Open
Cached
·
just now
70/100
SECURITY SCORE
Certificate Information
Subject
CN=samur-ai.jp
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 12, 2025
Valid Until
February 10, 2026
80 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
98:92:04:C0:EE:6A:8D:82:F4:CD:D7:26:67:FD:C5:BD:26:30:66:24:24:4D:2E:6B:B5:24:E0:77:D5:81:F0:43
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
Forward Secrecy
Supported
(Modern clients use PFS)
Warnings
- • TLS 1.3 is not supported (recommended)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
admin.pspkdevtest.net.au
300.io
www.hgcsonepat.ac.in
links-tootor.acty.com
aig-demo.affinity.do
www.anyflow.dev
app.audmate.com
bartzatelier.com.br
vattna.bbe.nu
begrakija.com
bitcoinwalletcomparison.com
www.blarecommerce.com
www.buildfinancegoals.com
www.casav4c.org
go.casenotesonline.com
anesonic.ottimosystems.co.th
www.codeheroes.cz
qa.edubot123.xbot.com.vn
contributor.pw
bleeding-edge.clue.manage.cuona.io
web-sporter-frontend.development.delcom.nl
app.digibooking.at
www.e-office-online.com
help.eceos.app
lockers.edgeofthewedge.com
edraprasetio.com
www.etheoncollective.org
florcastromanimpresiones.com.ar
a0ef.foodle.su
jp.fotobots.com
www.ginraku.jp
www.gradstay.com
hakol.site
www.hatch.digital
healthfrequencies.org
homecanvas.store
horsecareapp.com
howtocancelfubotv.com
hyeji.dev
url.hyp.pt
press-pets.hypervr.games
scan.ignw.io
immedicure.com
paranaclube.ingresso.center
www.interactivators.com
iot-wias.com
devapp.istiqlalhouston.org
jacosanctuaryspa.com
tunglan.redemption.juicysuite.app
admin.keymarket.ma
preprod.latourneedesproducteurs.com
wedding.macki.me
www.mamtachauhan.com
mascotaya.lat
millidadlavash.com
www.misaunde.com
kalkulatorlistrik.kuntoaji.my.id
product.informacion.my.id
mystorymap.com
www.namopackaging.com
nettex.com.au
newgenai.io
front.nightzookeeper.com
nourykhayatcs.com
app.ocaimobiliaria.com.br
www.pangeapickup.com
varnavn43e.parkalot.io
parkmybike.app
partidostudio.co.uk
patrickandersen.dk
www.phondini.com
game.poven.ie
protradingskill.com
telemedicina.redsalud.cl
app2-sempresoft.refiltek.com.br
graficos.reinaldoalguz.com.br
sales.revolutiones.org
www.roadhero.com
webapp.rockshop.ie
samur-ai.jp
scoremate.online
pedidos.sigfood.com.br
admin.siriusplataforma.com
lib.speakylink.com
ssddroptaxi.in
www.stefanxo.com
www.tabl.ist
shop.tangermarkt.nl
tecnopaycr.com
termaspacu.com.br
www.thetaxchecklist.com
shinehill.thousandfootmile.com
core.tpf.be
tribeskart.com
trinance.pro
dev.upnotch.com
voicevault.in
app.engage.ffswrcuatwrkekznmzjt.voyagernetz.us
wesleymb.com
yarapay.lk
Other domains in certificate