Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=josiya.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 15, 2025
Valid Until
January 13, 2026
59 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D6:2D:26:50:BF:2A:EA:48:41:06:1E:74:8A:73:20:88:F6:A1:52:4C:D7:FA:E2:E7:BB:8D:3B:37:50:A3:3C:F1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
anooedition.dev
www.a-draft.com
www.agerego.com
demo.airbrain.sg
dev.antimicrobial.akdndhrc.org
alexandreidier.fr
en.alexindojayaamerta.com
archeryboss.com
imagia.art.br
app.billoget.com
www.billoget.com
bluelink.cloud
bryantson.com
portal.bvhindia.com
cdn.call2mom.com
code-solid.com
craftwork.ca
www.czarnek.com
www.desertexhibitions.com
dhani.gay
staging.xview.dicomlab.com
www.doylecentral.com
auth.drumless.app
echoesofessence.com
new-cms.elkaso.app
fantactics.uk
felixwu.me
im2-user.flotilla.app
gorgeouslyhumble.foundtreevtt.com
futuretrackadvisors.co.uk
www.pilotage-activite.gan.fr
genavi.io
kaivantoautomatiikka.geotekniikka.com
auth.getreadefine.com
gibranrenteria.com
www.goof.se
mff.share.grsc.cz
fr.hash2cash.app
soporte.humanware.com.ar
www.imamankumar.com
bookings.innerjourneyapp.com
internetobject.io
internshipss.com
props.issprops.com
josiya.in
lnktr.jtsafarik.com
karenandgreg.fyi
learning.kitefinancial.io
www.kittycoders.com
lktechnology.in
longterm.app
makematch.uy
fluttering.mhmz.dev
momentum.mikatux.com
pass.atlas-apps.mit.edu
movebox.app
mrxdatalabs.com
muunifi.app
myebag.com
nafarch.com
newbrains.net
norbertlaszlo.com
opg-segulja.com
pakovan.app
www.payat.app
pdfonline.info
www.playsuperboom.com
shop.proday.mn
welcomeclient.publicismedia.co
scramble-admin.rage.fan
reeal.ai
www.rentautocuba.com
www.reputabl.io
account.riglabs.co
auth.riglabs.co
verify.riglabs.co
rqmarket.com.mx
www.rqmarket.com.mx
smileplatform.com.mx
uab.snapmentor.no
solexapps.com
staging.starthilfe.app
passkey.swapfast.app
talali.com
tatkb.com
www.tatkb.com
www.thedreamdaze.com
tide-technologies.co.uk
www.tide-technologies.co.uk
uaedating.com
ifsantiago.ualabee.com
uniquarts.org
urbanclassics.at
www.userlm.ai
www.velia.app
hireme.vnetes.com
wandcoach.com
wardhananusantara.id
wellthcheck.in
www.zaibot.net
Other domains in certificate