SSL Certificate Analysis for xte.cat - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=ykhg9.top

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 04, 2026

Valid Until

May 05, 2026 76 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

E5:DE:2E:FA:E2:B6:6C:4B:BE:AF:86:C7:B1:4C:FF:3B:86:49:D9:3E:52:66:38:58:08:6A:A9:8E:B1:FB:5C:3D

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

xte.cat *.xte.cat

Other domains in certificate

xinchaocdcfba.net *.xinchaocdcfba.net

xmcp.ml *.xmcp.ml

xn--12cr6ax3accjcus3bcry7f9a6t5a5e6a.com *.xn--12cr6ax3accjcus3bcry7f9a6t5a5e6a.com

xn--4gqy02c.com *.xn--4gqy02c.com

xn--756-u68dy10ftt1a.cc *.xn--756-u68dy10ftt1a.cc

xn--9kqp83b8na.com *.xn--9kqp83b8na.com

xn--9myv52d.com *.xn--9myv52d.com

xn--dqr818f.cc *.xn--dqr818f.cc

xn--ekro27a.com *.xn--ekro27a.com

xn--fcto24ff3r.com *.xn--fcto24ff3r.com

xn--gmqt26h5gs.com *.xn--gmqt26h5gs.com

xn--pokr-dpa.casino *.xn--pokr-dpa.casino

xn--qfu271b.com *.xn--qfu271b.com

xn--rss50e.co *.xn--rss50e.co

xn--terrao-0ua.com *.xn--terrao-0ua.com

xrk44.xyz *.xrk44.xyz

xtrackings.com *.xtrackings.com

xtremeguys.com *.xtremeguys.com

xx88av.cc *.xx88av.cc

xxxav.mom *.xxxav.mom

xxxhub.site *.xxxhub.site

y47143933.vip *.y47143933.vip

yahhoo.ca *.yahhoo.ca

yamahaindia.com *.yamahaindia.com

yatirimmi.com *.yatirimmi.com

yatirimustalarii.com *.yatirimustalarii.com

yczxgj.com *.yczxgj.com

yetks.net *.yetks.net

ygccdxz1.shop *.ygccdxz1.shop

yiwdg7w98f.com *.yiwdg7w98f.com

yk2619.cc *.yk2619.cc

ykhg9.top *.ykhg9.top

ymb11.xyz *.ymb11.xyz

ynduzh.com *.ynduzh.com

young-jin.com *.young-jin.com

yourtruenorthjourney.com *.yourtruenorthjourney.com

yp7j3t.top *.yp7j3t.top

ypuiu.academy *.ypuiu.academy

yso.ch *.yso.ch

ytmqbm.cc *.ytmqbm.cc

yujine.com *.yujine.com

yuszx.bid *.yuszx.bid

yuy.nl *.yuy.nl

yxku.cc *.yxku.cc