Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=c.o2o.vn
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 27, 2025
Valid Until
February 25, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
59:04:E3:75:68:ED:53:20:4D:8D:15:FE:60:86:D4:91:3D:C2:20:58:89:69:13:E7:8E:75:AE:8F:C0:B4:B4:68
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
dad-jokes.defrost.cafe
abroadmentors.net
int.achieveunite.com
agama-consulting.com
stonex.aghedgedesk.com
akhilnambiar.me
www.albafoam.pk
almirajschoolofamazingadventurers.com
alqallafali.com
andhw.com
anthonykhouryweb.com
anvworks.com
apogya.fr
artittattoo.com
asismec.com
www.atiyax.com
www.awqat.app
barberosadomicilio.com
www.barqi.ca
bbsecure.co
email.boredants.com
www.bricksandmint.com
busbot.co.za
cacheta.club
certyfikatnajemcy.pl
www.chaahfashion.com
bambudacastle.clau.io
clbttpt.com
d-order-manager.clutch-eng.com
tracksonic.co.in
www.coikosity.com
kingscourtengineering.com.ng
comojuegoaprendo.uy
connordupuis.com
csfrequency.com
cypherpunkstudio.com
www.dunacruises.com
www.edonizia.com
show.ege.com
app.estrategiaimobiliaria.com.br
www.fairy.quest
www.faridapps.com
gff.finstack.in
www.fitterverse.in
admin.franyutti.eu
stag.fusionforms.app
influence.garthwood.com
www.gohacking.com.br
grstore.shop
agent.gsgswipe.com
avery-docs.haco.tw
optus.hemisphere.digital
totem.hubfit.com.br
app.icuda.net
api-docs.impactcrm.com.au
app.iscr.com.au
jibcode.ai
legal.jnelumba.com
firebase.sandbox.juicy.space
www.ko-max.com
web-push-hs.kohorta.co
database.loosproductions.com
markdownresume.app
www.mcbrideesopsettlement.com
mein-klassenzimmer.ch
www.melty.love
app.micarritosv.com
parqueopositivo.movilpark.ec
capabilities.mssdev.works
www.nader.de
livo.nexday.my
c.o2o.vn
admin.opencasting.jp
www.ourafricansafari.com
www.picken.ch
planetfestival.co.uk
auth.google.playondiaspora.com
thewholesell.praksisoslo.org
prk.me
www.proxs.io
www.radartechnosoft.com
rightrx.in
www.safecommunity.hk
link.sekira.io
sublystic.online
www.taiyoindustries.com
www.tradeswars.com
truefeed.media
trvia.io
unrivaled.band
www.vignettepro.com
www.waveride.co
doctor.wellro.life
api-dev.worldofanime.com
feather.wrnsstudio.com
xechulai.com
next.xlscout.ai
www.yanniks.app
yardoor.com
test.znest.com
Other domains in certificate