DNS Gurus
Cached · just now
82/100 SECURITY SCORE

Certificate Information

Subject
C=JP, ST=Tokyo, L=Chiyoda-ku, O=LY Corporation, CN=edge01.yahoo.co.jp
Issuer
C=JP, O=Cybertrust Japan Co., Ltd., CN=Cybertrust Japan SureServer CA G4
Valid From
November 05, 2025
Valid Until
December 04, 2026 321 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E6:94:9F:F0:FE:BC:51:88:C0:DE:5B:52:8D:0D:47:40:36:C1:39:90:4E:EA:BF:A5:D2:D3:B8:D3:8E:5E:32:1A
Alternative Names
95 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
unload=()
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)

CAA Records (Certificate Authority Authorization)

CAA Records
Configured (Restricts certificate issuance)
Current Issuer
Not Authorized (Potential misconfiguration)
Authorized CAs
globalsign.com digicert.com ; cansignhttpexchanges=yes cybertrust.ne.jp
Incident Reporting
CAA Issues
  • CRITICAL: Current certificate issuer 'C=JP, O=Cybertrust Japan Co., Ltd., CN=Cybertrust Japan SureServer CA G4' is NOT authorized by CAA records. Authorized CAs: globalsign.com, digicert.com;cansignhttpexchanges=yes, cybertrust.ne.jp
Recommendations
  • Consider using critical flag (flags=128) for stricter CAA enforcement
  • Consider adding 'issuewild' records to control wildcard certificate issuance

Subject Alternative Names

95 domains
yahoo.co.jp *.yahoo.co.jp edge01.yahoo.co.jp *.ane.yahoo.co.jp *.auctions.yahoo.co.jp *.carview.yahoo.co.jp *.chiebukuro.yahoo.co.jp *.clorder.yahoo.co.jp *.finance.yahoo.co.jp *.gyao.yahoo.co.jp *.jobcatalog.yahoo.co.jp *.listing.yahoo.co.jp *.loco.yahoo.co.jp *.mail.yahoo.co.jp *.marketing.yahoo.co.jp *.ms.yahoo.co.jp *.news.yahoo.co.jp *.order.yahoo.co.jp *.points.yahoo.co.jp *.psi.yahoo.co.jp *.shopping.yahoo.co.jp *.store.yahoo.co.jp *.travel.yahoo.co.jp *.wallet.yahoo.co.jp *.webhosting.yahoo.co.jp *.yjtag.yahoo.co.jp add.dir.yahoo.co.jp arc.help.yahoo.co.jp cgi2.r-agent.yahoo.co.jp cksync.pdsp.yahoo.co.jp cm.froma.yahoo.co.jp compass.ymobile.yahoo.co.jp custom.search.yahoo.co.jp e.developer.yahoo.co.jp forms.business.yahoo.co.jp frame.games.yahoo.co.jp hrm.grmtrez.yahoo.co.jp im.ov.yahoo.co.jp info.hatalike.yahoo.co.jp movie.chocotle.yahoo.co.jp online.security.yahoo.co.jp poiedit.map.yahoo.co.jp www.lohaco.yahoo.co.jp *.bylines.news.yahoo.co.jp *.xml.listing.yahoo.co.jp api.y.clorder.yahoo.co.jp portal.yadui.business.yahoo.co.jp ssl-tools.kainavi.search.yahoo.co.jp

Other domains in certificate

www.bosaiguide.jp
carview.co.jp *.carview.co.jp *.mkcloud-api.carview.co.jp *.mkimg.carview.co.jp *.snsimg.carview.co.jp
*.cvw.jp
*.digitalguide.jp
*.geocities.jp
*.lycorp-security.jp
*.lycorp.co.jp
www.search311.jp
www.sp-hinan.jp
*.east.edge.storage-yahoo.jp *.edge.storage-yahoo.jp *.global.edge.storage-yahoo.jp *.west.edge.storage-yahoo.jp
*.east.edge.storage-yahoobox.jp *.west.edge.storage-yahoobox.jp
www.techbasevn.com
*.yahoo-help.jp
activity.travel.yahoo-net.jp *.yahoo-net.jp
yahoo.jp *.yahoo.jp
*.auctions.yahooapis.jp biztx.points.yahooapis.jp *.box.yahooapis.jp *.carnavi.yahooapis.jp *.edit.yahooapis.jp *.news.yahooapis.jp *.push.yahooapis.jp *.search.yahooapis.jp *.shopping.yahooapis.jp ssl.api.olp.yahooapis.jp *.wallet.yahooapis.jp *.yahooapis.jp
*.yahoobox.jp
*.c.yimg.jp *.shopping.c.yimg.jp *.shopping.srv.yimg.jp ssl.map.srv.yimg.jp *.yimg.jp
yj.pn
yjtag.jp *.yjtag.jp
*.ys-insurance.co.jp