DNS Gurus

SSL Verification Bypassed

The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.

Reason:

Expired Certificate - the server's certificate has expired

Open Cached · just now
62/100 SECURITY SCORE

Certificate Information

Subject
CN=next-customer-order.promo-and-go.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 29, 2025
Valid Until
July 29, 2025 Expired
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FF:1C:12:F3:90:59:68:F9:47:E8:13:20:8B:EA:C4:62:76:FF:23:72:D6:4F:DB:5A:D3:73:4A:5C:EB:F0:E6:9D
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
coachreferee.com

Other domains in certificate

iris.1ez.xyz
www.staging.24hourstravelcrm.com
suppliers-s.alter-5.com
bluetables.space
www.dev.booze-feed.ca
app.bovitzpaneltools.com
bcc2000pro.my.brinno.com
links-cbpharma.carebook.com
www.ceramicolor.com.ar
admin.chorusclass.com
bonus.chymcakmilan.com video.chymcakmilan.com
ar.yogeshjadhav.co.in
consultant.funzo.co.tz
cesbarstore.com.bo
soccer.comounexperto.com
friendzone-dev.coplay.io
creche-ma-deuxieme-maison.fr
ero.cum.engineer
www.cube.danrcohen.com
www.deadcamperyt.com
www.dorfielabs.com
partner.events6.com
florafilter.co.uk
fmroyal.live
gdjv.foodle.su
www.frenfinance.xyz
invitation.gastronaut.ai
prod-sp-origin.gohenry.com
sms.grayfish.com
hishmad.id
admissaotreinamento.hrestart.com.br
ibroye.ch
app-preprod.ideta.io
incorporadoraferrari.com.br
www.influx.pt
notifier.input4you.be
app-dev.ioxstudio.com
rachel.iterabledemo.com
www.jennifernip.com
www.jetpac.app
calendar.jjportal.xyz
juventus-herisau.ch
www.lamarwilson.com
www.lepresidenthotel.com
office.stv1.locobear.com waiver.demo.locobear.com
liemds.loistaa.salon
model2.maauu.com
maco.fit
studio.magicinstructions.app
admin.malayalihub.com
martinsosic.com
meghal.me
menucard.us
mva-reimbursement.com
get.mycoralhealth.com
www.nashobabio.com
www.neko.haus
app.noisegrasp.com
notiz-app.com
www.oddleg.is
www.oesukam.me
admin.opiekujsie.pl
www.orian.solutions
app.oxzygen.com
sumate.pampabi.com
www.paulotaylor.com
pechi.at
pegrfo.com
penguni.com
petdelish.in
w.pirlantamerkezim.com
cristoderivas.porcelanosapartners.com
www.procyonfinancial.partners
next-customer-order.promo-and-go.com
pubman.ch
create.re.cards
rendezvuous.app
www.sandefjordproteselaboratorium.no
santaslittlesecrethelper.com
shinchina.in
shonduras.com
insights.shopmyinfluence.com
apixit.speakylink.com
www.synnetra.eu
td-web.com
terabitdesign.com
themailboxproject.org
thomasstas.com
tjss.in
app.togethervideoapp.com
totspl.com
treq.me
boletos.uanl.mx
stg.hvms.vvnst.com
buy.wndo.io
www.wtvr.games
xurn.com.br