Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=ordering.sp2smalaysia.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 19, 2025
Valid Until
January 17, 2026
68 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
62:3D:6A:02:E0:88:6C:08:FD:52:78:9D:86:D3:6F:7B:C2:0F:60:8E:3E:DF:2D:E4:58:44:10:1F:BF:E2:92:31
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
comsize-works.com
api.adiop.com
akilanselvam.dev
www.apexbodytuningmassage.com
manager.areyoudigital.fr
camera.azrs.jp
mobi.beratungserlebnis.ch
billionberrysidehustle.com
auth.blablalivre.fr
www.blazemotionai.com
www.booksplusapp.com
jewellcountyrecord.column.us
learningfieldhighschool.com.ng
www.daleandray.com
suntory-th.dashleads.ai
deeplink.ua.delcom.nl
di2pra.com
app.ealbum.in
www.ecuriedugrandchene.be
edutv.mn
ir-q-support-staging.elliq.co
mta-sts.fagerlund.com
app.fanatics.cr
verify.femble.co
app.fortunefx.xyz
mobile.happymatches.com
demo.helpline.chat
dev.links.hollywood.com
inventiapps.com
gre.app.knudge.me
www.lakeparkcuba.com
www.landdeedee4sale.com
www.latourosgypsum.com
www.lauragolding.co.uk
topservice.mitraecp.com
booking-staging.mountainmanagement.com
mrzverify.com
play.msj.world
auth.multimate.io
mybirdies.ca
ebook.myrealfood.app
www.njackson.co.uk
translate.nordija.com
notaria29cdmx.com
nutriverse.world
votenet.creasp.org.br
www.palei.ru
phony.dev
www.pixihealth.com
bestellen.pizza-migliore.de
admin.prettypennypincher.com
protrucktrader.com
idez.quitaboletos.com
ratetherefs.app
app.rathertext.com
www.rhinoconsultancys.com
robertmurfin.com
rugbyexplained.com
ruwind.de
sanlamprivatewealth.com.au
www.sasanakreasi.com
sateksa.com
scrapexport.com
www.scrapexport.com
www.shusteripartnery.com
smart-beauty.co.uk
www.smartec.ie
hassan.bulega.smarterlabs.tech
hi.soltosoft.com
www.southaustraliatiling.com.au
ordering.sp2smalaysia.com
www.sphiverse.org
www.spoders.com
www.sprayx.in
driver-sandbox.ssms360.com
bodamenaaraujo.swanmoments.com
bodapelz.swanmoments.com
xvalessandragiselle.swanmoments.com
sweetescapesbhutan.com
tamoozmodern.com
florida-admin.tech-scheduler.com
diel.dev.techkey.pro
thatsfax.com
thecodeflix.com
www.thecodeflix.com
thegreat80s.com
television.theorygenerator.com
thierrybergeron.org
titanpuntales.com
tomerharari.com
tracktogomax.com
wakubi.jp
app.webtrit.com
www.wehealapp.in
www.whenwemeet-calendar.com
windyapk.in
parnix.xcwalker.dev
open.yourip.com
www.zachrmccoy.com
zapp-code.com
Other domains in certificate