Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=bienal.uiclap.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 22, 2025
Valid Until
January 20, 2026
38 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9A:A5:44:80:3D:44:F4:51:82:FC:46:AC:BE:C6:C4:AD:EA:4B:F3:3D:68:2C:8B:79:FB:1E:5D:A3:0C:8F:AF:F6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
apconsultingtax.it
recast.7sindhu.com
www.agent-system.net
member.aibiz.id
ailabeling.app
www.akademianiechorowania.pl
guessme.anapple07.com
autapp.autecla.com.br
burguer9-31.com.br
www.carspare.in
vivien.casasoftware.fr
cercinostudio.com
chefedodia.com.br
www.colinterry.me
ghtelecom.com.pk
nutriliterun.com.vn
conferonline.co.nz
www.cryptex.it
dophinote.ca
www.doveguardarlo.it
dynamicvfx.com
www.erastoyap.site
snycat.eu.org
www.financialadvisorweb.com
flat6a.co.uk
www.flat6a.co.uk
flokzee.com
promotion.francispradel.fr
geonumismatica.es
staging-app.getbillx.com
haileamlak.tech
www.halvbra.se
handpokemon.com
www.hittasittplats.se
phuhuy-20215397.id.vn
www.idkthatsperfect.com
evento-develop.infogab.com.br
bics-id-dev.input4you.be
kaisar19.com
www.learnall.us
www.lmaoo.wtf
www.midlandadvocates.com
mizaanclassic.in
mobileempires.com
mobileempires.com.br
mocyno.fr
www.mocyno.fr
mollychacon.es
multiwordle.org
connect.myplayer.io
www.neoqubit.ai
nipps.com.au
blog.nivendha.me
nokmosis.net
pakwanderers.com
www.pakwanderers.com
link.papertale.tech
parvsacuify.com
www.pescasublanzarote.com
link.petsy.world
promptgallery.in
stage.i.rallyreader.com
www.ravillamed.com
reliableinclusiveskilledu.in
marketing.ringinnovation.com
rocks-rocks-rocks-rocks-rocks-rocks-rocks-rocks-rocks.rocks
lab.ryoho.com
app.salaryo.com
saracmekanik.com
app.scr-bayreuth.de
link.selyt.com
shorinryu.co.nz
sinetic.mn
sofiatajide.com
www.solidaritybookproject.org
souki.me
speakeasy.fans
www.studentloanstudy.uk
suanina.com.br
bodareyesvalle.swanmoments.lat
talentconnect.it
dev.tbag.it
dungeon.tbremer.com
teamfisk.net
www.fr.teresabarrueco.com
textflow.live
www.textflow.live
www.thechiliwey.com
www.thetida.eu
www.thinkera.in
dev.topformaturas.com.br
trusted-point.com
bienal.uiclap.com
urenregistratie.net
www.vanhovelander.com
vibhacelebrations.in
www.xtensiv.io
www.chat.yieldpoint.ai
www.yogalomoments.com
zensight.app
Other domains in certificate