Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=harshaljadhavandassociates.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 06, 2025
Valid Until
March 06, 2026
77 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E3:5D:D7:67:84:C9:4D:80:E5:8B:1E:1C:C7:D3:0E:D8:D5:DA:84:91:FA:A8:4F:EE:95:91:48:6D:11:6D:20:AE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
creatively.dev
0xcz.one
cms.29k.org
qa.alpharoot.com
dev-sidekick.arvig.com
ascp.link
www.bapital.com
www.beyondbudget.net
bijumemorialschool.com
billr.xyz
g.bisericavia.ro
auth.bukium.cl
cambri.ai
stage.unr.campusexperienceapp.com
canadianiaq.com
operation.cognite.com
hotauto.com.ua
cavcoffee.com.vn
devis.decubberentreprise.be
deskjr.com
dominicorsi.com
www.dragonsandbrews.com
admin.driiven.fr
www.dwaire.com
dweilpauze.tv
mojipic.f-arts.work
fluttermasters.dev
r.fonts2u.com
food-control.cl
fpvr.io
www.geared.tech
demo.gemeenteraad.live
geogenius.org
www.getbooknotes.com
getkrater.com
download-list.ggngames.com
grinninghermit.com
harshaljadhavandassociates.com
app.helixchart.com
www.hommagicindia.com
www.houseofgames.app
houseofsurfing.com
ideatoons.com
www.ijatsr.org
sronline2.indiandevelopers.org
labs.jade.io
vcard.jonadedobbeleer.com
www.jordy-hertogs.nl
juicyballs.at
v3.keeganwoodburn.com
khguruge.com
www.konecta.mobi
www.kuttinkorners.com
leniteam.com
letmeknowgroup.com
akasha.lhinxue.com
listsmaker.com
www.livelipath.com
spell-checker.dev.logicwind.co
www.lucasponce.dev
brainad.m1studio.co
mediconexa.com
mentoraonline.com
motibet.jp
motivaeacao.com.br
motrou.com
socal.muslim.events
myfreedomchurch.life
www.ondemand.com.co
osfa.info
ozzystory.com
www.partygee.com
admin.pcapchess.org
pocketpower.com.au
pocoapoco.io
quik.tools
www.rekaiot.com
dev.renaultplr.com.br
ruth.robertson.is
sf-console-int.salesfloor.net
demolegalcafe.sisidev.com
www.slopes.info
app.sokosolution.ca
spacematch.cloud
mobile-demo.stazzle.de
tabletennistouch.com
dev.traveltome.com
www.uksponsorlist.co.uk
vanguardglobal.pro
vasilkoff.info
www.vessb.com
dev.iam.vezham.com
qa.static.cdn.vezham.com
www.wandergaul.de
help.whohub.cn
test.wineryxplorer.com
admin.hachiden.wowdesk.jp
auth.xoay.vn
yorick.xyz
zealgroups.in
Other domains in certificate