Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=mediateur-apic.com
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
May 31, 2026
Valid Until
August 29, 2026
67 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
71:D5:A8:EF:0F:F2:69:5A:2A:9C:9E:DF:FC:70:5E:C9:58:41:28:AE:D0:28:C6:DD:D0:B5:21:85:0D:F2:9E:39
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
xn--r00a.com
*.xn--r00a.com
*.bbs.xn--r00a.com
*.access.kielar.com
*.admin.kielar.com
*.autoconfig.kielar.com
*.autodiscover.kielar.com
*.cloud.kielar.com
*.cloudvpn.kielar.com
*.connect.kielar.com
*.drvpn.kielar.com
*.email.kielar.com
*.exchange.kielar.com
*.firewall.kielar.com
*.gate.kielar.com
*.gateway.kielar.com
kielar.com
*.kielar.com
*.m.kielar.com
*.mail.kielar.com
*.owa.kielar.com
*.ra.kielar.com
*.remote.kielar.com
*.smtp.kielar.com
*.ssl.kielar.com
*.sslvpn.kielar.com
*.webmail.kielar.com
*.webvpn.kielar.com
*.ww1.kielar.com
*.ww16.kielar.com
mediateur-apic.com
*.mediateur-apic.com
*.beta.pristinetoday.com
*.blog.pristinetoday.com
*.forum.pristinetoday.com
*.help.pristinetoday.com
pristinetoday.com
*.pristinetoday.com
*.shop.pristinetoday.com
*.staging.pristinetoday.com
*.temp.pristinetoday.com
*.vpn2.pristinetoday.com
*.wp.pristinetoday.com
*.www.pristinetoday.com
pygcd.gdn
*.pygcd.gdn
reasonedtravel.xyz
*.reasonedtravel.xyz
sasbrinternationaltrade.com
*.sasbrinternationaltrade.com
shadarenacode.com
*.shadarenacode.com
sidsaignoo.net
*.sidsaignoo.net
stlouismedicalclinic.net
*.stlouismedicalclinic.net
tailoredsymmetry.com
*.tailoredsymmetry.com
transaction-sec.cfd
*.transaction-sec.cfd
transmit.au
*.transmit.au
transparenttravelplans.live
*.transparenttravelplans.live
travelexpresstrust.live
*.travelexpresstrust.live
travelreliabilitysolutions.live
*.travelreliabilitysolutions.live
uburubur3.sbs
*.uburubur3.sbs
wiflambo.lol
*.wiflambo.lol
www555wc.com
*.www555wc.com
*.apps.xn--9uw832g.com
*.desktop.xn--9uw832g.com
*.gp.xn--9uw832g.com
*.hostmaster.xn--9uw832g.com
*.portal.xn--9uw832g.com
*.rds.xn--9uw832g.com
*.secure.xn--9uw832g.com
*.ssl.xn--9uw832g.com
*.vpn1.xn--9uw832g.com
*.vpnssl.xn--9uw832g.com
xn--9uw832g.com
*.xn--9uw832g.com
ymxbet7.com
*.ymxbet7.com
zundomarix.sbs
*.zundomarix.sbs
Other domains in certificate