Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.littleskoolhouse.sg
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 17, 2025
Valid Until
February 16, 2026
80 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
25:21:82:29:12:A7:56:6F:02:A9:75:CC:D4:69:50:73:53:4D:D9:F8:75:6E:04:CF:D3:40:88:27:6D:84:93:85
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
aibirds.art
home.accessconnector.com
ap-renders.com
apprain.io
aroundtheworldzy.com
ashwastesweekend.com
asincode.co
asurity.cl
byerikas.com
cadernin.com.br
test.castlebook.com
dev.cinemaflash.jp
cerveceriacentral.clau.io
admin.clubcerezo.com
smarthome.codelions.com
info.coinchecker.app
proeye.com.tr
corruptionfinder.com
firestore.dev-ltl-xpo.com
doodle-drop.com
dramiggris.com
www.e-dax.com
www.earling.io
edisyildiz.com
empoweredconversations.org
everwritten.co
dev.finclear.net
www.fjallfoten.com
alpha.fluics.com
freegifthub.com
fyrelit.com
www.fyrelit.com
www.gebirgsmarine.sexy
auth.gitmart.co
gntechinfra.com
mm.staging.go-games.gg
shish.gov.al
www.hama-i.co.jp
dice.hammergen.net
horror-game-show.com
iksolutionsltd.com
imgtocode.site
api.itfit.rs
www.juanmingo.co.uk
manonet.kalyi-jag.hu
kieranhasawebsite.com
photobooth.ladevzo.com
letsale.co
www.littleskoolhouse.sg
lonestar-roofing.net
manasikplanner.com
maris-butiga.hr
marqueslandim.com.br
www.marqueslandim.com.br
admin.medihomeweb.de
sales.mm-2.nl
app.modern-doctors.com
rn-md-guess-game-privacy-policy.mohammed-najib.me
action.ngsc.au
escapery.niravana.in
links.northscouts.org.uk
journey.onecareer.de
onecausewaystreet.co.uk
onlinegamesinfo.de
cp5745149451698176.order.place
www.passtia.com
prajitkk.com
puitu.com
www.rapidm3.com
app.rapimoney.pe
www.rechlinks.com
reytama.com
www.rightclickdesign.co
www.ronmany.com
rooki.net
rozmed.in
rz.id.au
www.sakekuma.com
www.sauf.app
www.sbomer.dev
schneiderei-olga.de
link.secretimmo.lu
seyircikalma.com
www.siguetuclub.com
slimgo.pl
5czd1p5bmodxf9dwvxyf.smartimob.io
smartnhealthyhouse.com
admin.souqtajer.com
www.strumica360.com
telehealthservice.co.za
www.theclassyflight.com
chatbot-dev-1.thelevel.ai
soporte-progressive.timp.io
ubicaturepuesto.cl
www.urbanclassic.de
portal.vagalumewifi.com.br
dashboard.velocityps.com.au
www.voiceofmusic.info
vybilt.com
wealthrealestate.ca
Other domains in certificate