DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=acrehoje.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 06, 2026
Valid Until
May 07, 2026 84 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8F:95:E4:4F:25:A2:D5:CB:1A:B8:3F:7B:47:F0:B2:B4:B6:8F:99:CC:70:49:FB:8E:E1:59:C2:87:BA:92:53:89
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
toowrite.com *.toowrite.com *.www.toowrite.com

Other domains in certificate

375926.com *.375926.com *.www.375926.com
acrehoje.com *.acrehoje.com *.hostmaster.acrehoje.com *.staging.acrehoje.com
betgar342.com *.betgar342.com *.cdn.betgar342.com
gosi.it *.gosi.it *.staging.gosi.it
*.api.howsay.com howsay.com *.howsay.com
*.fischerten.nis.solutions *.mail.nis.solutions nis.solutions *.nis.solutions *.ww25.nis.solutions
*.nand.osoman.com osoman.com *.osoman.com
*.intranet.qbit.finance qbit.finance *.qbit.finance
*.mx001.telena.it telena.it *.telena.it
thedvdcollection.com *.thedvdcollection.com *.www.thedvdcollection.com
*.mailer.theknott.co theknott.co *.theknott.co *.www.theknott.co
usable-beautiful.com *.usable-beautiful.com *.www.usable-beautiful.com
usahaprediksi188-nyala.my *.usahaprediksi188-nyala.my *.www.usahaprediksi188-nyala.my
usrealty.one *.usrealty.one *.www.usrealty.one
varadhan.com *.varadhan.com *.www.varadhan.com
ven3.live *.ven3.live *.www.ven3.live
videoproducciones.com *.videoproducciones.com *.www.videoproducciones.com
visport.com *.visport.com *.www.visport.com
vloeberghs.com *.vloeberghs.com *.www.vloeberghs.com
voodoojackpots.com *.voodoojackpots.com
vpntools.com *.vpntools.com *.www.vpntools.com
*.demo.warehousedistrict.net warehousedistrict.net *.warehousedistrict.net *.www.warehousedistrict.net
weissbet.casino *.weissbet.casino
wines.tours *.wines.tours
wwwoptimahealth.com *.wwwoptimahealth.com
xemrwp.vip *.xemrwp.vip
xl9ow4p.top *.xl9ow4p.top
xlpdxrmfpqk.cc *.xlpdxrmfpqk.cc
xn--iqr451iotm.com *.xn--iqr451iotm.com
xzwwj.net *.xzwwj.net