetixa.com *.ecosynthetixa.com *.home-stage.ecosynthetixa.com *.landing.ecosynthetixa.com
*.cloudsec.embarqail.com embarqail.com *.embarqail.com *.production.embarqail.com *.sq.embarqail.com *.ww1.embarqail.com
guitartabs.au *.guitartabs.au *.wildcard.guitartabs.au
madisonmarcus.com *.madisonmarcus.com *.mail.madisonmarcus.com
smallpens.com *.smallpens.com
tenjinbashi.com *.tenjinbashi.com
teploizol.com *.teploizol.com
thegreatrace.expert *.thegreatrace.expert *.wildcard.thegreatrace.expert
thunya.com *.thunya.com
thurbers.com *.thurbers.com
tiemeyer.com *.tiemeyer.com
titleandescrow.com *.titleandescrow.com
trabajodesdecasa.com *.trabajodesdecasa.com
travelontheedge.live *.travelontheedge.live
tvivel.com *.tvivel.com
tvsehpasi.com *.tvsehpasi.com
twat.to *.twat.to
ubale.com *.ubale.com
urbangossipbuzz.xyz *.urbangossipbuzz.xyz
valutrac.com *.valutrac.com
vehicletransporters.com *.vehicletransporters.com
ventilatoare.com *.ventilatoare.com
videoproducciones.com *.videoproducciones.com
vietface.com *.vietface.com
vimol.com *.vimol.com
way2speak.com *.way2speak.com
weddingsgemshowcase.beauty *.weddingsgemshowcase.beauty
weirdspot.fyi *.weirdspot.fyi
wholesomefoodsafari.food *.wholesomefoodsafari.food
xn--4kr929a.cc *.xn--4kr929a.cc
xn--hcwx25e.com *.xn--hcwx25e.com
xolhx.net *.xolhx.net
yellowvest.com *.yellowvest.com
yurakucho.com *.yurakucho.com