Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.eljuego.cl
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 04, 2025
Valid Until
March 04, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AE:9C:3B:83:EA:2F:7E:C2:19:C7:12:13:11:A4:09:67:8A:98:FB:49:83:1D:FB:B5:C5:81:72:4D:3A:76:57:1D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
beta.essenceofthequote.app
go.2play.no
a2council.vote
www.abodesaafan.com
www.abrah.am
activeplaces.me
maps.agrisense.live
anep.app
www.appdelocio.es
thierry.architects-and-architects.com
crm.augustahitech.com
axiomatec.com
baseima.ciclohidrico.com
cifunsa.com
bv.ck.ua
pickup.clouder.app
colmon.fr
gallerywebapp.rupak-thapa.com.np
hackathon.communicationteams.com
panel-loespejo.comunaconectada.com
plot.copyprintsh.ch
www.corrievannie.co.uk
www.cristian-ortega.com
nibako-mng-dev.daihatsu.co.jp
privacy.dibolix.com
www.dilbar.dev
www.eljuego.cl
www.embriot.net
www.equalspeech.com
www.videdit.esterinity.com
app.foodsmartstrategies.com
chatgptflutter.gabrimatic.info
gameservice.com.mx
inbox.garciatech.com
app.guarentee.ca
hama.day
hanhdev.xyz
www.hornbach-baustoff-union.eu
app.hvr.world
staging.ifixitapps.com
sareperforadoralatina.inter.mx
ipv6-insider.de
jmagar.com
www.jysinfotech.com
saintjerome.kards.fr
post-kg.kojo-shin.com
www.kushalkahar.com
www.learnmaps.com
www.lelijesolutions.com
bike-rentals.lexer.dev
plant-my-tree.litta.co
start.lootboy.app
atividades.malvre.com
m.max-estrem.com
wedding.mcdamon.net
admin.megasupplyllc.com
michrankicool.com
mikebodge.com
minbahadursherchan.com
admin.moca.cash
especialistas.motiv-app.com
wedding.mubashira.mk
m.mumerz.com
auth.musicblobs.com
mypartymixer.com
mysecr8.com
www.nimawat.com
conta.notario24.com.mx
www.oliviarees.com
kyc.onehypernet.dev
paradisemarinaplace.com
liveqa4.peppybiz.com
app-legacy-dev.pixis.ai
yim-card.plaping-dc.com
playne.se
smartlamp.potatoma.com
app.praticantes.org
purposeclock.com
qohlo.com
rangai.tokyo
app.rosnet.ai
roumount.com
www.saltehouse.com.au
www.shii.link
app-registration.slconferenceasia.com
smarterly.app
www.sodastreetfood.com
www.tagneeds.com
w.tc-timecard.com
app.thebakeryandcafe.co.za
www.throughbond.com
vmp-syc-qa.travizory.ch
undelayappdashboard.com
join.urxconference.com
videollamada.uvi24.com
ventureplusprotection.com
vietnamoutlets.com
www.vigor-witaminy.com
loch.vvek.dev
ww.wayla.com
Other domains in certificate