Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=rixels.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 06, 2025
Valid Until
March 06, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9D:54:DB:AB:30:F4:96:2C:E7:39:99:29:AF:F1:73:9D:B2:67:FE:11:10:AE:2E:7F:B3:A3:F9:61:58:91:51:DB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
beardsandfur.com
sessions.abiomed-veranstaltungen.de
academiaadixgym.com.br
www.academiaadixgym.com.br
quicklink.ambii.com
oma.arratreeni.fi
redeem.aspiremeditation.com
atlantisbeachvilla.gr
ayurvedickendra.com
payments.beereaders.com
associacao.befox.com.br
www.bernavemutlu.com
analyticus.bestpointwebdesign.com
www.blackhillonline.com
storybook.btdevs.com
apply.burialinsurancequote.com
cambrianprotocol.com
www.capetipestates.com
www.cardsly.be
chengzhi-wang.com
chizu-quest.com
gs.claytonjacobs.dev
lmsadmin.paypam.co.il
company-locator.com
csinterns.com
decoderesolvency.com
deluxebucak.com
www.deneroliveira.com.br
sitios-web.duodecimstudio.com.ar
www.dejatuhuella.urosario.edu.co
cliente.efecapital.com.ar
eganlegacypartners.com
ny.evaksine.no
eventful-app.com
m.fantasyderby.org
fdl.gle
game.finanza.tech
fishermandirect.com
app.fiters.co
my.getkisi.com
gilroydigital.com
auth.icepeak.ai
pmn.infoecos.ai
www.irimasu.com
chat-stage.ischoolconnect.com
itsallno.de
xushs-equinox.jameventsph.com
www.keystonecrusades.com
gobeklitepe.kreamice.com
test-acme.dev.lifebrand.life
book.litta.co
dady.lupi.delivery
malikawawer.com
maxmartynov.com
medinora.it
aula.metodoconsultores.cl
tarsalgo.microker.hu
www.mlnkv.com
app.moonfliptracker.com
portal.mytogs.co.nz
mag.nanosoft.co.za
shop.newenergy.nl
texaschickensg.order.place
passionlocker.de
www.profjosecarlosalvim.com.br
www.reflectly.app
rixels.com
samlord.co.uk
seedtrace.org
app-packages.staging.shopdit.com
www.shotlytics.com
prototype-testing.skyixd.com
teste.gerenciazap.smartmidiasdigitais.com.br
snapapps.ai
strikelinescorer.com
stylecuv.com
www.svital.pl
bodarivasmata.swanmoments.lat
backend.swingersguides.com
t15g.com
tecalis.com
www.terinyglobal.com
www.the-three.com
thehiddengameroom.com
thepaymentbutton.com
www.theplanetapp.com
stg.thermolog.biz
tonycitterio.se
www.tunrmusic.com
tybas-beauty.de
www.vendubique.com
b12.vexpets.com
suporte.vipapp.com.br
vishalsaini.dev
bimect.demo.voyansi.io
www.willowisp.ca
mea.workspace.training
www.x-pr.co
education.xtreamers.io
consumer.zeaeye.com
Other domains in certificate