Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=kentang.cekodokz.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 11, 2025
Valid Until
March 11, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
66:46:08:14:5B:62:EE:1D:B3:04:7B:BD:59:F7:0E:A2:2A:05:3D:B2:62:20:2D:99:22:3C:1C:B7:75:BB:82:E2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
crossmesolutions.com
22d.uk
adilabs.xyz
akashimmigrations.com
faktura.alexnilsson.se
alqattanhome.com
www.asdcpremovals.co.uk
ashwiniitechnosoft.com
atajo.com
www.athoth.com
extranet.bapfrance.com
auth.beanie.nu
betterology.com
www.brfitnesscenter.biharcoder.com
2002.bloggi.es
www.bracescoinversiones.com
www.brorarmand.com
btischedulingd3.com
btischedulingnaia.com
dev.labeling.caneat.jp
www.cdcanillas.club
kentang.cekodokz.com
cvtas.centroclima.org
centrohogarenmanuel.com
gift.clementineapp.com
clinicafernandosion.com.br
coffidu.com
www.col312ministries.com
admin.contractapay.com.au
ia.controldigi.com
www.convergence3d.com
crimsonerror.com
www.crimsonerror.com
d3jmusictech.com
davidbethune.com
www.davidk.jp
digipanthiya.com
www.e1fi.com
novilla.e3lannat.com
edmundsec.com
tevip.edsys.com.br
elizabethstresidences.com
www.finometr.tech
fklute.com
focuslist.in
genevievesaab.com
viewparklodge.gidraphdanford.dev
web-auth.gomed.ng
goodsseason.com
gthalternatives.com
haidarcorp.com
hallgrimgames.com
hudumacenter.com
20225354nguyenthithuylinh.id.vn
iechungary.com
demo.riskradar.illuminet.io
indclazz.com
apollo.inspix-live.com
admin.itos.se
www.jesusalmaral.com
joinmedici.com
gastromasa.kerzz.cloud
dev-blogger.keynate.com
lamobistrot.it
lingualinks.site
loveandservice1st.com
mymanaapp.com
demo.nanograb.com
www.noushit.fi
novcon.in
nripelligola.com
omelhordefeurosa.com.br
trichy.onewaydroptaxie.com
www.pensioenbijneitraco.nl
pilotpathfinder.com
test.playingo.se
reporting.prioticket.com
progresshomehealth.com
www.rippleandroll.com
www.littlethai.rocola.es
rybqa.eu
sachinsaurav.com
qa2.showitmax.com
bunbury.parking.smartsys.io
soapcalc.space
spandl.ca
www.stativa.se
summitbytes.com
superea.sv
sureshlalchandani.com
vip.surprise.com
retr.services.takuma-kida.com
thanhhuyle.com
unis-pour-la-vie.fr
v3rdunh4x.eu
veronika-braendle.at
waddlebot.com
www.whatword.xyz
xamarketsinvestment.com
yugvihaan.com
Other domains in certificate