Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=tapkey.krcgatletiek.be
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 12, 2025
Valid Until
March 12, 2026
71 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7A:F4:3F:DE:C1:8F:DA:1D:4D:00:7C:B2:CC:B7:36:F9:AA:14:74:EB:F9:25:52:3E:DA:3A:DF:47:74:72:EB:B3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
cotei.app
4pics1wordle.com
www.9kg.in
agrafino.gr
back-office-stage.aires.digital
avr-awvn.appdashboard.nl
avaliacaodefiltros.online
ballsod88.live
login.binxly.net
biobarica-medicina.com
startmeupforms.bridge2things.at
cachii-atelier.com
applink.checkinn.kr
www.cheezfactory.in
cho.li
christophernixon.ie
www.circlespace.in
clean-concept.be
irasolution.co.in
jisponge.co.kr
mlink.one-click.co.kr
tc-steinamrhein.courtly.ch
dadovyuzasnevlajky.eu
www.darsforyouth.org
perficio.digi-can.com
docrobin.net
drduncanweb.info
betriebsrestaurant.dussmann.com
staging.easypec.com.br
www.eclub.space
infomail.bilgi.edu.tr
p3.enigmahouse.jp
lybo.espora.net
forktune.rocks
nft-ticket-admin.getlychee.link
accounts.happily.ai
hellomint.com.au
ibmvillamaria.org
www.jayce.life
jm-alustal.pl
west.kikaru.net
www.kragency.fi
tapkey.krcgatletiek.be
checkins.lemaltech.sa
candidati.linkpoliba.it
morrenhof-jansen.nutt.test.m4m.io
maltia.mx
marsbasen.dk
martinusoost.nl
mastersoft.si
mentneo.com
research.mindthebridge.com
mlottery.in
www.monolabs.co.uk
myfootballoficial.com.br
auth.admin.nommelier.me
onlyryan.co.za
www.outerlimits.zone
www.paavaifoundation.org
www.perlahaz.hu
perm.fyi
philhope.dev
pulidodepisos.com.co
rapidq.in
restaurantly.io
revivall.co
www.reycoengineering.com
gcp.rozga.eu
www.scoreside.app
sdatoken.com
www.sedusa.in
shoepapi.com
www.sinuheguerra.com
et61v5piqdtfafmjjl0s.smartimob.io
vse.stelifera.cz
takushima-farm.com
company.tecrest.co.jp
www.fall-stage.telehearportal.com
www.tennisdash.com
app.texolenergies.com
thetaxraven.com
auth.staging.kyoukasho-ai.tokyo-shoseki.co.jp
toprated50.com
dev.trackmygiving.com
www.treq.me
www.trungvietsongngu.com
cursosmedicinaintensiva.ub.edu
www.uploadirect.com
vatsalyaneuropsyc.com
dronacharya.vcs.vecros.com
dashboard.w3lcome.com
api.waapp.me
www.wesleyseanbarton.com
www.whatwas.app
www.whiskeymate.net
dev.app.wildorchidwatch.org
www.yargies.com
younee.app
zenreki.network
mijnportaal.zibinvestments.nl
Other domains in certificate