Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=open.fwd24.yodelit.co
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 11, 2025
Valid Until
January 09, 2026
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F5:44:6C:BD:DA:0F:A3:C7:3B:F7:80:4F:E1:45:BC:D8:FD:D1:57:65:35:EC:F8:36:43:24:E4:05:14:40:BE:07
Alternative Names
Security Configuration
TLS Protocols
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
dotaexp.com
polocator-aboitizinfra.aboitiz.com
portal.affordablecare.ai
app.ahlofan.com
www.amooto.ch
airinstall.lge.amuz.kr
admin-ui.applogie.com
arfniia.com
awardsearcher.com
www.azkara.org
gatekeeper.benny-y.com
bitfluxventures.com
test.bitsu.work
dashboard.bleanq.com
caloriehunter.com
dashboard.caratlane.com
map.cbrac.ky
cdckonsultants.com
p.chaserhq.com
apple.chronwell.io
www.ciceros.it
closeties.com
shukisraeli.co.il
allowance.roadcast.co.in
app.consoshop.com
www.curiousily.com
www.cvmagnolia.consulting
dgsa.ie
stage.directedworks.com
app.discuna.com
myproductbook.dpd.co.uk
duaneleong.com
dzhamal.dev
takepart.egg.srl
admin.emotii.ai
ac360-manage.enablus.com
fabricaderedacaoonline.com.br
api-docs.fieldmargin.com
de.funeasylearn.com
car.games235.com
zooboom.games235.com
link2-dev.gardenize.com
auth.gearx.ai
join.getblood.com
www.global-cyber.club
www.guitarlessonshull.com
www.hartssaloon.com
auth.hbtly.xyz
health-bridge.ca
hrcts.co
hsinv.com
agroinnova.iica.int
app.indoors.fi
instacalc.com
iron-pop.com
janngo.africa
jumistudios.com
kraftrechner.de
dev.lific.pro
liveprogramnotes.com
www.louiandfrankopizza.com.au
mapp.la
www.moodeler.com
dev.nexobuild.com
nuvemacademica.com
www.ofek.phd
olivierdahan.fr
order.openhourtab.com
www.patisserierabih.com
admin.qrizo.app
rajatdua.com
baalmundo.raxar.com.ar
www.realveiculosudi.com.br
tool.ringdingdoo.com
rosesoftwareshop.com
samklevin.com
sio2ware.com
skgt.ch
evcare-console.sonice-aioe.com
www.srikrishnasanjeevini.com
pf.stopthebleedcoalition.org
www.suaybtalha.com
www.survivingthe.city
www.svampchecken.se
admin.nominator.synapps.hu
taitung.biz
www.takeshifujimoto.com
tamberine.org
www.taskeenkw.com
www.theworkshop.co.uk
threewellstudios.com
tsaltation.com
tutrenews.com
console.val-now.com
fantasyfinance.vishvak.com
www.waldron.co.za
wedagedara.org
www.wompindia.com
yaks.club
open.fwd24.yodelit.co
Other domains in certificate