Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=auth.staging.insearchof.app
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
December 22, 2025
Valid Until
March 22, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
37:8B:09:E2:88:1A:70:74:30:95:EC:D6:1B:0B:A7:61:40:6F:B8:1C:7A:13:97:C8:AA:B1:2A:94:44:1D:72:49
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
Wildcard CAs
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • You have authorized 4 CAs - consider limiting to only the CAs you actively use
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
Subject Alternative Names
100 domains
christiangc.com
llg-crm2.5loyalty.com
www.abhilashpm.com
adrianjost.dev
arcall.ai
www.architex.solutions
app.dev.awesome-table.com
www.bagimenu.com
baselcosmetics.com
www.baselcosmetics.com
candelaslist.com
candoit-dn.eu
search.clicktrain.com
admin-legal-dev.coconala.com
static-cdn-beta-clients.codedesign.ai
static-cdn-clients.codedesign.ai
www.dbit.com.pl
noticeboard-app.uat.counselvise.com
stage-app.credits.com
auth.datamatch.love
www.drajuliafarias.com.br
www.ekalsutra.com
emonsolutions.com
www.fab34.com
gastongaitan.com
www.gastongaitan.com
topup.hapishanipudin.com
esc-web.hi3516cv610.xyz
int-scan-go.hm.com
holatengosop.com
ima.mx
www.ima.mx
imthiyashanifatrading.com
auth.staging.insearchof.app
app.insidehires.com
www.isitsafe.com.br
www.json4matter.org
auth.jtlrgroup.com
lists.justlistapp.com
www.khanacademyranchi.com
kunlatek.com
labirentmedya.com
pinsightauth.lykdat.com
meets.meetelp.com
auth.mercamio.com
mogiguaculixozero.mogiopendata.com.br
movemedianepal.com
l.pp.mrd.com
www.mycodecafe.com
certificate.myfinmitr.com
www.neha-pandit.com
ngn8software.com
www.nimztek.com
links-dev.northmill.com
links.northmill.com
nuelcee.com
nuelcee.me
nutrifitguerrero.com
oasisbotanico.com
pathdecode.com
auth.itero.plasmo.com
app.podurama.com
posemy.art
prayerhub.uk
propulsor-acuatico.com
boomin-visitor-declaration.ptsolutions.tech
quentinober.com
ricardoromero.cloud
auth.devlog.rlabs.dev
ronniemyers.com
connect-ng-carrier-loadboard.rxoconnectmain.rxo.com
connect-ng-documents.rxoconnectmain.rxo.com
connect-ng-purchase-orders.rxoconnecthf.rxo.com
connect-ng-shipments.rxoconnectmain.rxo.com
samorend.com
socios.sgroneclick.com
spinnix.cn
stringfly.app
prod-mambo.iframe.survive.bet
links.dev.tekutekulife.com
dashboard.templately.com
thebeautiesofeden.com
applink.thelorry.com
www.todociber.dev
id.test.trailbot.app
trakto.studio
www.travelopy.com
ultratech7wonders.com
www.vault.top
vazzet.com
livechat-staging.vnlp.ai
www.vrestem.com
xn--21-jlcexue9a7f.xn--p1ai
xn--fetzerbru-22a.com
www.xn--hjrntorget-r5a.se
xn--hjrntorget-r5a.se
xn--internet-fhrerschein-yec.net
xn--kssptzle-calculator-gwbd.de
xn--pay-k73byfl10a.com
links-staging.yourgolftravel.com
Other domains in certificate