Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=meguirs.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 26, 2026
Valid Until
April 26, 2026
73 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
80:2B:8C:D0:BB:3A:D4:EE:EC:05:F7:7C:F8:9F:E8:8C:6D:E1:7B:98:88:E5:FF:CA:96:51:52:89:3E:B1:8F:3B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
67 domains
urcl.com
*.urcl.com
aniapg.pl
*.aniapg.pl
*.betwww.aniapg.pl
basicbeauty.com.au
*.basicbeauty.com.au
browns-garage.co.uk
*.browns-garage.co.uk
cherokeewindows.com
*.cherokeewindows.com
clpbc5.com
*.clpbc5.com
consultlegal.com
*.consultlegal.com
cultureofmindfulness.com
*.cultureofmindfulness.com
dietdrill.com
*.dietdrill.com
digitalasia.com.au
*.digitalasia.com.au
domainshield.co.uk
*.domainshield.co.uk
elisbon.com
*.elisbon.com
*.cpcalendars.evolutionsupplements.com.au
*.cpcontacts.evolutionsupplements.com.au
evolutionsupplements.com.au
*.evolutionsupplements.com.au
*.mail.evolutionsupplements.com.au
*.ww38.evolutionsupplements.com.au
gwanmuopwaw.com
*.gwanmuopwaw.com
lansvallarta.club
*.lansvallarta.club
*.random.lansvallarta.club
leakfestive.com
*.leakfestive.com
meguirs.com
*.meguirs.com
mpoly.xyz
*.mpoly.xyz
*.top.mpoly.xyz
*.ww25.mpoly.xyz
*.ww38.mpoly.xyz
mzlu.com
*.mzlu.com
newville.news
*.newville.news
optimo.company
*.optimo.company
pinellipartners.online
*.pinellipartners.online
ppinki.com
*.ppinki.com
preciodiarioelectricidad.com
*.preciodiarioelectricidad.com
ritapater.com
*.ritapater.com
selectedtopics.com
*.selectedtopics.com
studentenbaan.net
*.studentenbaan.net
teqg.com
*.teqg.com
treadmillaustralia.com.au
*.treadmillaustralia.com.au
Other domains in certificate