Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=rentalroom.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 12, 2026
Valid Until
May 13, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
77:76:76:D0:DA:A1:1C:9B:9A:C4:A1:A1:26:C9:85:55:10:6B:A6:B8:7F:55:7A:49:F1:A1:F2:7D:22:55:4D:FB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
footguards.com
*.footguards.com
*.sitemaps.footguards.com
*.store.footguards.com
*.wiki.footguards.com
*.ww25.footguards.com
actchealth.com.au
*.actchealth.com.au
bajiliveonline.vip
*.bajiliveonline.vip
*.portal.bajiliveonline.vip
bertrand-gadenne.com
*.bertrand-gadenne.com
*.ww38.bertrand-gadenne.com
clothingheaters.com
*.clothingheaters.com
cryptoassets.life
*.cryptoassets.life
*.avito.gold33slot.com
*.com.gold33slot.com
gold33slot.com
*.gold33slot.com
*.org.gold33slot.com
gurao.com
*.gurao.com
*.hostmaster.gurao.com
*.vpn.gurao.com
*.ww1.gurao.com
*.ww11.gurao.com
*.ww16.gurao.com
*.ww25.gurao.com
*.ww38.gurao.com
ids-proz.xyz
*.ids-proz.xyz
*.pop.ids-proz.xyz
*.backup.neerajparnami.com
*.mail.neerajparnami.com
neerajparnami.com
*.neerajparnami.com
*.nla-4cbd-8f8f-941c7aa51021.neerajparnami.com
*.pzesav1.neerajparnami.com
*.secure.neerajparnami.com
*.staging.neerajparnami.com
*.stg.neerajparnami.com
*.test.neerajparnami.com
*.uat.neerajparnami.com
*.web.neerajparnami.com
oos.au
*.oos.au
*.backend.quotemondiali.com
*.owa.quotemondiali.com
quotemondiali.com
*.quotemondiali.com
rentalroom.it
*.rentalroom.it
*.www.rentalroom.it
sangani.com
*.sangani.com
tefillah.com
*.tefillah.com
*.w.tefillah.com
*.ww11.tefillah.com
*.wwww.tefillah.com
*.app.teslatv.uk
teslatv.uk
*.teslatv.uk
*.pay.uschess.live
uschess.live
*.uschess.live
*.00eaef37-e8e7-4786-b648-121252297804.vicwin.diy
*.4fd0f8d6-0782-43b8-9297-61888f2053bd.vicwin.diy
*.api.vicwin.diy
*.blog.vicwin.diy
*.central.vicwin.diy
*.cgybccentral.vicwin.diy
*.e2a4d7e7-733c-4fe1-9f60-dee3a3def82c.vicwin.diy
*.ftp.vicwin.diy
*.hostmaster.vicwin.diy
*.localhost.vicwin.diy
*.members.vicwin.diy
*.pop.vicwin.diy
*.test.vicwin.diy
vicwin.diy
*.vicwin.diy
*.webdisk.vicwin.diy
*.webmail.vicwin.diy
*.whm.vicwin.diy
*.ww38.xiase3.com
xiase3.com
*.xiase3.com
Other domains in certificate