DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=lasikresearch529260.icu
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 18, 2025
Valid Until
March 18, 2026 54 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0F:37:E9:9F:7E:E1:88:5B:17:55:73:07:19:DF:51:BA:DF:99:5D:DD:B8:AB:FC:53:CB:A2:D2:E3:2B:C4:06:42
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
vertriebs.com *.vertriebs.com *.rustore.vertriebs.com *.vpn.vertriebs.com

Other domains in certificate

albertoandsonkitchen.com *.albertoandsonkitchen.com *.ftp.albertoandsonkitchen.com
amerihealhcaritasnc.com *.amerihealhcaritasnc.com
angloid.com *.angloid.com *.confluence.angloid.com *.mail.angloid.com
ardene.au *.ardene.au
bangbrosblackpron.com *.bangbrosblackpron.com
bestadvice.au *.bestadvice.au
citels.com *.citels.com *.images.citels.com *.ww16.citels.com
dentalteamoftn.org *.dentalteamoftn.org *.random.dentalteamoftn.org
*.ap.dronken.com dronken.com *.dronken.com *.rustore.dronken.com *.ww25.dronken.com *.ww38.dronken.com
examples.design *.examples.design
*.beta.heritrix.com heritrix.com *.heritrix.com *.video.heritrix.com *.ww17.heritrix.com *.ww25.heritrix.com *.ww38.heritrix.com
inattv6.xyz *.inattv6.xyz *.ww16.inattv6.xyz
juiced.com.au *.juiced.com.au
junzhang.com *.junzhang.com *.sitemaps.junzhang.com *.ww25.junzhang.com
*.11.lacasadearte.com *.bbs.lacasadearte.com *.hosting.lacasadearte.com lacasadearte.com *.lacasadearte.com *.ww38.lacasadearte.com
lasikresearch529260.icu *.lasikresearch529260.icu
leonardi.io *.leonardi.io
melleby.com *.melleby.com *.random.melleby.com *.users.melleby.com *.ww38.melleby.com
nbtbabk.com *.nbtbabk.com
noexistsymposium.click *.noexistsymposium.click
octopart.co *.octopart.co
pikahd.site *.pikahd.site
same-day-glasses-uk.com *.same-day-glasses-uk.com
sneaking.me *.sneaking.me
tosh.live *.tosh.live
totaalrenovatiebadkamer956211.icu *.totaalrenovatiebadkamer956211.icu
*.autodiscover.vaasthu.com vaasthu.com *.vaasthu.com
wasco.net.au *.wasco.net.au
weightlossfood.com *.weightlossfood.com
xn--oy2b17n6tcx3c5ws.com *.xn--oy2b17n6tcx3c5ws.com