Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=own.saga.einride.tech
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 26, 2025
Valid Until
March 26, 2026
61 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
11:19:C3:11:32:73:33:6A:8F:9F:19:33:F4:93:D3:82:B3:AC:A1:9F:6D:F2:06:A6:F1:28:57:DD:A1:5E:6E:84
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
dev-auth1.insuite.jp
agruparapp.com
ajaprestige.com
www.ajaprestige.com
albertovaldez.com
doppio.albertovaldez.com
antaraetp.com
alfred.arsen.zip
www.artistedoodles.com
data.booking.bluelagoon.com
apps.botmoon.com
lc.campbellsci.com
capse-demo.com
www.ceadiecinueve.com
shift-tracker.chauss.app
cle.cleface.com
cloudfink.com
logro.cloudlogics.dev
govadmin.tekuwami.com.et
digitalvault.es
own.saga.einride.tech
www.etageospatialsolutions.in
auth.excalidraw.com
www.fashionhomeuae.com
game.fessior.com
fidelizamais.app
folderly.com
www.followers-analyzer.com
www.ftoolrent.com
nexus.futuresenseai.com
papasburgeria.games235.com
powerwall.games235.com
georgetegral.com
bim.gov.co
hesh.dev
www.hesh.dev
autodepot.hielovista.com
www.hoopsandcrosses.co.uk
beta.api.houseofmath.com
iabdsd.com
iazy.app
asistencia.ieegenaroherrera.com
xn--8st987aw93a.ikuzaki.jp
vue.templates.ishansasika.dev
isindustry.com
job-finder-staging.joshwentworth.com
jurapp.com.co
dynamic-link.kariyer.net
platform.khmerfinder.app
portal.knownow.app
leben.com.co
linusfashion.live
ishikawa.linx.live
lukehynds.com
www.memorypie.app
loja.meuatendimento.com.br
mirror-ai.online
www.muyhambriento.com
www.nashvillesites.org
neoadmin.neored.com
nutekno.my
admin.onepsc.in
pandeti.com
app.payaca.com
alcuza-mayorista.pedix.app
bulldog-burgers.pedix.app
carrizopetshop.pedix.app
chebu.pedix.app
dlucas-gourmet.pedix.app
el-rey-de-la-pizza.pedix.app
holbox.pedix.app
lasgrullas.pedix.app
leroma-recta.pedix.app
materepublica.pedix.app
nougat-almacen-de-tortas.pedix.app
pachamamaalmacen.pedix.app
panes-san-alfonso.pedix.app
plov.uno
paisefilhos.pratic.com.br
predict-r.com
rentacarros.com
rijspoed.nl
connect-ng-quotes.rxoconnectmain.rxo.com
connect-ng-warehouse.rxoconnecthf.rxo.com
shakthizen.com
login.staging.spatial.io
ssyoutube.nu
sunglinter.com
farmersdog.thelevel.ai
livecast.thesps.online
api.troep.xyz
trulytelugu.com
turina.store
vecu.xyz
app.whatsspot.in
tc-staging.wwf.org.uk
www.xn--80ack0a6a.xn--p1ai
xn--90aokir.online
xn--bootsprfung-zhb.de
xn--carreleur-maon-rjb.fr
Other domains in certificate