Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=skandhaagro.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 13, 2025
Valid Until
March 13, 2026
55 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
93:9E:7D:A9:24:77:0A:6B:7A:5B:04:1E:67:D6:1A:2C:A5:69:36:93:EF:14:6B:47:BD:AF:33:63:58:5A:C7:D3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
7april2019.com
cty-roomplanner-test.3dcloud.io
restaurant-rewards.5loyalty.com
www.a2techify.com
info.ai.ee
aljahazi.com
www.amrein-und-soehne.ch
aotb-kiosk.com
crm.arlynk.com
da.arshdeepkaur.in
gamescom.awakenrealms.com
ayankapoor.com
applinks.bangjamin.com
link.beautybarn.in
birdergame.com
bitloops.net
misedu-manage.classet.in
amanraj.co.in
ferrgra.co.in
www.amanraj.co.in
skizas.onfonmedia.co.ke
www.aphitrade.com.ua
daycoor.com
dlx.designori.net
dj3d.io
drzwi-balcerek.pl
eddgen.com
builder.ems-partner.ch
fplugin.com
www.gia.app
habitminder.com
widgetibmr.headstart.biz
www.histopatologiaoral.com
i-j.fr
www.isotking.com
keizok.com
sa-athletics.leaguesquare.com
leetmigo.com
email.lezsak.hu
web.lifegrid.app
staging.admin.listique.com
auth.dev-kubota.lo-beam.com
www.makingwavesgifts.com
mobile.mamasfirst.com
secure-dev.managemybusiness.app
manuelsaleta.com
app.marktbox.de
martinyu.app
mekong-erlangen.de
admin.mercadodasophia.com.br
board.mezza.io
mindsight.page
alumnos.mision.education
firmainfo.mitec-consulting.dk
intra.momentum.hu
www.moonlightmountainevents.com
gtd-workflow.moukaeritai.work
niraifoods.in
notenexus.io
parkatspringdale.org
www.pcdchauffeur.ie
phovo.co
www.pieovertwo.com
piiaketo.fi
insight.prestoexpress.co.uk
app.preventure.live
www.prosparency.com
www.pulseviewtech.com
readingo.cz
devapi.realsafe.me
remicarayon.fr
rsjc.co.uk
www.ruvixlabs.com
storemanager.sabzifarm.in
samy.pw
sentradefense.us
www.severin-vonrotz.ch
shlrn.com
skandhaagro.com
www.skyguy.pro
dynamictest.smarpees.com
www.smile4future.com
somen.pl
www.srigowripackersandmovers.in
domain1.stepinsight.io
tabilabo.co.jp
showcase-bo.teads.net
thefithabits.com
www.thequizbattle.com
tldrcomicbooks.com
traidingchem.com
clalitpa.um-manu.com
auth.visualith.com
void.no
www.xarnattos.com
www.yafeapedia.com
www.yetanotherapp.dev
zadedentalcare.in
zendkit.com
customer.zippelin.com
Other domains in certificate