Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=integration.bolste.net
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 22, 2025
Valid Until
December 21, 2025
36 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
02:5F:E0:91:96:51:0C:18:B3:A1:A3:AD:18:2D:86:8D:E9:9D:34:18:F7:EA:66:2D:62:F1:59:21:FC:A6:91:AA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Basic
script-src; object-src; base-uri; +3 more
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
cmlink.class.me
actuemosjuntos.com
doctor.aganhealthcare.com
al-ge.com
www.alisch.me
antonytraders.in
apatosaurus-software.com
soporte.appbastos.com
appliedsciencesdevision.com
admin.artfile-hk.com
bestftso.com
express.bicci.cl
app-uk.blankstreet.com
testing.blumemethod.app
integration.bolste.net
brettyang.ca
www.capitalmindwealth.com
www.cascadia.photography
chibidash.com
reports.vipagri.co.th
daichepe.com
datalogics.pl
dein-transkript.de
designpro.dev
digitrack.online
www.djsparks.com
preview.eliteportal.co.uk
www.emergencyprep.day
admin.fosterate.com
test.foundationsecurity.org
gardez-votre-permis.com
www.goodproductssoft.com
www.grwu.online
gscitb25.com
vitrine.haendel.tech
www.highertz.site
hoon.pro
picking.hotwax.io
hterm.org
business.io.iitmbs.org
immosimu.com
indiesagtewerke.dev
infoquestschool.kr
app.interligados.net
www.jcscrackers.in
dev.converter.labcare.cloud
lachlanfs.dev
www.lumbungrempah.com
talks.malvre.com
mariusfink.org
covid19.mayamd.ai
abs.pfstage.mbks.io
link.milkywire.com
mixq.xyz
mokuden.online
app.mollwe.se
www.mrfx.xyz
mysteriousgoo.com
www.navra.fish
newnavy.com.au
noblehire.io
novelisions.com
app-link.okonomiyaki-honpo.jp
ibiki.oneclinic.jp
orexplylam.com
udghosh.org.in
csr.payglobal.me
www.peredovik.org
www.reviewmyprofessors.com
rocketship.consulting
ruapeakstech.com
and-the-winner-is.sensacine.com.mx
s.ser.vi
shitsandwiches.blog
devtest.shopix.me
shouldigolftoday.com
www.simpliversity.in
share.soldlive.eu
www.speedymind.net
stalaverse.no
dev.lego-duplo-world.storytoys.com
www.studio360photography.in
www.superexcelvba.com
www.supermenuapp.com
takuchanwork.com
talentfi.xyz
retail.thedrinkfree.com
vna-dev.thepetdoor.eu
tiarosario.com
tillmann.hu
www.timefiddle.com
www.timezonewhiz.com
toca.jp
usualcash.com
eu.audit.uveye.app
staging.api.uveye.app
www.vedanshshrivastava.com
www.vipcpa.ca
voluntrapp.com
www.yatradroptaxi.com
Other domains in certificate