Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=auth.reservaia.mx
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 13, 2025
Valid Until
March 13, 2026
70 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A7:72:A6:A2:13:D9:44:65:73:5F:2F:F0:3F:F9:90:D3:DD:74:A9:97:C5:74:3A:81:F9:BD:C3:B4:BD:BB:74:4A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
caara-races.oddbit.com
modis.3diq.com
aegiscode.in
storyverse.aioncw.com
alphastraton.com
order.amontola.co.uk
animtz.com
cluedo.ashtrickz.pro
badskip.com
biohard.com.ar
try.bluesquad.co
abeb.bmd.br
citimaxenterprises.com
devtools.cleverchuk.com
www.cmgn.pl
gyphillpremiere.column.us
www.coneri.pe
www.cuvos.com.au
davidleshem.com
planning.dewijksedienst.nl
www.dilsedil.co
dontforgetme.nl
management.dsscodingsolutions.nl
dev5012.eggacy.com
endingeverything.co.uk
www.shayane.eng.br
www.entregas-am.com.co
www.eyalro.net
ezcallin.dk
tongeren.gemeenteraad.live
gronaki.com
gukgihun.com
cumin-jasper.harecord-dev.com
islamabad.helpr.pk
hitendrakariya.in
auth.iamwithgod.com
www.imperial-deweloper.pl
spotify.auto.io.vn
drilearn.itsourlives.com
neduvaai.joeralph.in
keulen.it
app.kipinto.ch
www.kkrl.co.uk
liltriangle.com
www.lolaandaugust.com
lunartech.software
www.manuelrdz.com
matt-h.com
www.meydan.ca
dev-projects-ft-tech-radar.internal.ml6.eu
unko.mocu.jp
app-links.moov.cc
mvpenthouse.com
nabieva-adel.ru
ndim.app
nerby.app
nestorjgc.io
www.nflgamerater.com
notarkravchuk.com
nuevoalture.com
dashboard.pechinchaai.com
politiks.us
sugaberrio2.pujasweb.co
invite.qlu.ai
www.qr-meishi.com
globalplus.qurneo.com
auth.reservaia.mx
rouxbot.app
www.runwalkpro.co.uk
seals.app
shellteringsussex.org.uk
sheptitskiy.ru
funday.shiftlab.tech
www.simplydiary.me
www.smart-web.ai
sonenterprise.com
www.sonenterprise.com
cube-solver.sparkappz.com
admin.tabetdairies.com
blog.tagezerby.com
taqui.online
admin.techdigitalcard.com
www.tenplate.app
app.textografo.com
thatsdefensive.com
www.thecum.org
tormap.org
admin.tourcalltaxi.in
app.traileasy.com
transimpact.io
traves.io
fsquart.tuintra.es
app.unblnd.com
statusfisioterapia.v8app.com.br
veronapride.it
vrls.app
wesaal.app
mesa.yourder.com.br
talk-to.yourself.health
zhohadamani.info
Other domains in certificate