DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=carvend.io
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 19, 2025
Valid Until
March 19, 2026 37 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C0:5A:EE:B4:1E:5E:C4:42:2B:3A:63:42:B1:2D:17:62:A9:7F:BA:80:A6:FB:83:34:F7:15:B9:F4:3D:EE:33:53
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
vitamins.live *.vitamins.live *.dan.vitamins.live *.jebjphpahptnagsbokoq.vitamins.live *.smtp.vitamins.live *.test.vitamins.live *.www.vitamins.live

Other domains in certificate

bde.bio *.bde.bio
beylikduzu.site *.beylikduzu.site *.gggy3t5.beylikduzu.site *.moudn5uh.beylikduzu.site *.z4o26wmk.beylikduzu.site
carvend.io *.carvend.io *.ww25.carvend.io
duelbits.us *.duelbits.us *.ww25.duelbits.us
kbvk.tv *.kbvk.tv
*.1.kinoiihjoote1.shop *.10.kinoiihjoote1.shop *.11.kinoiihjoote1.shop *.12.kinoiihjoote1.shop *.13.kinoiihjoote1.shop *.14.kinoiihjoote1.shop *.15.kinoiihjoote1.shop *.16.kinoiihjoote1.shop *.17.kinoiihjoote1.shop *.2.kinoiihjoote1.shop *.3.kinoiihjoote1.shop *.5.kinoiihjoote1.shop *.6.kinoiihjoote1.shop *.7.kinoiihjoote1.shop *.8.kinoiihjoote1.shop *.9.kinoiihjoote1.shop kinoiihjoote1.shop *.kinoiihjoote1.shop
lectormiau.co *.lectormiau.co *.ww38.lectormiau.co
*.apnamovies.movieskafanda.xyz movieskafanda.xyz *.movieskafanda.xyz *.web.movieskafanda.xyz *.ww25.movieskafanda.xyz
*.beta.netlife.blog netlife.blog *.netlife.blog *.ww25.netlife.blog *.ww38.netlife.blog
palazzo.live *.palazzo.live
pgplay24h.net *.pgplay24h.net *.sitemaps.pgplay24h.net
poopscape.com *.poopscape.com
*.bk.popularusa.online popularusa.online *.popularusa.online
*.nocrawl.ruthrequire.com ruthrequire.com *.ruthrequire.com *.ww25.ruthrequire.com
seria.store *.seria.store *.www.seria.store
*.arruayasociados.tarjetas.digital *.caeto.tarjetas.digital *.cpanel.tarjetas.digital *.cpcalendars.tarjetas.digital *.cpcontacts.tarjetas.digital *.exploraistmo.tarjetas.digital *.fatima.tarjetas.digital *.intendenta.tarjetas.digital *.mail.tarjetas.digital *.panamtours.tarjetas.digital tarjetas.digital *.tarjetas.digital *.vps.tarjetas.digital *.webdisk.tarjetas.digital *.webmail.tarjetas.digital *.ww38.tarjetas.digital *.www.tarjetas.digital
*.random.topreise.com topreise.com *.topreise.com