DNS Gurus
Open Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=heritageatkentfarm.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
December 02, 2025
Valid Until
March 02, 2026 87 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
23:19:DF:1B:F6:FD:B0:8C:56:0F:E8:33:EA:A5:77:BF:4F:8C:78:61:72:8A:90:A4:BF:43:E1:90:71:EA:41:B3
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
wowgame.space *.wowgame.space

Other domains in certificate

*.22.youwuaa1.top
*.23.youwuaa1.top
*.24.youwuaa1.top
*.26.youwuaa1.top
*.27.youwuaa1.top
abbroket.eu *.abbroket.eu
*.akamai-inputs-khov.atl-res.com *.ap-chiyoda-1.atl-res.com atl-res.com *.atl-res.com *.beowulf.atl-res.com *.clara-dev.atl-res.com *.classdismissed.atl-res.com *.co.atl-res.com *.compute.atl-res.com *.d02.atl-res.com *.de.atl-res.com *.edu207.atl-res.com *.manage-beta.atl-res.com *.smtp.atl-res.com *.supplychaininsights.atl-res.com *.tdc.atl-res.com *.w.atl-res.com
but-european-made.eu *.but-european-made.eu
cardolly.com *.cardolly.com
clipz.live *.clipz.live
deskhomeoffice.eu *.deskhomeoffice.eu
elica-hotel.eu *.elica-hotel.eu
espace.work *.espace.work
geoci.com *.geoci.com
gotlinks.co *.gotlinks.co *.ws.gotlinks.co *.wss.gotlinks.co *.ww16.gotlinks.co
*.admin.heritageatkentfarm.com heritageatkentfarm.com *.heritageatkentfarm.com
homeonpatia.eu *.homeonpatia.eu
isrbx.eu *.isrbx.eu
love4rent.eu *.love4rent.eu
microsoftonlinr.com *.microsoftonlinr.com *.smttsrccpatan.microsoftonlinr.com
mitsubishcars.com *.mitsubishcars.com
myfitwheels.eu *.myfitwheels.eu
orc.bio *.orc.bio *.sitemap.orc.bio *.ww25.orc.bio
priceleline.com *.priceleline.com
proflagi.eu *.proflagi.eu
rawaq.org *.rawaq.org
*.random.rhythmus.de rhythmus.de *.rhythmus.de
rokettubee.net *.rokettubee.net
*.comune.seal-premium.com seal-premium.com *.seal-premium.com
*.letter.time4math.com *.search.time4math.com time4math.com *.time4math.com
vedictotalgreen.com *.vedictotalgreen.com
veyunablea.site *.veyunablea.site
*.ww16.youwuaa1.top youwuaa1.top *.youwuaa1.top