Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=txtpad.alexalemi.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 13, 2025
Valid Until
March 13, 2026
61 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
11:43:7B:28:2D:28:BE:AD:03:A8:0D:2F:6C:D0:69:39:4D:B3:2D:9E:46:0C:90:DA:0A:F1:27:53:C0:55:1D:2D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
arokiamatha.com
app.abcdancer.com
stg.abctalkies.in
app.honghock.acuizen.com
decoderapp.adamtsaidev.com
agentixf.com
aguinaldocardoso.com.br
txtpad.alexalemi.com
app-implantcompare.com
cao-huisartsenzorg.appdashboard.nl
arbsafe.app
autoescolacoimbra.com.br
app.backbonephoto.co
bodegassantiagocentro.cl
www.borderradiusofficial.com
budou-design.com
develop.bwave.app
focusdigital-dev-login.chatleadspro.com
classroomsolution.app
www.considerate.app
www.cwwe.io
davipaulino.com
www.designers.wiki
www.devship.in
certificaciones.diazar.com
www.dj4gov.com
ducasse-alula.com
admin.e-moniteur.com
www.ecolite.in
edugami.pro
elastictime.me
retrogames.enlinquental.com
admin.feedsfeedsfeeds.com
seas-staging.fieldeffect.net
www.finlaymurray.com
app.finnihealth.com
www.frosttelehealth.com
link.platform.gama.academy
www.gesfin.com.co
qr.getblood.com
dev.gigwizer.com
gkengenhariaeautomacao.com.br
happykumar.com
hashtagthis.nyc
auth.hellochia.io
hitmapp.com
www.houseplantkingdom.com
hyperwealth.ai
www.insdthrissur.com
irbsoftware.io
jason-christie.com
jjcinematics.com
www.kinejennes.be
kosmosdonitesministries.org
renginiai.ksmm.lt
lapukron.com
www.lenkavecerova.cz
leximapping.com
bus.lumoh-inc.com
artgourmet.lupi.delivery
meraline.cn
essai-ug.metis.club
wayahead-ug.metis.club
shop.notfunny.in
fitonline.oplus-school.com
bestellen.orientdoener-goch.de
papabearstories.com
proxytraders.com
app.sandbox.pyxo.co
www.radio1chile.cl
redribbononline.com
app.reviewdee.com
rovert.io
royaltondeveloper.com
runapaj.com
authentication.sacredspark.app
saylkare.com
www.secroxy.com
account.shadomas.com
sharelumen.com
www.socialtechnologylab.nl
useraccount.spaceeight.net
businessriver.sponsorshipawards.ie
share.sporteaser.app
remit.sripay.lk
nu.stelifera.cz
sufeizhao.com
www.summitplay.co
plink.svasthiya.in
provider.symplr.app
tariroinc.com
tejusrevi.com
www.unaeon.com
untitled-chronicle.com
samsa.uveye.app
www.visity.app
vunt.info
webm.me
admin.wejha.com
www.wesproduction.it
Other domains in certificate