Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=checkin.myia.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 02, 2026
Valid Until
April 02, 2026
69 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DC:CB:1D:79:C6:91:23:DA:FA:6B:41:03:5B:D6:75:89:9F:E7:88:70:B0:DF:9C:88:2C:3E:12:B8:80:E1:7A:76
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
agencecofa.com
ondernermers.1hvm.nl
play.adamleis.com
next.addhere.com
advarunreghu.com
againwewander.com
akshithacrackers.com
bunka.alekzen.com
alexbiketrip.com
admin.alft.lk
anne-sophie-et-lucas.com
antiqueautoworks.biz
visiondev.asite.com
ayurvedahealthcentre.com
www.barberbc.pl
karthik.baskaran.me
bestboardgameevermade.com
blissai.co
boonstra-webservice.nl
brittacarroll.com
bytewise.hr
chetanvelumurugan.com
www.oxeye.co.in
cockeng.com
codearchitect.net
www.luxapart.com.ua
www.consultsca.cl
docs-preview.corz.app
www.covid-sneltesten.nl
cutoff.cc
www.dietitianbhavya.com
ac.digitoo.cz
dvsconsultancies.com
ethershards.com
app.fabricdna.ai
bigdatahack.femaletechleaders.org
reunion.festivall.ca
firstklaz.live
fitchy.co
fitcoder.in
go.staging.fitkit.app
www.flyhorizon.co.uk
gcodemixmaster.com
qa.admin.gestio.school
testing.getripple.ai
hub.greenfins.net
api.greenstream.io
grownbloom.in
www.blog.hashito.biz
merchantportal.humbl.io
hkt.id.vn
auth.intv.me
api.lufer.click
www.mantheum.com
marmomacplus.com
iot.membasuh.com
msm-portal.moloco.cloud
staging.multiplai.co
checkin.myia.app
newshacker.ai
www.oblizujeme.cz
app.paimoveisitatinga.com.br
www.pasigkjv.org
links.pfwork.com.au
plomolex.ai
gnstory.ponorder.kr
precari.at
auth.google.playnet.psi.br
realee-hv.biz
www.remittv.com
moncompte.riadpremium.com
rpsbrmk.io
www.sahaypay.com
www.sashazimulin.com
neet.sharpexam.in
www.shonduras.com
bitaxe.sidnft.com
smooove.co
www.solwall.net
www.solypm.ca
app.srcosmeticsusa.com
verification.stayovr.com
www.steelwindows.ie
tavern.art
teachablecode.com
www.textik.com
www.tgcmech.co.uk
www.thedepositary.co.uk
lojamodelo.themediatrade.com
quickreco-stage.thepetdoor.net
guinness.threedium.co.uk
www.ticktag.ai
www.tntlc.ca
www.trufflehogs.fun
links.tvscredit.com
u3dcreations.fr
bookings.unitedpadel.org
referral.veil.mobi
staging-customer-organiser.vidocto.com
www.volkaapp.com
Other domains in certificate