Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=ubicatunegocio.bodegasdelperu.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 06, 2025
Valid Until
January 04, 2026
48 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A7:A1:6C:C2:CA:DC:21:C9:E1:E6:4A:20:1F:90:F9:0D:00:27:92:E0:BA:07:33:CE:C9:81:60:1B:F4:7C:FE:F9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
dingn.com
www.3kyu.net
aicdac.com
aidu-education.com
altbryson.com
www.amitwani.dev
amministrazionitorinesi.it
ancient.cards
www.apqart.com
balancecheckapp.com
www.bepolishednails.us
www.berruti.tech
www.bitwittechno.com
www.blkmanderson.com
ubicatunegocio.bodegasdelperu.com
expert.bodyfix.io
hqmural.bondvet.com
www.bossmydata.com
test.brisstudio.no
calicuta.com
cardgames.co
cbdata-dev-backoffice.cbdata.cz
submon.chikach.net
www.clinicaludemann.com.br
moxyvision.cloudhexa.net
colenzato.it
old.curvenote.dev
nibako-support-dev.daihatsu.co.jp
dewald.app
dkuji.dev
blog.emilianogreco.me
app.enfact.fr
smarthome.evo.link
www.fantown.net
auth.flymya.com
hello-suzuki.app
api.illust.space
indiehackerssa.com
inventy-app.com
short.itmr.dev
palette-puzzle.jiho.me
www.josue.pro
admin.kbi.works
dev.kitsun.co
kordik.ca
www.leiloesimobiliarios.com.br
onboardingauth.lendlease.cloud
akita.linx.live
turtle.litegrade.com
www.lodemario.com.ar
www.mammografiprogrammet-konferanse.no
masoudharbi.com
api.mathkey-app.com
notes.matt54633.com
www.miraauction.com
thfirebase.moboreader.net
monaccode.dev
www.mwinisoft.fr
mytfshop.com
nesoyonspasraisonnables.com
nikanoku.de
notenzoo.de
www.p2pside.com
www.palladium-bachata.de
phoenixbfit.com
www.phoenixbfit.com
piperfinnoffers.com
demo.menu.prestoexpress.co.uk
www.resto.guru
v9.richardfxr.com
a.rivalri.com
www.rocketappstudio.com
www.rodrigonami.com
www.runnersfiji.com
www.saasbyt.com
tool.saasnordic.com
api-staging.safeshepherd.com
apply.app.salaryo.com
staging.sealdealfinder.com
appx.setu.farm
latex.sexyferret.science
acceptorrejectchat.streamgamestv.com
www.synergyca.jp
tectes.com
ds.dev.tevotec.de
tgfi.com.br
go.thebloodsugartip.com
dev.thenewsintwos.com
admin.theweekendwarriors.com
members.thoseindigoscales.com
www.tripletise.se
train.trybe.do
links.ttfb.xyz
tvirl.app
dev.dchs.quiz.thrive.uk.com
shaw-contract.valk360.com
bossanova.storefront.demo.vida.studio
auth.voox.online
present.williswcy.com
dl.zeenapp.com
Other domains in certificate