Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=rba.softtouchpos.co
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 16, 2025
Valid Until
January 14, 2026
65 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4F:30:6E:52:67:F5:54:85:0B:55:F3:32:5C:02:A5:2C:F0:A6:B4:F2:94:37:AC:E3:6B:98:FB:E6:B5:52:FE:4C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
charlap.co.il
jlp-roomplanner-cert.3dcloud.io
covid.abhi.in
www.agricola-chile.com
ahmedhussein.ca
vocabulaire.anaisvs.com
www.andrewstunts.com
admin.baluarteeng.com.br
candb-client.canscale.dev
interviews.charlieproctor.com
www.clark-brown.com
karshak.cloudbade.com
atifelectrician.co.in
go.cognoa.com
url.wecreate.com.tw
coworkdepot.com
creditodonademim.com.br
culturalcubs.in
www.daysbeyond.com
devayush.com
admin.dianetdiabetes.com
eeljun.com
emilydakers.de
super.enercred.com.br
www.erfolgsgedanke.com
florexinternational.com
fomrealty.com
fufudirect.com
open.gigshare.app
app.gruvyeducation.com
app.helpopx.com
heyleap.com
www.homeboostmortgages.co.nz
mrlab.ihub-drishti.ai
deeplink.ikey-lock.com
jeha.club
share.joinenso.com
keabot.fr
laserunicornwebsites.com
www.leadalist.com
lecanary.com
cnelojatools.lifewcode.com
lundgren.ai
medxat.com
meinheim360.com
mochalife.com
moodengplus.com
mopkin.com
mymukhtar.com
navagridhar.com
www.nefacabs.com
www.newcomersjobshub.ca
www.newimageketo.com
nishisconsulting.com
nyghtowl.com
staging.ondoc.com.br
plh-kids-sa-uat.open-app-builder.com
gulvnorm.ordreplan.no
payflowbox.com
www.pbmentor.hu
pedrozurita.com
adminbeta.performatv.com
photographesdumonde.com
playmoments.com
www.pocketcowbell.com
www.primofl.com
www.projectonepremium.com
promogrind.com
www.putinisolation.com
puzzputt.com
www.raisedapp.com
www.ralphroque.com
cardsagainst.rezonant.dev
www.romualdus.com
connect-ng-carrier-tracking.rxoconnectuat.rxo.com
connect-ng-purchase-orders.rxoconnectuat.rxo.com
connect-ng-shipments.rxoconnectuat.rxo.com
safe.is
www.samjarrah.com
sbdlbd.com
clocksanddice.seefar.dev
sevenoceanship.com
shhoa60.com
snehabhavana.com
rba.softtouchpos.co
chipin.songsstarthere.org
sushibiberon.com
tarctornation.com
td.tn
just-in.texnrewards.com
www.thefuckingtrip.com
www.themachinelearninglab.com
tomi2.tomitech24.com
tomi4.tomitech24.com
transmittal.app
trickyleaf.com
vaiguru.in
i.verevio.com
esign.vldzgroup.com
xymenapp.com
Other domains in certificate