Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=latelierdezip.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 15, 2025
Valid Until
February 13, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8B:B8:D6:B8:10:EC:99:D6:1E:7B:F2:AD:28:CF:46:22:43:5B:EB:BF:6A:E5:E9:44:E5:B3:2E:D7:EC:C9:D4:74
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
charmxr.app
adityashelke.com
www.alecbrookstone.com
meme.as-a-service.dev
www.atacadaodastintasgyn.com.br
www.beez24.com
share.bigfm.de
birimfiyat.link
www.birkman-beratung.de
lp.bizshare.co.jp
bradensworld.com
www.cexbit.cz
christianbabin.com
poalimlinks.co.il
luxecredit.com.hk
zoeyteck.com.ng
krapor.com.tr
typesomething.ddaaaaann.nl
devlopin.com
dginfo.xyz
digitymath.com
factors-su.com
ph.fbox.us
fieldporter.com
www.foodder.app
franckmahoussi.com
www.freshcitybakery.com
www.fuudie.es
fyreforms.app
areainterna.gescip.com.br
staging.beer.gobeep.me
goodtastenoodlehouse.com
greentakaritas.hu
hangtentechnologies.com
hauntingtrails.com
iline.in
inbox-detox.com
infrabuildr.com
mercedes-de-testing.input4you.be
inspirei.co.jp
artur-tetiana.invito.link
notas.jesusfdez.es
kallaran.com
kaufdeutsches.de
www.kikecoder.es
latelierdezip.fr
lautarocentorrino.com
stagingsyndicate3.letsventure.com
licenserenewalsa.com
mechatronik.sk
documentation.meverifyng.com
mitintoreria.com.co
mobalabs.co
motoekipmanim.com
www.musicdatalabs.com
joshuawong.nard.ca
orenwaxman.com
pcmaticaccount.com
destaffinggroep.pensioeninzichtonline.nl
www.phybercare.com
www.placego.hu
test.possibl.ai
strategy.professionalgrowthsystems.com
horne-pr-dev.psg-labs.com
www.blendodeon.order.pulp.eu
dashboard.qcrivertraffic.com
rakshithaconstructions.com
www.rakshithaconstructions.com
rendercor.com
restraa.com
cp17.rezidnet.com
productivity.samweaver.com
securify.nl
www.sehajsolution.com
beta.setlistpro.live
app.setutrade.com
land.sigroup.vn
lyss.simrace-control.ch
sovereignagentapp.com
auth.splitium.app
www.stronder.com.br
www.swissgameguides.app
tealorange.app
rgx.tec.br
tech-alliance.eu
thirdeyeagriautomation.online
tianfengdi.com
tubebite.site
tuentradaqr.com
www.turkuairport.fi
www.valarshyn.com
valeriadesigner.com
vapcoegypt.com
www.wandan.au
wielockxdancecompany.com
www.williamsburgnails.com
apps.yangchigi.com
yikyakgames.com
yorecomiendozacatecas.com
zeusgroups.com
Other domains in certificate