SSL Certificate Analysis for upworkque.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=roka.cc

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 25, 2026

Valid Until

May 26, 2026 89 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

35:D5:51:AF:96:C7:2A:2B:C8:4C:66:FE:02:59:34:F6:10:DA:5E:64:47:DA:8A:E6:40:30:A6:DF:99:CF:49:5D

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

upworkque.com *.upworkque.com *.akora.upworkque.com *.bashberry.upworkque.com *.cpct.upworkque.com *.graffer.upworkque.com *.labelcakori.upworkque.com *.milan.upworkque.com *.wsu.upworkque.com

Other domains in certificate

123anime.org *.123anime.org *.wildcard.123anime.org *.ww25.123anime.org *.ww38.123anime.org

7pm.it *.7pm.it *.hostmaster.7pm.it *.remote.7pm.it

anandaniketan.info *.anandaniketan.info *.m.anandaniketan.info *.random.anandaniketan.info *.sitemap.anandaniketan.info *.ww25.anandaniketan.info *.www.anandaniketan.info

balticwoodtrade.com *.balticwoodtrade.com *.www.balticwoodtrade.com

*.api.dongma.com *.comune.dongma.com dongma.com *.dongma.com *.en.dongma.com *.jiangongyunlian.dongma.com *.marathon.dongma.com *.mlbpark.dongma.com *.support.dongma.com *.vpn.dongma.com

elobjetivo.com *.elobjetivo.com *.ww25.elobjetivo.com

*.dashboard.hopnspace.com hopnspace.com *.hopnspace.com

*.access.infowaresystems.com *.anyconnect.infowaresystems.com *.apps.infowaresystems.com *.connect.infowaresystems.com *.desktop.infowaresystems.com *.fortigate.infowaresystems.com infowaresystems.com *.infowaresystems.com *.login.infowaresystems.com *.logon.infowaresystems.com *.remote2.infowaresystems.com *.sslvpn.infowaresystems.com *.sslvpn2.infowaresystems.com *.sslvpn3.infowaresystems.com *.vpn2.infowaresystems.com *.vpn3.infowaresystems.com *.www.infowaresystems.com

ioaa2015.org *.ioaa2015.org *.ww25.ioaa2015.org

*.hostmaster.lubica.it lubica.it *.lubica.it *.remote.lubica.it *.staging.lubica.it

*.nl.renvoye.com renvoye.com *.renvoye.com *.ww25.renvoye.com

*.authsmtp.roka.cc roka.cc *.roka.cc *.ww25.roka.cc *.www.roka.cc

*.admin.shifangshiye.com *.ko.shifangshiye.com shifangshiye.com *.shifangshiye.com *.wildcard.shifangshiye.com *.www.shifangshiye.com

*.hostmaster.softwaredownload.it softwaredownload.it *.softwaredownload.it

vogogna.it *.vogogna.it *.www.vogogna.it