Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.mepabox.it
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 20, 2025
Valid Until
March 20, 2026
64 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
85:6C:F8:5B:AC:43:52:00:3C:10:90:95:12:B3:8D:EA:7D:37:5E:F6:39:00:6E:B7:E1:69:9B:09:B3:9E:76:EC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
cryos.in
valida.abigeapp.com.br
afekt-psychoterapia.pl
www.akshardhambalak.in
www.alexpyc.com
www.alimsoft.fr
appyx.io
www.backspace.tokyo
bhuvi-tawari.org
bitfog.com
bluetooth.bitsbox.com
static.bomcomes.com
pixel.boopnood.com
bostonautoexperts.com
buddingsapling.com
dijon.calendrier-noel.fr
calledtocode.com
capybarasoftware.com
admin.christiansgpt.com
www.cleanandco.net
onebox2-dev.oneclass.com.tw
comunicacidadao.com.br
www.cryptoornotcrypto.com
www.curl-furubira.com
dejafood.com
digishala.in
www.distribud.co.uk
customeraddressbook-q1.dpduk.dev
duetai.new
www.estudioayale.com.ar
link-dev.flitter.fr
florbelamendes.net
www.franche-plaza.net
acc.cams.frankwatching.com
www.galeriagatotulipan.com
gnanendra.in
app.godactyl.fr
5days-max.gpi-code.io
www.growthtrails.com
www.harryzook.com
sh.links.healo.app
tops.hello10.com
www.hfxparkingban.com
hughedwards.dev
app.humabetang.id
dev.isurf.app
shea-face.jamesnowecki.com
jardic-neo.ru
jmarshall.io
demo.joylocker.it
king.movie
advent.krantz.de
manager.liveconsult.io
manasquare.com
www.meadowbhr.com
melekersoy.com
www.mepabox.it
moekayal.me
ar-experiences.msoler.dev
www.npbesapipla.in
nureddin.me
seaofwords.openmygame.com
pasaway.com
sby.pialangfutures.com
www.playercardservices.com
app.playplanetx.com
pokedexia.fr
premium-cup.de
rambabusaravanan.com
riesenbox.de
rimechengineering.com.au
sample-site-fb.rkd3.dev
baiba.rocola.es
aac.roomin.app
www.sadakat.in
save-itech.fr
www.seenfacialspa.com
freightwaves.starkcore.com
stepoffaith.church
www.stvinternet.com.br
sdk.stylers.cloud
synthebit.com
www.takkasmart.com
navarro.tec.br
www.thevrglab.com
tickblocks.com
www.tunaweza.com
web.unitaskr.com
www.upheavalinvestments.com
www.virtualnivia.com
hangaarlab.vsight.io
client.way-snap.com
wix-l.in
www.xflush.app
app.xprs.cloud
yvonnebass.com
schools.ziago.co
zoechoi.com
blog.zosimadis.com
zwifthub.com
Other domains in certificate