Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=shop.velovita.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 06, 2026
50 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AE:7D:26:48:B6:E6:A5:74:E3:66:C8:76:9D:0C:A6:BE:03:A4:19:FC:B4:62:79:F1:54:31:A4:2C:67:CA:70:3D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
availify.no
plan.8xplorer.com
ai-camera.app
stg-about.ameba.jp
amembajournals.com
amirserry.com
www.andrewtiller.com
anki.life
anthonystonge.com
aprar.eu
www.arulsdiabetes.com
proma.banglafighter.net
www.bazardeturismo.com
auth.bitbot.plus
blockstarlogic.xyz
www.blockstarlogic.xyz
www.box-fougeres.fr
www.broad-gifu.com
calchitaliani.link
test.app.mappa.capyba.com
cloudia9.com
www.codeservices.io
www.amradvisors.com.pa
www.compra-venta-coches.es
calculadoras.constructorespositivos.com
krappe.coolrmsil.com
gartenbau.cunaku.de
the-crossing.cybrary.it
encurtador.dankicode.com
dev.dataland.ai
www.denzelmensah.com
designsbyraj.com
b2b.discount-loans.com
www.doyumeibo.jp
administrator.dronline-clinic.com
enviconte.it
www.espece.co.jp
go2.flirtplan.net
frutini.de
habitboy.com
hectoromero.es
himalayanweekenders.com
www.hobiapp.com
hongiranainteriors.in
tesseramento.igpclan.it
odin.imperian.systems
interconsulta.com.mx
www.irrigate.com.br
jelena-abramova.com
blog.jfcoder.com
www.jipderksen.com
www.staging-roles.k-9apps.com
laods-dev.com
www.lightofchrist.in
makeyourmealcount.org
mandideepproperty.in
markhayward.tech
www.mfinfotechservices.com
www.miamiredhawkscamps.com
michelngandi.com
mikedrakos.com
oldportfolio.mikelkamel.com
www.mobifans.com.br
blog.muralikannan.com
muscular-app.com
www.nemidis.com
www.nkportfolio.com
nuvocliniq.in
www.nzsapps.com
e.o2o.vn
omegaturbo.com.br
onmarkevents.in
www.performanceplusroofing.com
pickledpetes.co
plagzero.com
dev.api.pwapilipinas.org
pyske.com.br
www.qiipconsulting.com
presentplus.rayaans.com
staging-assets.rewardsurveyusa.com
www.rohitkumar.net
www.sanepil.com
selfprime.app
shodinka.com
www.smartplus.inc
banking.snnanalytics.com
www.sobering.ca
bodamenjivaraltamirano.swanmoments.net
www.tenet.aw
wago.terranis.fr
thewavepictures.com
www.topspotlabs.com
stquentin.vv.toysfilms-interactive.com
ujsser.org
eu.public.uveye.app
shop.velovita.com
fundraising.visionrobotics.org
www.vtjs.app
film.wesolyuniwersytet.pl
admin.zigazoo.com
Other domains in certificate