Open
Cached
·
just now
78/100
SECURITY SCORE
Certificate Information
Subject
CN=r.lukarma.ro
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 09, 2025
Valid Until
January 07, 2026
43 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
20:2C:DF:C3:8C:DF:92:EC:A9:42:C6:0E:F4:98:BC:95:35:2D:3C:44:C8:F3:1B:8D:55:25:B3:DA:0C:56:59:F7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Weak
require-trusted-types-for; report-uri; object-src; +3 more
require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport,script-src 'report-sample' 'nonce-ROSwn2Vj-IuU1y_FBlfGug' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self'
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
d.p-l.cc
www.2025jobs.com
29easyrent.com
premiacoes.adorocinema.com
fb.alirezad.ir
www.alporter.ie
www.americaheard.com
sheets.atgof.app
atrable.org
autowash.online
babylony.org
webapi.billbjorn.com
bluerezz.in
bocyprus.com
saikku-staging.app.boogiesoftware.com
borabinbas.dev
allianzse.cateringportal.io
www.cda.sg
www.chateaudepeyrolles.com
www.chordpage.com
dev.cleantie.com
app.clearone.co.in
www.cocoonbeauty.be
l.krc.com.tr
orhunerdogdu.com.tr
link.cooklist.co
prageru-uat.cpptl.co
www.culpepper.us
danasvision.com
dcbcolab.com
admin.dlight.ng
draftnhl.com
efficientsolutions.com.mx
elaineling.ca
www.en-gager.app
expmotive.com
familledumontdechassart.be
www.fancycostumecenter.com
flockkr.com
fruitofwar.com
www.fundamentalunit.com
www.fusion.finance
slot.gameolive.com
www.gasse.fr
www.gastrodelivery.de
f5.gft.ar
dokumenty.giant.pl
se3.globalcarecenter.co.uk
cdn.islacozumel.gob.mx
greenboss.org
hamingja.xyz
hatchingdimension.in
www.hatchingdimension.in
holler.link
housinghelpersproperty.com
agri-flyer-r.ier-prod.jp
ifcxr.com
csd.jnpa.in
knitr.io
krishnateja.com
www.kweeve.page
liao.dev
r.lukarma.ro
lyflair.com
www.magneinvestments.com
projectionist.makesaltlake.org
soycandidato.cl.moons.solutions
motivepayments.com
www.mytcgcollection.co.uk
nibconstructions.com
nicolasventura.me
app.no9hay.com
omniprintforlag.se
ondeerelax.com
opendevworks.com
paryatanfoundation.org
cms.petspot.lv
pinrecipe.io
auth.plentycode.com
app-dev15.qlub.cloud
raymondclassroom.com
www.s-learning.co.uk
www.s-port.app
demolegalblanco.sisidev.com
skindetect.ai
skoringlyodds.com
lykkehjul.smoky.no
www.sopro.cc
www.soundalerts.app
start11.co
statuslead.com
dev.tinkermachines.app
tlemons.com
traveltakers.com
tyronelayne.com
userland.tech
webcaz.xyz
wifesboyfriend.com
app.workant.io
www.yourjammers.com
Other domains in certificate