Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=link.rum-x.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 05, 2026
Valid Until
April 05, 2026
70 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1B:3B:8D:80:60:F9:31:B7:F2:95:84:D5:3E:38:69:38:CD:E7:44:35:A0:62:C5:98:BC:D6:B5:08:21:AE:1A:64
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
bxstg.com
6d20.com
www.agapex.com.au
arubacleanbeaches.com
www.bardotgrupovocal.com.ar
bc-gu.ch
bebabeggie.com
www.bedsoflove.com
photography.beiron.se
www.bronzestarmedical.com
locstore.callrec.net
carboncore.design
lenoxhill.careinstructions.net
www.caylershop.com
comicodeo.com
admin.lms.datonix.in
tomorrowtec-staging.devmagic.com.br
www.dinvetec.com
djkapil.com
referrals.drivstoffappen.no
dyaspora.ht
epicura.dk
equipodium.com
esperiency.com
www.fenkparet.com
fregocustoms.com
www.furryfamiliaspa.com
galadiaz.com
deazy-ft-front-stg.goodylabs.com
app.greencapitalinvest.com.br
www.halpp.me
datnthanh.id.vn
hanbm2400041.id.vn
jasonjean.io
jiyabharti.com
joose.dk
extra.jubihugo.com
kamaladeville.com
kuuote.com
www.littletitangames.com
recon-app.logibricks.com
lovellainvites.com
madhav-thenappan.com
www.trivia.masjidtech.org
p1upload-staging.megaslice.uk
www.mg54.com
morningstarhartland.com
mis.mykaraoke.app
app.mytruq.com
link.mywindward.app
www.nightlyrentalmanagement.com
novaforgedev.com
marketplace.novoos.co
beta.spm.numerously.com
climxus.org.ng
probis.pacta-cloud.app
www.paseodelasamericas.com
pcbcorex.com
pdr.app
pichhlibahar.com
www.pistes-en-paillettes.fr
biolgical.promopage.net
www.publisheasy.net
qurr.in
rebankauctions.com
www.rejenn.com
www.remfee.com
playtube.rentixy.com
admin.reserved.technology
cdn.resultadodelaloteria.com
www.robbingthestreet.com
www.roleplaylab.com
link.rum-x.com
sacredscriptures.xyz
saunapark.pl
shrikanttallyinstitute.com
soundbyrat.com
campaign.spaceshare.vn
agrisanterre.speakylink.com
www.staarglobalexxpo.com
stardevelopment.co
www.studioaeksent.com
join.superflyathletes.com
rennesbow.swingrennes.com
www.techsol.services
www.tippytopmedia.com
todomatri.com
www.trackdmusic.com
turismosunidos.com
turmadopedal.com.br
umfprep.ro
vessb.com
www.via1actea.com
www.waybetternow.com
wealthhunters.vip
whatevereatsapp.com
lost-in-translation.whywontit.work
www.williswcy.com
yavapalla.com
karenda.zacherl.dev
Other domains in certificate