Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=mobileapp.setoko-test.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 19, 2025
Valid Until
February 17, 2026
70 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9F:77:13:B9:6D:48:F5:1E:5A:A0:A7:EF:D6:40:CC:B3:92:FB:3D:71:61:20:2E:45:9E:9E:83:D0:76:B2:3E:50
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
creartidley.com
www.aarinjasikumar.com
arboles.acifuina.com
go.adesignkit.com
www.aic.dog
www.aimoneymountain.com
akizu.co
alpinac.com
www.alrehmanquranacademy.com
amznfinds.store
antonvonheiseler.com
www.apnetruck.com
www.apseng.com.au
wilsons.auassist.co.uk
www.auto-klaus.ro
www.bayatechllc.com
mobile.slump.binni.co
bitto.jp
lenewo.bizcuit.ru
chosen.bluerunspirits.com
www.www.btafirst.com
redirect.buildrun.app
cameronkinsella.ca
patrickmadden.patrickmadden.clooster.com
cnclucky.vn
pomodoro.code2d.org
corperate.ng
www.danxax.com
dayonetechsolutions.com
dees.tokyo
diagnosity.in
www.ad-portal.diamondservicesusa.com
app.diom.xyz
door2move.com
show2018.emirim.kr
www.engrish.fail
www.festamecon.com
business.first-iraqi-bank.co
foryoursweetheart-freescreening.sg
labs.gfalm.com
www.glassplac.es
web-dev.globalmenu.app
app.headero.com
henryapi.co.za
www.hensmon.de
www.horizon-alpha.de
daiichi-fuji.s.hotekan.com
admin.idunapp.fi
www.iofext.com
buzzed.itbeschwiz.com
jlainteriors.com.au
jlocatio.net
consulting.juanguarin.com
jamroom.liveombre.com
cms.manchestercodes.com
maxjndg.com
medbook-ph.com
mefrilarollos.com
moneylab.biz
tickets.mymoons.mx
partner.nictpay.com
notify.nside.io
www.oceanfriends.ai
www.ofiebaako.com
omraz.com
pokefinder.owenhay.es
triumphbh.pessego.com
sidebar.peterkajokole.com
reservations.pno.group
pocketland.com
pointagon.com
www.remembrance.co.nz
servermemo.com
mobileapp.setoko-test.com
scout.signatureortho.com.au
app.smarthamster.se
solofindr.com
www.sonar-me.com
www.sorobanquiz.com
sparsh.app
www.sperleinlaw.com
acc-console.spont.cash
dls.sprxvr.com
szoljonrolunk.hu
stud2.tgpetrica.ro
thebonningtonbeast.com
www.thepcrtest.com
tiendex.com
live.transylvania-college.ro
www.tres-e.jp
turnsit.com
www.ubytovaniostrovnadoslavou.cz
www.simon.whomever.dev
wifi-speedtest.com
writingstudies.net
www.wyawin.com
demo.callbot.yitec.net
www.zazzy-ai.com
app.zemich.tr
www.zubar.ch
Other domains in certificate