Open
Cached
·
just now
79/100
SECURITY SCORE
Certificate Information
Subject
C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=outlook.com
Issuer
C=US, O=DigiCert Inc, CN=DigiCert Cloud Services CA-1
Valid From
November 10, 2025
Valid Until
November 09, 2026
353 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
39:35:BF:CC:EC:88:80:E3:C4:5B:DE:DF:90:CF:5D:28:7F:E6:38:0D:1A:BD:72:B6:D3:06:E3:F6:4F:CD:3A:A4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
Forward Secrecy
Limited
(Check cipher configuration)
Warnings
- • TLS 1.3 is not supported (recommended)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
23 domains
*.clo.footprintdns.com
*.nrb.footprintdns.com
hotmail.com
*.hotmail.com
*.live.com
mail.services.live.com
attachment.outlook.live.net
ccs-sdf.login.microsoftonline.com
ccs.login.microsoftonline.com
*.office.com
outlook.office.com
substrate-sdf.office.com
substrate.office.com
attachment.outlook.office.net
attachments-sdf.office.net
attachments.office.net
office365.com
*.office365.com
*.outlook.office365.com
attachment.outlook.officeppe.net
*.internal.outlook.com
outlook.com
*.outlook.com