Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=andreabocelli2026tour.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 02, 2026
Valid Until
July 31, 2026
52 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
65:21:FA:78:AA:61:E0:DE:8D:C4:A1:E9:AE:48:18:F4:5A:61:26:36:12:50:27:04:A8:6C:1A:84:B5:04:25:F9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
docupt.com
*.docupt.com
*.backup.docupt.com
*.countyofsb.docupt.com
*.demo.docupt.com
*.desmoineswa.docupt.com
*.explorer.docupt.com
*.hssppr.docupt.com
*.intranet.docupt.com
*.kingston.docupt.com
*.laskecountyohio.docupt.com
*.lqrvuv2.docupt.com
*.maricopaty.docupt.com
*.metrics.docupt.com
*.newmarket.docupt.com
*.pinal.docupt.com
*.portal.docupt.com
*.sandiego.docupt.com
*.superset.docupt.com
*.web.docupt.com
*.webmail.docupt.com
*.www.docupt.com
andreabocelli2026tour.com
*.andreabocelli2026tour.com
*.api.andreabocelli2026tour.com
*.vpn.andreabocelli2026tour.com
*.2027322386.localbizpal.com
*.3073656324.localbizpal.com
*.3433777202.localbizpal.com
*.3522882956.localbizpal.com
*.3612755084.localbizpal.com
*.5106605852.localbizpal.com
*.6177194802.localbizpal.com
*.6678424827.localbizpal.com
*.7872605500.localbizpal.com
*.8228844380.localbizpal.com
*.9052478201.localbizpal.com
*.alnus.localbizpal.com
*.api.localbizpal.com
*.app.localbizpal.com
*.asp.localbizpal.com
*.bigger.localbizpal.com
*.block.localbizpal.com
*.blog.localbizpal.com
*.bocal.localbizpal.com
*.catface.localbizpal.com
*.charca.localbizpal.com
*.cpanel.localbizpal.com
*.dashboard.localbizpal.com
*.demo.localbizpal.com
*.ekka.localbizpal.com
*.fbgaeirs.localbizpal.com
*.flummer.localbizpal.com
*.gamy.localbizpal.com
*.gibus.localbizpal.com
*.gripless.localbizpal.com
*.hex.localbizpal.com
*.hostmaster.localbizpal.com
*.howe.localbizpal.com
*.hypogynium.localbizpal.com
localbizpal.com
*.localbizpal.com
*.magnus.localbizpal.com
*.mail.localbizpal.com
*.marketing.localbizpal.com
*.ovalize.localbizpal.com
*.pirny.localbizpal.com
*.point.localbizpal.com
*.pun.localbizpal.com
*.rakh.localbizpal.com
*.reprice.localbizpal.com
*.reseise.localbizpal.com
*.ropvecpanel.localbizpal.com
*.scree.localbizpal.com
*.scuft.localbizpal.com
*.secure.localbizpal.com
*.showboards.localbizpal.com
*.tapasvi.localbizpal.com
*.teer.localbizpal.com
*.ti.localbizpal.com
*.toph.localbizpal.com
*.ulqnj5106605852.localbizpal.com
*.vineal.localbizpal.com
*.withen.localbizpal.com
*.www.localbizpal.com
*.xtunfjcplgmembers.localbizpal.com
*.checkout.plenne.art
*.cloud.plenne.art
plenne.art
*.plenne.art
Other domains in certificate