Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=vergerjoannette.ca
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 09, 2025
Valid Until
March 09, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8F:C4:10:E9:D9:AD:EA:6F:BC:3D:A8:2D:26:57:68:01:B1:72:51:7F:3B:CC:4C:C4:DF:D1:98:59:07:44:E8:9F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
beingabundance.com
ui.lineofsight.28east.co.za
kaboodle-visualizer.3dcloud.io
acorntech.us
timemanagement.acrux.jp
auth.dmo.adadapted.dev
bitchat.allaboardbitcoin.com
management.amperry.me
www.axecut.com
s2.b-sw.co
www.bdalil.com
www.beauty-lab.mx
file.benes.se
bitforest.tech
brenhr.com
bunbasar.com
butterplup.com
byruleapp.com
cerere.md
classicalmusicquiz.com
prepair.clearquote.io
corporate.cmedhealth.com
coder-bot.com
www.codeworks.ar
vanrental-customerpage-staging.commitsmart.com
cdmedia-bulgaria-staging.contentcard.com
www.criar.art
www.crickrack.in
twistedsugar-orders.crispnow.com
www.curial.com
degrandisphysicaltherapy.com
dev-login.descendantsdna.com
drluizantonio.com
dulcesita-paris.fr
irbuilder.edanat.com
agrimaps.elevarm.com
f45techrego.com
www.fahrschule-tiger.de
www.fairydaze.com
www.fallacni.com
fanmomentum.com
feedlivery.com
www.finramos.com
docs.fintechvisuals.com
www.fivethingsthataregood.com
www.hamsterbreak.com
www.healthamaze.in
www.helluwurld.com
highlandstalentgroup.com
beta.iadops.com
dev-l.iftaranekadarkaldi.com
pkfpitt.impactwrap.com
indiapropagent.com
ingredientsid.com
instantlaptopsolution.com
www.instantlaptopsolution.com
app.instaviagem.com
app.invitation-apps.com
app.qa.invoicenxt.com
jacobtufts.com
jayneshbhandari.me
johnsbarden.com
jonathanbrown.engineer
mta-sts.jorda.org
gym.joshiexclusive.in
firebase.joyhunter.online
www.kirillsolo.com
www.livelearnquran.com
www.localbusiness.media
logemail.net
luisboccuti.com
politica.melivra.com.br
learn.staging.mikademy.vn
6zsfhrwlwmsdemo.milivesystem.jp
www.nathangauer.com
www.naywinhtun.me
nicefilmlab.com
read.nprone.app
orthodent-center.com
www.parsedfilings.com
database.passpass.org
paulamonteiropersonal.com.br
pencil-puzzle.com
www.plus2link.com
player.queued.no
navodila.quibi.net
www.quickfixremovals.com
beta.readafun.com
www.rushowl.sg
99th-birthday.srisathyasai.org
admin2.studiomediaagency.com
prl.sunyatee.org
www.fall-qa.telehearportal.com
th-lines.co
tinydoc.io
www.toletorbuy.com
web.trackki.com
vergerjoannette.ca
admin.vitalve.nl
typing.yuliannas.com
Other domains in certificate