Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=leilflowers.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 06, 2025
Valid Until
March 06, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
25:8E:CB:78:9F:68:FE:6F:AD:39:EA:DE:D4:F0:75:CA:EB:BD:16:AE:CA:29:3D:C9:BE:BB:C5:6D:76:D3:C3:3F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
dev.triple-kenya.fairchain.org
aivorallp.com
blog.aldebjer.se
www.appscatolicas.com
appshare.com.br
arbolesibericos.es
www.aviator411.com
batamx.co
team.bbcmaestro.com
www.bnbdelelie.be
auth.busability.com
cesar-contreras.cl
www.cinemashup.com
clearancecentral.ca
aadharhealth.co.in
www.quickplay.co.in
codemagicx.com
coloaid.com
auth.contractors.com
dev.depfly.com
www.devite.pl
drviniciusmartins.telemedicina.drtis.com.br
www.dwebbox.com
ecoemedicina.es
educhunks.com
www.furaginum.pl
tokyo.gdgjapan.org
geosincal.com
links.giapha40.com
godwyn.dev
gorillasports.shop
cp-stg.gyms.jp
haus-shiraz.de
ihss.me
janole.fr
quantum-travelers.konahart.com
www.langtidsvarsel.no
leilflowers.com
admin.lightningreach.org
news.mbisconsulting.com
mbuyatech.co.za
www.meistercards.com
www.mertyacan.com
moriapharm.com
motchasoft.com
msoftware.pk
mycancerandketo.com
nailcheckin.com
cockpit.mentor.neccton.com
nela-foundation.com
forbs.net.br
app.new-hope.ch
crazy-ball2.demos.nuboservo.com
www.nucleate.io
staging.ownersup.com
show.pathway.vn
beta.phototag.com.br
www.pitagroup.vn
plus2link.com
sys.dev.puppycloud.com
purplepane.com
qollor.com
www.quanlymauthan.com
www.raptorcoatingperth.com.au
ravika.no
sami.pk
sarayucollections.com
seito.link
app.shopadvizor.com
www.singinglessonsnewcastle.com
www.sivaastudio.in
springvillecemetery.com
wemspringscavenger.sqwadhq.com
www.startupandrew.com
ysm.storymate.net
www.streamwear.com
synamic.com.au
synergyct.net
talkwell.net
fixparser.targetcompid.com
sam-admin.techroh.com
testdeciudadaniaitaliana.com
www.thedoneapp.com
play-test.thelastwordgame.com
portal.theseabay.com
time-drops.com
www.toolsdome.com
trackcryptos.com
www.traydi.com
www.tropicaloasisdr.com
turkaylar.com
www.uneakproducts.ca
www.utahtravelpass.com
volti.studio
webdev-boutique.com
wholeteam.ventures
www.xarmory.store
xevenmaintenance.com
www.xttream.com
yoya.soy
Other domains in certificate