Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=gotoseka.xyz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 03, 2026
Valid Until
May 04, 2026
82 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4F:CC:CD:8F:45:CA:9F:9F:7D:24:30:69:12:71:C5:9F:98:DA:91:1F:45:A4:B0:49:98:44:7D:1A:E7:CC:05:79
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
fangjun.com
*.fangjun.com
*.owa.fangjun.com
*.portal.fangjun.com
*.remote.fangjun.com
*.webmail.fangjun.com
*.ww1.fangjun.com
ads-world.co.uk
*.ads-world.co.uk
*.cpcalendars.ads-world.co.uk
*.wdsworldnew.ads-world.co.uk
*.ww01.ads-world.co.uk
areskoug.com
*.areskoug.com
*.ww25.areskoug.com
barcodesurplus.com
*.barcodesurplus.com
*.blog.barcodesurplus.com
*.hostmaster.barcodesurplus.com
*.portal.barcodesurplus.com
*.sitemap.barcodesurplus.com
*.vpn.barcodesurplus.com
cbeditingpng.com
*.cbeditingpng.com
*.classifieds.cbeditingpng.com
*.nike.cbeditingpng.com
*.qagatekeeper.cbeditingpng.com
comprarbarato.com
*.comprarbarato.com
*.crm.comprarbarato.com
comprasegura.com
*.comprasegura.com
*.ww01.comprasegura.com
dviantart.com
*.dviantart.com
*.elenadudina.dviantart.com
*.feliche.dviantart.com
*.g-i-z-m-o.dviantart.com
*.jukara.dviantart.com
*.ka-tana.dviantart.com
*.nif.dviantart.com
*.ww17.dviantart.com
gotoseka.xyz
*.gotoseka.xyz
*.mail.gotoseka.xyz
*.activate.hawp.com
*.casper.hawp.com
hawp.com
*.hawp.com
*.leads.hawp.com
*.np.hawp.com
*.rma.hawp.com
*.ww01.hawp.com
*.ww1.hawp.com
hollywoodactress.org
*.hollywoodactress.org
*.ww38.hollywoodactress.org
keydacare.com
*.keydacare.com
*.ww25.keydacare.com
*.ww38.keydacare.com
maximoda.store
*.maximoda.store
*.sitemap.maximoda.store
mstdn.wiki
*.mstdn.wiki
*.original.mstdn.wiki
*.argo.plantat.com
plantat.com
*.plantat.com
plasticsupplyofnashville.com
*.plasticsupplyofnashville.com
*.ww38.plasticsupplyofnashville.com
*.hostmaster.pleinsfeux.net
pleinsfeux.net
*.pleinsfeux.net
*.wildcard.pleinsfeux.net
*.ww16.pleinsfeux.net
*.www.pleinsfeux.net
*.demo.pondon.com
pondon.com
*.pondon.com
*.admin.teminix.com
*.customer.teminix.com
teminix.com
*.teminix.com
*.www.teminix.com
uruttugalumthiruttugalum.co
*.uruttugalumthiruttugalum.co
Other domains in certificate