Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=lulunlala.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 09, 2026
Valid Until
May 10, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CB:73:AA:1A:80:AC:2F:65:E7:C8:63:0C:DE:C8:77:59:28:D2:B7:9C:75:8C:D1:A3:B2:09:2C:F1:C9:17:5B:CF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
tvpass.net
*.tvpass.net
*.sitemaps.tvpass.net
*.webmail.tvpass.net
avedahairproducts.com
*.avedahairproducts.com
*.dev.avedahairproducts.com
*.api.bluesungroup.shop
bluesungroup.shop
*.bluesungroup.shop
*.old.bluesungroup.shop
caldaiasicura.com
*.caldaiasicura.com
*.dev.caldaiasicura.com
checkmind.io
*.checkmind.io
*.folio.checkmind.io
*.tools.checkmind.io
denalicreations.com
*.denalicreations.com
dntnthuha.com
*.dntnthuha.com
*.www.dntnthuha.com
*.czfr1khuzr.federala-regering.be
federala-regering.be
*.federala-regering.be
*.comune.hokkaido-jrbb.com
hokkaido-jrbb.com
*.hokkaido-jrbb.com
jadorehospitality.com
*.jadorehospitality.com
*.242920ab-9189-467f-9cab-14688531fab5.jinshengyuan.travel
*.43d9e221-12e8-40b8-a8b0-2bb5fb0adff3.jinshengyuan.travel
*.8a97cf1d-d2ac-482a-a7b5-641e01d558ec.jinshengyuan.travel
*.app.jinshengyuan.travel
jinshengyuan.travel
*.jinshengyuan.travel
*.cpcalendars.lulunlala.com
lulunlala.com
*.lulunlala.com
*.webmail.lulunlala.com
metacognicion.com
*.metacognicion.com
*.shop.metacognicion.com
*.store.metacognicion.com
*.wiki.metacognicion.com
*.ww1.metacognicion.com
rbw4hub.online
*.rbw4hub.online
*.ww38.rbw4hub.online
*.www.rbw4hub.online
*.b.roundbutts.com
*.e.roundbutts.com
*.editor.roundbutts.com
*.fwallow.roundbutts.com
*.home.roundbutts.com
*.like.roundbutts.com
*.random.roundbutts.com
roundbutts.com
*.roundbutts.com
*.xxx.roundbutts.com
*.intranet.saturnfreightteam.com
saturnfreightteam.com
*.saturnfreightteam.com
*.intranet.smallbusinessseminars.com
smallbusinessseminars.com
*.smallbusinessseminars.com
*.apps.teymour.com
*.cloud.teymour.com
*.gateway.teymour.com
*.jzaelmzcge.teymour.com
*.m.teymour.com
*.mail.teymour.com
*.portal.teymour.com
*.rds1.teymour.com
*.rdweb.teymour.com
*.remote.teymour.com
*.sitemaps.teymour.com
teymour.com
*.teymour.com
*.vpn.teymour.com
*.webvpn.teymour.com
*.ww1.teymour.com
*.ww17.teymour.com
*.ww25.teymour.com
tyrerepairs.au
*.tyrerepairs.au
*.ccwszvtsanh.valseriana.com
valseriana.com
*.valseriana.com
Other domains in certificate