Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=chrealty.com.mx
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 25, 2025
Valid Until
March 25, 2026
81 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1C:F7:D0:DD:BC:57:66:D3:8C:61:A6:39:ED:E3:67:06:DA:7A:4D:74:D4:BE:7F:3A:AE:4E:A0:A7:9D:63:60:17
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
admin.ascc.me
login.ascc.me
www.agaththiyarnadi.com
airaclub.com
www.albinthomas.me
www.aldeiacode.com
www.animalismandaluz.com
www.annfinn.com
apcotools.com
balcoder.com
go.cartodb.com
www.cgodev.com
checkvin.org
chiefspass.com
chrealty.com.mx
lawyers-prestg.legal.coconala.com
contactame.com.ar
damayaya.com
vault.darshannaik.com
surveymobile.devbyopeneyes.com
dev.dope.domains
app.alnap.drclik.com
www.ednocreativo.com
masterclass.areandina.edu.co
ekmeloz.com
eva.dev.shelf.evtit.com
go.fit.cam
fooditec.com
onetworld.games235.com
payme.ginih.com
uat-gtplayer-admin.globaltote.bet
fabtest.greytip.com
www.haraitsolutions.com
app-ludichieri.insideapp.dev
mobile.interac-id.ca
irise-developers.com
campus-del-saber.jalasoft.com
link.justlistapp.com
www.kalyanigauseva.org
www.lokalimoveis.com.br
loveshoreresort.com
masonicwebmasters.org
docs.space.massless.io
unstable.space.massless.io
auth.mcitcentral.com
sistema-codigos-noracid.micor.cl
www.microtrading.com.au
mcs.training.mindyourpass.io
mohitkumarverma.com
l.mrd.com
www.mrlgx.com
www.multiversoapp.com
myboardprep.com
www.mygymday.com
nehanagori.com
normalonsodermatology.com
auth.notableai.ca
dev.guide.beam.rd.nyt.net
prod.attribution.odum-research.com
othentech.com
particka.net
www.particka.net
cdn.pateldhvani.com
dashboard.postremoit.com
www.projex.digital
www.qriositynet.com
raffiesaurus.com
resenhadelas.com.br
www.runamokclub.com
applesstrack.rxoconnect.rxo.com
connect-customer-ng-admin.rxoconnecthf.rxo.com
connect-ng-analytics.rxoconnecthf.rxo.com
connect-ng-carrier-admin.rxoconnecthf.rxo.com
connect-ng-carrier-assigned-loads.rxoconnecthf.rxo.com
connect-ng-carrier-bids.rxoconnecthf.rxo.com
connect-ng-carrier-dashboard.rxoconnecthf.rxo.com
connect-ng-carrier-loadboard.rxoconnecthf.rxo.com
connect-ng-carrier-tenders.rxoconnecthf.rxo.com
connect-ng-fom.rxoconnecthf.rxo.com
connect-ng-invoices.rxoconnecthf.rxo.com
connect-ng-pending-orders.rxoconnecthf.rxo.com
connect-ng-shipments.rxoconnecthf.rxo.com
singhmedicalsupplies.com
stg-playcet.iframe.survive.bet
tamfy.mx
www.taptaptap.studio
thurston.ai
tianxu.ca
trungbinh21092024.online
vaikusypsenos.lt
vokac.dev
dashboard.voxlog.ai
www.webdevstation.com
v1.app.xave.co
xn--3dss8ou0rci8a.com
www.xn--42caa2elfcab4ed2c0e0evab4fzgsczd7b.com
www.xn--grnli-kua.ch
xn--grnli-kua.ch
xn--rbsoluessolar-ngb4s.com.br
xn--tea.dev
Other domains in certificate