Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=girosbol.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 28, 2025
Valid Until
December 27, 2025
44 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
85:C4:AE:6E:1C:02:6F:A0:BE:1E:62:91:EE:67:9D:6B:40:5D:73:7B:CC:F7:F2:95:A0:07:17:21:5A:46:80:E7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
do-profile.com
staff.adaptivemedia.dev
www.dsccwmsoutside.algoramming.com
algorithmcreator.com
alpinelabs.ai
asafeplaceliving.org
azahpestcontrol.com
pudukkottai.azhagudroptaxi.in
bonani.site
dh.btdl.de
buildandbrew.online
www.buscandopersonas.org
exploration.by-d.art
comunicats.capsarria.com
www.careerdiscovery2021.com
paylauncher.chikach.net
clickstory.org
www.loyalroyalty.co.ke
codeschool.london
live-stg.demov3.contentfabric.io
www.crunchyjelly.com
www.danielrlambert.com
www.dirndl.be
admin.dlg.app
www.e2e.agency
nedatech.easysignage.app
ecoil.hu
www.elonmuskarchive.info
login.enginar.app
capital.foundersandfools.com
gcaltools.com
getexplanation.com
giftlister.io
girosbol.com
gloriadumervil.com
graphitewriter.com
greenpot.app
grupookami.com
portfolio.h2osolid.com
happyparentingmalta.com
hpigame.com
www.hvakr.com
instamath.com
app.iqid.com
www.joshlunn.com
kajack.page
kittilanlentoasema.fi
knossos-palace.app
koachinternational.com
krystof.eu
leveluptech.in
registro.littlebookmates.com
margogantner.com
www.maxkandersen.dk
medule.com
www.metaphysio.app
moneymiser.app
www.moneymiser.app
morellifundacion.com.ar
oasis.mythulu.com
pic-lottoquebecuat.mentor-na.neccton.com
www.nextqart.com
nleinas.com
noblemenmotors.com
www.nomubiku.com
www.nosychef.com
sistema.notariosslp.com
auth.nuzeniec.com
olimpiapark.com
www.openbill.sg
paulinang.com
www.planeutral.co.uk
plannprep.com
www.playbrewhunt.com
app.pointrade.com
cashier.preprod-tastio.com
privemd.com
qtron.qtronix.in
reddypackersandmovers.com
www.ricardooliveiraalves.com
rukah.co
seaproof-app.com
bedrijfsafval.clientx.skialabs.com
console.skyline.academy
karmoy.smartby.dev
live.staging.standards.site
bodaportillocarcamo.swanmoments.net
talento270.site
thinkzambia.org
toyboxicons.com
www.tradeflexequipment.com.au
www.tsiba.io
www.unitedweb4.com
ropass.vasilache.net
www.velixodrive.com
wage.jp
www.wehmmcoin.com
wemayk.com
www.247321.com
zowal.de
Other domains in certificate