SSL Certificate Analysis for ziko.im - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=gadps-epsrot.net

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 11, 2026

Valid Until

May 12, 2026 84 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

21:CB:78:C9:8D:1B:78:B5:F0:63:23:43:B8:65:BA:DA:A8:D1:62:FF:A7:65:6B:73:97:BB:0F:A1:E1:DA:A8:98

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

ziko.im *.ziko.im

Other domains in certificate

gadps-epoarts.net *.gadps-epoarts.net

gadps-epsrot.net *.gadps-epsrot.net *.ww16.gadps-epsrot.net

gadps-exprot.net *.gadps-exprot.net

vaccinationathome.com *.vaccinationathome.com

victorezende.com *.victorezende.com

voyagerider776.info *.voyagerider776.info

vr68.top *.vr68.top

w-e-s.com *.w-e-s.com

w28ljti.cyou *.w28ljti.cyou

wwwjs18677.shop *.wwwjs18677.shop

wwwlx58.cc *.wwwlx58.cc

wxcvs3a.me *.wxcvs3a.me

x0l3q23.cc *.x0l3q23.cc

x0l3q54.cc *.x0l3q54.cc

x9vfyzp.cyou *.x9vfyzp.cyou

xasptv250210.top *.xasptv250210.top

xdfkughis35hfdghk528.xyz *.xdfkughis35hfdghk528.xyz

xhcom.xyz *.xhcom.xyz

xhweb.xyz *.xhweb.xyz

xihuhouduan135.xyz *.xihuhouduan135.xyz

xihuhouduan193.xyz *.xihuhouduan193.xyz

xihuhouduan991.xyz *.xihuhouduan991.xyz

y47213352.vip *.y47213352.vip

y47226145.vip *.y47226145.vip

y47230009.vip *.y47230009.vip

y47230504.vip *.y47230504.vip

y47231603.vip *.y47231603.vip

y47237069.vip *.y47237069.vip

y47251418.vip *.y47251418.vip

y47269446.vip *.y47269446.vip

y47271469.vip *.y47271469.vip

y47279722.vip *.y47279722.vip

y47287038.vip *.y47287038.vip

y47288422.vip *.y47288422.vip

yc0y.cn *.yc0y.cn

yjmzyt.love *.yjmzyt.love

ytyianju.cn *.ytyianju.cn

yuwfe-004-4865.com *.yuwfe-004-4865.com

zdx43.top *.zdx43.top

zerkalo-leonbets-l1cm.xyz *.zerkalo-leonbets-l1cm.xyz

zgnap.bid *.zgnap.bid

zlylcn.com *.zlylcn.com

zzzboi.live *.zzzboi.live