Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.goblaq.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 27, 2025
Valid Until
February 25, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0B:90:B7:0B:5F:7D:DF:21:96:A0:AF:1A:9F:1C:9F:72:88:EB:0C:CA:24:42:21:12:FA:D1:CE:10:54:77:CF:C4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
app.tablacasa.com
adisanmetals.in
aitracka.com
link.among.world
www.annabeljefferies.com
ant32bit.dev
aparee.com
www.ashutoshkrbhargava.com
atmosviz.com
appblbc.bcaug.com
staging.beyondview.com
brammer.digital
app.buoy.zone
catcafe.life
www.catoninecrafts.com
cmh.me
staging.datastudio.cogniteapp.com
www.cryptorunup.com
faketwitter.csalex.org
dataport.cat
www.dataport.cat
www.eaze.io
www.egomundi.ro
epistemion.com
evankrummel.com
web.exceeders.com
fenero.ai
old-pledger.fig.org
galaxypad.net
getshopper.app
globalindustrialpark.com
www.goblaq.com
golfdreams.app
sellia-chat.heycenter.com
smartftp.ikuzaki.jp
imaging.studio
probiotic.indefini.do
holiday-home-finance.landing.johnfowlerholidays.com
upaep-pretest.klarway.com
callback.kuponji.com
laclavefitnessclub.com
apply.listique.com
dylink.lohaseyewear.com
luzcypher.com
menagechef.com
menalemarat.ae
demo.metaclinic.com
motolabskenya.com
murlicable.com
websites.mustincrease.com
cockpit.mentor-sydney.neccton.com
print.neighborbaked.com
www.niravpokar.in
okoplay.com
www.orthocustomgloves.com
phyzitalstudio.com
www.pinstation.app
www.pixel-entertainment.com
placesinkuwait.com
auth.plexa.life
www.poi-hub.com
paramat.produvar.com
raje3.com
ramses.dev
stage.revenueship.com
rodonasports.com
www.rodonasports.com
www.rpinvestments.ca
www.santasblotto.com
www.secondkinetik.com
sellitallestatesales.com
serverly.app
www.shanakaprageeth.com
shaunmiller.info
simbioxis.com
www.sparrownestconstructionsolutions.com
nxo-app.speakylink.com
www.sunreno.ca
dl.templapp.com
terashima.us
share.thebuddingtimes.com
www.thecodecrafter.dev
quiz.thestudentsfellow.com
thronefantasy.com
r.thursdayhq.com
trdevents.no
www.triangula.no
blog.trueahead.com
www.ucgoldeneaglescamps.com
verbums.vdoc.dev
weathertolaunch.com
www.weedydidie.com
welldhan.com
wheelsontrails.com
woodedtrails.com
woofeey.com
wudnberg.com
wyawin.com
museum.xbox.com
yokoy.de
Other domains in certificate