DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=redapplefirework.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 12, 2026
Valid Until
May 13, 2026 89 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
53:9F:B0:26:B3:83:70:01:0D:63:6E:3C:91:3D:B9:2E:DA:D2:81:11:ED:BD:E4:77:C0:55:8A:7D:DD:1B:F6:04
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
zippoflamingo.com *.zippoflamingo.com *.ww7.zippoflamingo.com

Other domains in certificate

aiuruoca.com *.aiuruoca.com *.emv1.aiuruoca.com *.exchange.aiuruoca.com *.hostmaster.aiuruoca.com *.m.aiuruoca.com *.mailgate.aiuruoca.com *.member.aiuruoca.com *.poczta.aiuruoca.com *.relay.aiuruoca.com *.sitemap.aiuruoca.com *.sitemaps.aiuruoca.com *.smtp.aiuruoca.com *.ww16.aiuruoca.com *.ww38.aiuruoca.com *.ww41.aiuruoca.com
*.cars.cocars.com cocars.com *.cocars.com *.fca.cocars.com *.hostmaster.cocars.com *.koco.cocars.com *.nutritionfarm.cocars.com *.topgear.cocars.com *.udemy.cocars.com *.web.cocars.com *.ww25.cocars.com
cxx.rest *.cxx.rest
*.58bcab68-7f4e-4ffd-804c-fb9bb73d94a7.danieldrake.com *.access.danieldrake.com *.app.danieldrake.com danieldrake.com *.danieldrake.com *.gateway.danieldrake.com *.haqvnhostmaster.danieldrake.com *.intranet.danieldrake.com *.login.danieldrake.com *.m.danieldrake.com *.office.danieldrake.com *.rds1.danieldrake.com *.remoteaccess.danieldrake.com *.shop.danieldrake.com *.sitemap.danieldrake.com *.sitemaps.danieldrake.com *.web.danieldrake.com *.wwww.danieldrake.com
*.admin.domainer.chat *.brandcube.domainer.chat *.dev.domainer.chat domainer.chat *.domainer.chat *.ftp.domainer.chat *.hhuzxapi.domainer.chat *.jyvumbrandcube.domainer.chat *.m.domainer.chat *.www.domainer.chat
fp8888.com *.fp8888.com *.www.fp8888.com
grandjp101.net *.grandjp101.net
*.api.kawat.com *.backup.kawat.com kawat.com *.kawat.com *.mail.kawat.com *.sitemaps.kawat.com *.vanka.kawat.com *.ww38.kawat.com *.ww4.kawat.com
*.m.prostozmostu.com prostozmostu.com *.prostozmostu.com *.sitemap.prostozmostu.com *.ww38.prostozmostu.com *.www.prostozmostu.com
redapplefirework.com *.redapplefirework.com *.ww1.redapplefirework.com
*.cpcalendars.skillpla.net *.cpcontacts.skillpla.net skillpla.net *.skillpla.net *.webmail.skillpla.net
yournerveaid.com *.yournerveaid.com