Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=web-sporter-frontend.staging.leuven.delcom.nl
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 06, 2025
Valid Until
March 06, 2026
75 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
02:48:29:A2:88:40:F9:1F:4B:7E:56:A7:27:45:7A:85:65:D9:F2:24:39:FA:4F:AB:7D:2A:FC:B8:15:9B:57:A7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
app.nolabelsboxing.com
skunkworks.12traits.com
ayidi.243technologies.com
8888888888.de
acuteplus.app
www.agnetic.ai
www.asok-9.com
www.aureusventures.com
avo.is
www.bazandgo.com
join.bitcrew.com
spm.bobchao87.com
boussadumaroc.com
www.brinf.net
c-pay.io
clientes.castellmar.com
civicbase.io
login.colossal.fm
crypto-identity.org
www.db-soft.be
web-sporter-frontend.staging.leuven.delcom.nl
design.dena.com
www.translate.dessin.it
www.destinyhistory.com
ac-auto-j.dev-ltl-xpo.com
www.duermevela.shop
virtual.nuevocolegiolusadi.edu.co
elisemcmahon.com
wfh.emailmeter.com
emibook.in
www.extramixsr.com
www.ak2020.filipmiik.cz
signup.guestchat.com
ikon.guru-pon.com
www.gvrapps.com
herizon.ee
www.hypergolic.xyz
wedofit.impactwrap.com
static.includecart.com
innovdesk.com
link.jadinakes.id
jlsurgicalcenter.com
jordanc.fr
juabeh.com
www.kubernetikos.com
bluniversity.lernit.app
beta-app.lets-trade.net
admin.staging1.letsventure.com
libertrage.libex.ai
mentor-isd-admin-dev.lifecycleinsights.com
tables-staging.mafynetti.fi
www.maintenanceprimavera.com
www.mapdigitalservices.com
marke.digital
marlamas.art
www.marvelmatch.com
modeonbanda.com
www.modulussell.com
mogavenasan.com
thedadventure.mospantales.com
mygofacer.com
www.n-lite.net
dl.nicoclever.de
accounts.noticeable.io
omnilog.app
piyole.com
app.prosconsapp.com
www.ratrun.net
retrotrivia.games
www.rmt.com.br
app.roboflow.com
www.ryanduffield.ca
www.saintanselmcamps.com
sandamianogi.cl
sarmad.me
www.searchnear.net
firebase.semilac.pl
atlas.shubhranil.com
staging.platform.simskills.io
coach.smartseason.es
soccerwatch.tv
vahini.speech2txt.com
www.starcakes.net
api.swyft.com
www.tapmenu.ca
www.techmythree.in
teethmovers.co.nz
www.thiagoimai.com
trailcacheapp.com
online.trapmaster.co.nz
travelling-bug.com
trevorfulham.com
portal.tryspawn.com
www.valiaindustrialpark.com
wearebasetwo.com
via22.workspace.training
go.woya.io
wrench13.com
app.zeffi.dev
www.zichi.app
Other domains in certificate