Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=pixlzen.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 11, 2026
Valid Until
April 11, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
65:DD:BF:52:F5:17:38:B9:E9:25:0D:74:B8:16:EE:6D:C7:E6:8B:54:F7:89:DE:52:B6:4A:09:D3:02:28:E9:F7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
althia.com.mx
app-test.acciona-motosharing.com
acepanther.com
showcase.adgile.com
www.aisha.care
akinburak.com
amecurosa.com
applicentric.ng
demo.appsiste.co
camp.auraeai.com
auroratns.com
www.autofit.io
babypenguabstract.com
www.badbeans.dev
callblocker.badiale.dev
www.bakingdevs.com
bemarinnovacion.com
www.bp-consulting.ro
buildaclassinitiative.org
upwork.builtbyfoundation.com
www.ceomaker.in
www.cfprint.app
www.chalimerocreations.com
inicia.cicanada.com
eureka.ckefgisc.org
edservices.com.do
atlantmetall.com.ua
wadafact.comazon.dev
crumbemail.com
earling.io
edebost.com
www.edufoodhack.eu
www.edveloper.dev
embajadoras.mx
firebase.evenses.com
eventthemegenerator.com
faststartwork.co.uk
static.referendum2021.campaigns.fire-emblem-heroes.com
flyjetbrothers.com
genfixsolutions.com
getusage.com
admin.gifart.ge
gpsverdict.in
pay.sandbox.alterra.gr4vy.app
auth.greenenergyac.com
www.handlit.tech
rentals.haynet.horse
www.hazu.io
hohorizons.com
app.inuko.finance
www.inuko.finance
ivanishko.com
adventure.jeremyrabaino.com
jewel.games
moodmenu.kanini.top
kenoshaurgicare.com
www.kingofludo.com
auth.kontentik.com
app.kubeverse.xyz
www.latamcapitaladvisors.com
d.lendbrary.com
etags.lmes-phygital-pro.lmes.cloud
flutter-test.exampleapp.test.lncd.pl
www.luxecommerce.cz
landing.mantra.ms
mayabay.mapleworkspace.com
va.mari.com
mastercarva.io
auth.mauju.com
v3.mlink.no
salesapp.mo.zone
mrheading.au
ksa.nationalday.ai
nighter.jp
www.nodetrax.com
overtimecalc.app
parabolus.co
phi-vitruvian.co
pixlzen.com
app.placego.hu
www.playlooper.com
poriairport.fi
softech.dev.puppycloud.com
www.qvmedical.com.au
www.ramkumar.cloud
connect.reach-dev.me
photo-gallery.renzramos.com
mviii.searchall.site
uchealth2scramble.sqwadhq.com
www.stancilventures.com
admin.staychecked.app
staychecked.app
merchant.strideq.com
the-field.ru
prod.links.therunbuddy.co.uk
tiagobarreiros.pt
app.trkx.com
www.vishnuavanthsa.com
whalemeup.com
xpressshopltd.com
Other domains in certificate