SSL Certificate Analysis for bon-voyage.idee-novel.com - Security Grade & TLS Configuration

Open Cached · just now

77/100 SECURITY SCORE

Certificate Information

Subject

CN=trieverse.com

Issuer

C=US, O=Google Trust Services, CN=WR3

Valid From

October 19, 2025

Valid Until

January 18, 2026 51 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

A5:92:04:23:B8:87:88:C0:5D:6F:8F:D9:1F:F4:43:EB:B8:1C:4B:59:41:B2:FD:B8:B6:E7:B8:10:F8:E4:42:42

Alternative Names

100 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31556926

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains

bon-voyage.idee-novel.com

Other domains in certificate

play.1ludo.com

www.acpengineering.com

alphadna.ai

data.apapdladzieciforte.pl

jira-google-calendar.appfire.com

www.bellytobabydoula.com

applinks.bingeit.ai

brandvelocity.co.uk

www.buzztobrand.com

dev.share.cf.me

techteam.chiendezign.info

chimp.cafe

cs.xtrm.co.in

playgo-stg.vonder.co.th

colaborasound.art

crewmap.app

cycleshare.online

daniel-enterprises.com

danylopes.com.br

domora.life

www.dreamlook.ai

dayplanner.poc.dsiag.ch

www.dustinadkison.com

office.edds-shop.com

edmouth.com

escobedev.com

www.estorealley.com

ezykov.com

docs.fastgivemoney.tech

filzquadrat.ch

fmroyal.live

admin.futbolmatch.com

www.getrealexperience.com

petpooja-docs.gotabless.com

auth.gotv.fi

www.gracelongtennis.com

prod.greenstream.io

handaptive.com

helward.com

hishmad.id

app.hobbinity.com

app.indumentariavalencianaelena.es

jaanservices.uk

www.jannikobenhoff.com

aurawall.jayshree.tech mentorlab.jayshree.tech

www.joaoguilherme.dev

jobbingprueba.jobbing.cl

bingo.karla.ai

katiaandojo.com

katiaandoladele.com

portal.demo.keeportoss.com

www.uksgrom.lublin.pl

maco.fit

meghal.me

menucard.us

www.micdup.social

modovuela.com

mygeizer.ru

www.negative.red

www.nickreu.space

oatfox.io

oddience.app

www.orion86.com

rdb.pepperpin.com

petdelish.in

www.pixelartdraw.com

dev.pocket-study.com

prahartech.com

www.proscalar-go.com

qataroutletexhibition.com

villela.quitapay.com

registarttoken.art

my.rppl.app

www.saenuruki.com

transporte.sechit.com

shinchina.in

shrutiformoco.com

shubhamraval.in

mini.sisidev.com

spellz-app.speakylink.com

rgc.spence979.co.uk

srinikithav.com

www.srinvisiblegrillsvizag.in

stockformer.com

szopi-chlop.pl

thehypnovirusonline.com

themailboxproject.org

theskapl.com

tjss.in

ci.tk3.biz

app.togethervideoapp.com

totspl.com

treq.me

trieverse.com

excite.tyan-shanss.com

umdbulldogsportcamps.com

www.victory-nails.eu

onehub-dev.zodinet.com

Free Cloud Credits

Get free credits to test cloud platforms