Open
Cached
·
just now
87/100
SECURITY SCORE
Certificate Information
Subject
CN=idaviktor2025.se
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 03, 2025
Valid Until
February 01, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3E:E1:D5:01:10:C3:7B:82:E6:7F:D5:17:FB:D5:CE:5B:11:AB:43:F7:F3:B0:15:22:56:83:FA:EE:83:55:C3:6C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Strong
base-uri; connect-src; default-src; +9 more
base-uri 'none'; connect-src https://m.stripe.com https://t.stripe.com https://*.hcaptcha.com https://edge.stripe.com https://errors.stripe.com https://hcaptcha.com https://r.stripe.com https://sourcemaps.corp.stripe.com https://stripe.com 'self'; default-src 'none'; font-src https://a300.stripecdn.com; form-action 'none'; frame-ancestors 'none'; frame-src https://*.hcaptcha.com https://a.stripecdn.com https://b.stripecdn.com https://hcaptcha.com https://js.stripe.com; img-src https://t.stripe.com data: https://files.stripe.com https://q.stripe.com https://s3.amazonaws.com/stripe-uploads/ 'self' https://stripe-camo.global.ssl.fastly.net https://d1wqzb5bdbcre6.cloudfront.net; script-src https://*.hcaptcha.com https://a300.stripecdn.com https://hcaptcha.com https://js.stripe.com 'nonce-crOtAJlzi0i7+9eHmFtc2g==' 'self' 'sha256-+sBr+ZcvoSOxP7Tk8LPeyMQbga8JB9stptcp/idxRCI=' 'sha256-X282X6GM6HOVS4ZlarVs8J6sTL4pCBCyjJ1mGXPnx2c=' 'report-sample'; style-src https://*.hcaptcha.com https://a300.stripecdn.com https://hcaptcha.com 'self' 'sha256-0hAheEzaMe6uXIKV4EehS9pu1am1lj/KnnzrOYqckXk=' 'sha256-H6kR2Irnq6yhQutut2icFv4LPYJFqqRXRNODTKX8CTg='; upgrade-insecure-requests; report-uri https://q.stripe.com/csp-violation?q=9fQYCqYqmHiGItNMCzBOvE_rBvK1ZSVZEA9kHg8uQi1sNg_ad-vf4-HtUwI80pcYAR2AhSiZnn25jQ%3D%3D
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add X-Content-Type-Options: nosniff
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
billing.centrulminerva.ro
accelerate.me
staging.anglequest.com
loom.app-staging.aplika.jp
hearzap.apxor.com
www.atriumio.com
test.avastars.io
biswanathsahoo.com
bv34-soest.de
calisthenicstracker.com
calriz.app
changaya.com
chitimasala.com
clembesso.com
www.cocxel.com
authorization.discovery.corelogic.com
cssfoncier.com
www.decomlabs.com
upcoming.degencoinflip.com
www.deinephotovoltaikanlage.de
cfeda0ca537b13084b545518d8006365.dendrovis.com
www.devport.ru
driver.digitalpermitbook.com
www.dinat.es
dorringtonnights.com
q2-myshipments.dpdlocal.co.uk
www.dplanner.nl
dyeschemical.com
aopstage.early.vision
www.entunboxed.com
erex8eonemesis.com
nofortunes.evanzap.com
extrappt.com
fgasesoresdeempresas.com
dev.formulebooster.nl
francisthetort.com
www.fspass.com
www.garg.international
gee-gee.uk
villa1.geekylab.com
pay.sandbox.gametime.gr4vy.app
hand-help.com
hausasteri.com
houseofinaofficial.com
hpsware.com
www.hpsware.com
idaviktor2025.se
dev-link.infohub.jp
iriscaterers.com
isetravel.com
www.jaredcoin.vip
viss.jetfalcon.com
jihotsu.com
app.juntosenergia.com.br
www.letafall.com
www.linelesslife.com
kelaris.lunofox.com
madforchess.com
app.mlb-60.com
www.muttch.com
sumai.nginel.com
notion-iq.com
novel.offbeatplay.com
pecasdigital.com.br
demo.pej.se
www.primaria-ungheni.ro
tpay.qps.io
app.foodlabel.rdlabo.jp
mypackage.redsols.us
bertjonk.rentvisie.nl
app.salientmotion.com
www.sawyerklahs.com
scriptfighter.org
servirodillos.com
app.setav.ai
beta.shop.link
list.sigmashine.com
www.sitthinut.com
jurisprudentiewijzer.slachtofferhulp.nl
www.softinmedia.fr
sptf.nl
www.swimcoachapp.com
link.swingu.com
symphonist.net
sign.tblmedical.no
thelewistonlodge.com
applinks.tintelgift.nl
tsunagaru-shop.jp
kla.vandermey.us
sugerencias.verfrut.cl
app.engage.dupagetownship.voyagernetz.us
app.engage.viauzhpjcccedutaecpy.voyagernetz.us
www.watchnewlife.online
wazaa.app
wettbewerbsforum-bahn.de
www.worldlines.tech
todo.xcode.no
authenticate.xprofile.vn
market.yourdesignjuice.com
yrreddygroup.co
Other domains in certificate