Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=suntecag.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 22, 2025
Valid Until
March 22, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
37:DC:48:35:78:0C:18:AA:F5:97:D2:73:4A:61:14:67:0C:7D:24:39:17:FD:19:D2:D9:5B:47:E7:B4:9A:89:16
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
about.bildoktoren.no
frontgateroomplanner.3dcloud.io
www.aesteon.app
keepcalmandmerrychristmas.africasunrise.com
links.ancap.io
www.arretadospastelaria.com.br
www.auredjs.ca
www.beeboyproductions.com
curator.budu.jobs
cablelocator.net
carwaffle.app
www.checkinevent.com.br
ciaran.site
www.clapsncheers.com
www.cloudreports.ru
share.i-boss.co.kr
puskalkhadka.com.np
www.ardent.com.np
www.dancesportdj.app
denistruffaut.fr
www.dranishalleramirez.com
dynamopins.de
easymeet.ca
egrid.jp
ftaa.evanforbes.net
game.exhibitionstockholm.se
ferti.fieldview.fr
www.spynda.filipmiik.cz
www.filocondimenti.com
uqam-dev.gestion-traiteur.shop
app.godlifeencounterchurch.org
www.gruzmarg-interiors.com
code.guyguzman.com
price.hhs.de
dynamic-link.testing3.huvrdata.dev
dev.incremax.com
induwara.me
www.internetcreaindipendenza.it
roomplanner-cert.jeromes.com
pago.jguiza.com
kevin-haustein.de
www.lefort-menuiserie.fr
lmuathleticscamps.com
www.mage.pk
fidelite.melliouest.fr
auth.memberhub.de
affiliates.midas-financials.com
www.mijore.co.uk
ln.monorain.net
ssh.mtibsirim.com
www.mytripingreece.com
www.nnischal.me
menu.openhourtab.com
store.optimxsports.com
instant.dev.passbuy.com
recipes.pdxgrantc.com
pembrokepinespermits.com
www.playfox.ca
porto.primaverasound.app
lite.prizm.site
www.pservice.live
quantified-self.io
ramiodominicano.com
www.redditgen.com
portal.viit.researcherconnect.com
www.retailcloud.io
reviewershub.com
rnksunsystems.com
robotai.bot
sallesdedanse.fr
www.sclg-kwt.com
music.scorep.io
scrybe-code.app
www.sixinterns.in
skrjanc.si
stopclub.app
suntecag.com
weddingplannersday.swanmoments.com
www.thesaladplaceng.com
admin.thetoucan.app
thinkspace.lk
toobzgaming.com
www.vaceela.com
auth.valon.com
www.vambuu.com
viajacomeexplora.com
www.victorchiong.com
www.visitbiella.com
www.wavefrontpro.com
wbmcintyre.com
www.websbite.com
app.wello.im
whatstherush.ca
withwinegourmet.com
referee.demo.wylas-timing.com
foodsensitivtiy210-report.yourgutmap.co.uk
yourweb.app
youshineagency.com.br
firebase.zibma.com
zplmagic.com
Other domains in certificate