SSL Certificate Analysis for values.global - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=oegekg.shop

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

January 08, 2026

Valid Until

April 08, 2026 42 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

81:6F:E6:CD:9B:2B:07:D4:D3:7B:33:C0:2A:1C:A6:3C:CA:A8:0A:DC:BC:2C:59:DA:A5:C6:8B:61:6C:31:03:3E

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

values.global *.values.global *.dan.values.global *.hostmaster.values.global *.models.values.global

Other domains in certificate

20porn.com *.20porn.com *.db.20porn.com *.fiona.20porn.com *.jobs.20porn.com *.m.20porn.com *.mail.20porn.com *.pool.20porn.com *.pop.20porn.com *.users.20porn.com *.ww2.20porn.com *.ww25.20porn.com *.ww38.20porn.com *.www-1.20porn.com *.www.20porn.com

*.6441056b613c32a9.ahita.com ahita.com *.ahita.com *.autoconfig.ahita.com *.correu.ahita.com *.smtpa.ahita.com

deliverflowers.com.au *.deliverflowers.com.au *.ww25.deliverflowers.com.au

*.anyconnect.illaboratorio.com *.billing.illaboratorio.com *.cdn.illaboratorio.com *.cit.illaboratorio.com *.german.illaboratorio.com illaboratorio.com *.illaboratorio.com *.mail.illaboratorio.com *.reg.illaboratorio.com *.secureconnect.illaboratorio.com *.securevpn.illaboratorio.com *.test.illaboratorio.com *.ww25.illaboratorio.com *.ww38.illaboratorio.com

*.m.oegekg.shop *.n3xyz.oegekg.shop *.news.oegekg.shop oegekg.shop *.oegekg.shop *.www.oegekg.shop

*.av.radionet.com *.hn.radionet.com *.jx.radionet.com *.qinghai.radionet.com radionet.com *.radionet.com *.sh.radionet.com *.tj.radionet.com *.ww25.radionet.com *.www.radionet.com *.xinjiang.radionet.com *.zhejiang.radionet.com

*.abbeyarchery.recovery.com.au *.amir.recovery.com.au *.aquarianpearls.recovery.com.au *.asean.recovery.com.au *.atticuswealth.recovery.com.au *.best-ts.recovery.com.au *.btpaustralia.recovery.com.au *.carfax.recovery.com.au *.creativepromotions.recovery.com.au *.deloitte.recovery.com.au *.infotrust.recovery.com.au *.ironbridge.recovery.com.au *.ljhflagstone.recovery.com.au *.mih.recovery.com.au *.nimrodresources.recovery.com.au *.primesupplies.recovery.com.au *.recoveriescorp.recovery.com.au recovery.com.au *.recovery.com.au

*.mta1.smr.sk smr.sk *.smr.sk

telt.org *.telt.org *.ww38.telt.org *.ww6.telt.org

*.r.wgaa.com wgaa.com *.wgaa.com