Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=demo-my.centify.co
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 06, 2026
Valid Until
April 06, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
13:F6:F9:02:82:8A:D0:E9:C3:33:C5:A4:B5:B1:0A:5A:32:9D:E6:79:CC:8F:84:18:65:85:89:0C:53:AA:37:1A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
dyware.com
aadiswar.online
auth.academy-courses.com
bestellen.alandsushi.de
time.algatype.com
www.arcadiaestate.eu
www.balajigopinath.work
bennywho.com
sokafantasy.betatq.com
next.camiapp.net
capitalmaxinvestment.com
www.capitalmaxinvestment.com
cedarsbyte.com
demo-my.centify.co
www.cirqlete.com
www.stay.beta.cityrelay.com
clickshopci.com
cureitspecialitypolyclinic.co.in
columnforge.com
mrenterprises.com.np
dev.v2.conversell.ai
cosmic-shores.net
daejeondanawa.com
www.dayada.org
www.debanjaly.com
dropquick.online
backoffice.staging.edutecnia.cl
elettricistaravenna.it
erozappi.com
arena.eternamath.com
sandbox.eternamath.com
josephagency.fillx.it
static.firebase.com
flexfit-europe.org
flowai.be
www.frankroccamenswear.com
getbaro.app
scanpad-configurator.getyourway.be
www.gm5residence.com
auth.gotradepix.com
portal.integration.graphiant.io
ai.gssanaa.com
www.hatofes.com
manuales.hazconta.com
htmagenius.ai
iaworks.io
impactcenterzambia.org
www.instarecipeai.com
invitation.itsyourdayofficial.com
www.juristech.com.au
justote.vet
jyrpropiedades.cl
lavalcorentin.com
cv.domonkos.lezsak.hu
www.mahertubasi.online
mathe-max.com
menteech.com
www.mymemoryline.com
moonspay.mymoons.pe
publicando.net.ar
creator-link.nightcafe.studio
dash.occertimmec.com
kaizen-profile-dev3.pbcd.net
www.pilnymartin.com
wvpac25.pmngroup.com
www.puhevirkku.fi
www.rentkirkland.com
rexemin.dev
www.itsnothacker.run.place
salaveey.co.za
sarthakjeevannasamuktikendra.in
admin.searchmindai.com
staging-emr.advantage.slade360.com
www.smtcabs.com
www.sthenryschool.in
stichtingvliegramptripoli.nl
partners.tablechamp.at
www.takabatechnologies.com
app.tapp.be
tastebuds.social
beta-squirrel.thatdogmachine.com
www.thestackmarketplace.com
tomaspeschiutta.com
www.toprakcg.com
www.trainerpulse.it
www.trionyxtech.com
app.turbocouriersjm.com
urbanclassics.net
vailo.ai
viadoor.com
virutcham.ca
voicelator.ca
vrum.fi
watchestoearn.online
westernclimbingclub.com
www.wgharbawy.com
www.wholesome.studio
wibbly.io
wiseis.com
share.wowop.info
Other domains in certificate