Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.safetail.pet
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 05, 2025
Valid Until
March 05, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
76:F7:0D:B3:14:82:58:92:F5:5A:6A:B2:7E:22:24:22:F6:8E:D6:54:AA:16:91:37:BE:99:FB:CB:F6:E6:39:83
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
apps.portal-yufu.jp
0daryo.com
abhayvalsangkar.com
contest.aeondoyu.com
reset.affordablecare.ai
agreni.com
tdd.aleoyakas.co.uk
annaskuratova.com
www.anycodewallet.com
app.appdosa.com
ashwindn.com
atranscriber.com
audiojojo.com
www.autoservicemaasland.nl
static.awesomephysiotherapy.com
www.awine.it
gamesadmin-jpj-st.bagelcode.com
bellemontnewyork.com
bewelhome.com
blaginki.com
sms.brytecall.com
www.mach1gp.bwysistemas.com.br
bytenado.com
beta.cartmigo.com
admin-prod.cheaseed.co
cotizador.clubdelseguro.cl
ad.igmyd.co.kr
collectivetales.com
laabuelitakika.corntech.com.mx
craftboard.com
crypto-trade.me
www.cyborgfellaz.art
cypressbayoumedia.com
dashboard.dailyquestplus.co.uk
voice.daybook.app
dhruvinpatel.info
dixespaysagiste.com
dominiquescafe.co.uk
support.enoramapp.com
echo.eonia.co
estserend.com
fi.etoh.app
fiatcompras.com.br
firstdrivingandtrafficschool.com
app.five-bn.com
preview.frontbox.app
fusen.app
www.goodstopwatch.app
lshtm.graduations-live.co.uk
gzchurch.com
hcnw.co.za
hijulia.app
www.admin.hlo.app
www.hodlme.app
hostelhunts.com
uat-pensions.hostplus.com.au
www.hy-vee.app
hydrochempsc.app
haitd224977.id.vn
www.impulsomkt.com
www.itssport.co
auth.account.kintoneapp-staging.com
leessneller.nl
www.lyricstudio.app
mealiq.ai
www.mindyushu.com
evaluate.eli-lilly.mobilitymojo.com
kontak.mptpay.net
auth.nfgplus.my.id
www.neuraldreams.art
newspassport.co
nango7.okbmk.com
monsanto.pensioenduidelijk.com
sklad.polypaper.cz
auth.poz1.pl
redi.promart.pe
links.rememberthat.ai
ccdm.rflex.io
sacrest.es
www.safetail.pet
coordination.dev.service.work
www.shinra.app
teach.sofiasat.club
somosconexao.com.br
sourceview.co
l.fb.spacex3897.club
strongdiscipline.nl
swimcoach.app
td2.app
emp.tecfy.co
techorbit.one
www.trans-notes.net
altatrainingclub.turnosweb.app
boxnfit.turnosweb.app
www.twentyseconds.app
functions.core.api-dev.uodka.app
jcpm.captive.vagalumewifi.com.br
www.vasoline-lens.app
www.weimpact.ai
wrongd.app
Other domains in certificate