Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=bordled.jtsafarik.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 23, 2025
Valid Until
March 23, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0C:82:10:12:A8:63:11:4B:73:18:8E:2C:E0:2A:6C:3E:6E:CE:08:BA:49:1C:EB:E9:C6:1B:9E:2B:15:F4:87:4C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ads.rare-drips.com
2000chess.com
ray-sectional-config-test.3dcloud.io
app.aegistech.site
andypoole.info
barcelonagrowingtalent.org
portal.boosteragro.com
boothtransport.com
bpdadvogados.com.br
stg.carbonlinks.io
casamentook.com.br
www.cathoplus.com
www.resty.co.il
coinfedaileri.com
westerntech-ai-file-up.dev.cpptl.co
www.de-time.com
dev.esri.on.decisionrules.io
delatech.info
learn.devkode.io
www.dienifer.com.br
www.digit.is
app.dolomite.io
dragon-mist.com
peperiksaan.uitm.edu.my
covid19.edukamu.fi
enigmafinance.online
www.internal.estro.ai
www.eventbug.app
heineken.fafi.app
tutor.fusheng.info
club.gavesha.space
help.getpath.com
glanceback.info
www.glomo.no
www.greentouchfurniture.com
app.anpr.grok-digital.com
www.growlala.space
cbt.healthbj-uk.org
www.hefnawi.me
www.huatluckn.at
www.huntingtonatallah.com
member-dev.incentwellness.com
www.jaramilla.net
bordled.jtsafarik.com
kalingas.com
www.kciinteriorsltd.co.uk
ramanathapuram.kishoredroptaxi.com
development-designthinking-webapp.knolskape.io
www.lazypandatech.com
jobs.lemonadework.com
web.lsidentalbilling.com
lucchettaia.it
maddiemouse.com
viking-line.mari-sto.fi
www.mathegrube.xyz
www.matiascortes.com
mazen.bio
showcase.mazeout.dk
www.minasantigas.com
kudos.myhpgapps.com
dev-service-sale.daikin.nexlab.vn
platform.nextfood-project.eu
nomcimbi.com
www.nuvolapizza.co.uk
onetigris.store
ortho-ihsurvey.jp
osmaniyeistasyontaksi.com
oyoyo-project.com
app.passbuy.com
prerakmehta.in
aletzaxv.rcinvita.com
api.relaymd.com
renfrowtech.com
paradox.rosatocorp.com
roubanoureddine.com
enterprise.routezero.world
connect-ng-quotes.rxoconnectperf.rxo.com
ryanzakariudakis.me
seollaekeul.com
shimonschwartz.com
dev.simpleflight.com.br
bruker-test.soppkontroll-app.no
charityexcellence.prod.sparqz.io
www.spent-tracker.com
splendidendeavors.com
www.starwaylimousine.com
www.story-craft.com
kanchipuram.supercabs.in
thanjavur.supercabs.in
gis.tamkin.digital
timestables.ninja
www.ts-terrace-laundry.com
uni-pos.site
join.untied.io
funnytube.vikrams.app
pride.visitfloridakeys.com
www.whatsyourlevel.app
wordsandpictures.app
www.yiketty.com
link.yonet.net
Other domains in certificate