DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=rainbowgorilla.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 09, 2026
Valid Until
May 10, 2026 87 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EB:27:90:9B:DC:B9:4C:DA:8A:BA:72:D2:AD:74:57:CE:7B:79:D4:3B:8E:94:44:19:FF:41:0B:D0:FC:3F:FC:04
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
v1sion.com *.v1sion.com *.access.v1sion.com *.admin.v1sion.com *.anyconnect.v1sion.com *.autodiscover.v1sion.com *.cisco.v1sion.com *.ciscoasa.v1sion.com *.ciscovpn.v1sion.com *.cloud.v1sion.com *.cloudvpn.v1sion.com *.cpcalendars.v1sion.com *.email.v1sion.com *.firewall.v1sion.com *.gateway.v1sion.com *.imap.v1sion.com *.m.v1sion.com *.mail.v1sion.com *.portal.v1sion.com *.ravpn.v1sion.com *.secure.v1sion.com *.sitemap.v1sion.com *.smtp.v1sion.com *.ssl.v1sion.com *.vpn.v1sion.com *.webdisk.v1sion.com

Other domains in certificate

66662266zz5.shop *.66662266zz5.shop *.com.66662266zz5.shop
aquaseven.co.uk *.aquaseven.co.uk *.bk.aquaseven.co.uk
attorney.solutions *.attorney.solutions
*.belegaliza.colpi.com colpi.com *.colpi.com *.wiki.colpi.com
*.anuncios.countryman.it countryman.it *.countryman.it
*.corinneanita.derrvis.sbs derrvis.sbs *.derrvis.sbs *.irmasydnee.derrvis.sbs *.shaniquajordan.derrvis.sbs *.vanesavalerie.derrvis.sbs
ganacafe.co.uk *.ganacafe.co.uk
giftfinder.co *.giftfinder.co
hotstaradblocker.com *.hotstaradblocker.com *.ssh.hotstaradblocker.com
hugendubbel.de *.hugendubbel.de *.vpn.hugendubbel.de
*.cpcalendars.juneweddingdiaries.com juneweddingdiaries.com *.juneweddingdiaries.com
*.analytics.loads.it *.backend.loads.it loads.it *.loads.it
*.mail.maillog.com maillog.com *.maillog.com *.vpn.maillog.com
malachite.xyz *.malachite.xyz *.wildcard.malachite.xyz
momentum-wealth.com *.momentum-wealth.com *.vpn.momentum-wealth.com
northcomwreckers.com.au *.northcomwreckers.com.au
*.hostmaster.painted.it painted.it *.painted.it
*.admin.rainbowgorilla.com rainbowgorilla.com *.rainbowgorilla.com
*.mail.virtualvillagers3.net virtualvillagers3.net *.virtualvillagers3.net
*.sip.walkcloset.com walkcloset.com *.walkcloset.com
webmin.co *.webmin.co