Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=otovera.net
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 28, 2025
Valid Until
March 28, 2026
65 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
31:2E:66:16:CE:73:F6:48:BA:30:41:57:1E:66:41:EB:F4:4C:00:D4:58:76:C1:E0:57:2C:E4:39:CF:CE:F3:68
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
apptheka.com
api.cammington.28east.co.za
liff.anychat.tech
www.autobms.mx
www.baltorx.com
barcelonamap.eu
encasa.baumlanus.com.ar
app.beaudoinolivier.com
binarka.tech
bishnughimire.com
cleantime-chk.blumas.com.ar
blurail.tk
brandifygrowth.com
carellesbutinent.org
chaoranhuang.com
chasetheglory.com
www.ckr.dev
www.clementchauveau.com
coconut-cie.com
codee.club
codeharmony.dev
coupon.coffeeandmotivation.com
pre.cu-ra.net
djvibes.org
docsfarmgame.com
files.dominionstudio.com
coding-sim.droneblocks.io
realportugues.drtis.com.br
www.easycloudsystems.com
helzy.elsetic.com
admin.enrichdlp.org
entazza.net
freeqrbarcode.com
app-dev.getlovebug.com
gipsas.com
www.grandmassewing.com
www.gruasulivarria.com.mx
www.hasbase.com
e.himilanrhofair.it
www.hiscript.in
hopetreesolution.com
irfanlateef.site
one-education-stage-3.ischoolconnect.com
mia-chatbot-prod.itxi.aero
auth.karoteno.org
link.khmertechmarket.com
flk-acc.m-catch.com
www.maheshwariproducts.in
docs.malwoden.com
www.mantraroom.org
admin.mevedir.com
mgfloor.pl
ai.mibot.cl
mikedeeradio.com
site.morsodifame.com
multristan.fr
www.mykaraoke.app
miplan.mymoons.pe
pwaqrlogin.newline-interactive-webservice.com
www.nomansskychef.com
zephyr.nopublic.ru
shortcodes.notiz.dev
reportes.oryzativa.com
otovera.net
ourto.net
reporting.powerproleasing.com
docs.prospectis.immo
link.purematrimony.com
liquid.quidforce.com
www.red-cat.net
refrme.app
reliance.lk
resolved.social
www.riddleindia.com
runes.dog
vipexperts.sanityandself.com
scottlittle.org
get.shape.care
blog.shinylotad.com
shopq.co.za
silvanadrian.dev
simpleberkeley.com
www.solodki.com
stoctmartket.com
suiforge.com
www.swiftviewestates.com
syncomuae.com
techkrikrioasis.com.au
tellmehowcanido.com
app.tennismile.jp
thwoo.party
boonratdimsumemenu.triggersplus.com
truesoundlive.com
twentytwofour.com
l.vngecn.com
walby.com
watiq-parent.wiotschool.com
fruitsmania.games.woolili.com
xrvisual.com
zalence.com
Other domains in certificate