SSL Certificate Analysis for dogecolors.com - Security Grade & TLS Configuration

Open Cached · just now

77/100 SECURITY SCORE

Certificate Information

Subject

CN=prizenite.poptacular.com

Issuer

C=US, O=Google Trust Services, CN=WR3

Valid From

December 26, 2025

Valid Until

March 26, 2026 46 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

F4:A9:2F:21:AC:1F:86:D7:83:6F:9B:4D:F3:88:A7:46:DC:85:A1:F7:78:D8:51:F7:A0:A8:CA:7E:D2:35:97:4E

Alternative Names

100 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31556926

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains

dogecolors.com

Other domains in certificate

a1balajipackersmovers.com

a1saastech.com

content-gcbc.admindd.com

www.agreni.com

www.alexandercoward.com

altra-livetracking.almeraim.com

www.amyryan.dev

www.annote.com

hospitality.archermalmo.com

armchairtreasurehunter.com

assets.axsar.com projects.axsar.com

tetris.bearwapps.com

bitmaniaco.com

blackrockfllsettlement.com

www.blackstarheroes.com

camerondaycustomwebsites.net

ccplanner.com

app.claimback.org

cloudxim.com

contap.id

go-develop.cosmicrewards.com

draw.cyberhaven.dev

app.d24am.com

dmz.deskbooking.app

preventivatore.advcity.digasystems.com

blaster.doonies.xyz

drop.supply

www.dtiserv.com

www.echurchbible.com

appai.elscx.com

www.excellentchinesedrimnagh.ie

farmaciasettimomiglio.it

farmy.life

console.finisher.co

gym-pbe.fitt.kr

floorwise.pro

catering.freshstop.fi

app.gastrotourchinoin.com

www.habitfivepercent.com

hakamory.com

hamzaawad.com

www.harshavaliveti.com

veas.hkoil.org

www.hoatuoithuynga.com

idlemuaythai.com

manager.igo.football

billing.irecman.com

nmn-lp.it-beaute.jp

its-jo.sh

jakefeldman.dev

jonasl.dev

k12destek.serpilormanokullari.k12.tr

kintab.se

www.korean.tools

laurentshala.com

examencomplexivo.liidutpl.ec

lucienbevernagestraat5.be

phasesofthemoonpro.m2catalyst.com

download.mebooks.co

go.mvpmailhouse.com

bolusiliwangisidoarjo.my.id

www.myblockchaincorner.com

mychannel.live

mealplan.myketo.care

www.novasoft.tech

www.nullflip.com

www.passchip.eu

pg-consulting.jp

prizenite.poptacular.com

logisticsmgmt.rcloud.dev

founderconnect.sanidhya.in

secondshift.io

employee.spadeservices.com

splendo.health

docs.stechsolucoes.com

www.steepdeals.com

dev-admin.stereotheque.com

seaprojects.theseabay.com

thesourcesays.com

app.toglon.com

www.tpmusicgroup.com

plus.traitstack.com

www.tripleadesign.in

trustacks.com

trustmakine.com

www.twentywineteen.biz

www.ummertaahir.com

next.undock.com

www.upliftgroups.com

verbalhero.com

drivers.viggo.com

vrcenter-100.vrplus.vn

www.wearltc.com

webvideoplayer.org

www.spintoearn.work.gd

yasodha.in