Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=enjoyworkinjapan.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 08, 2025
Valid Until
March 08, 2026
41 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EC:8D:73:B0:21:53:07:F4:14:ED:BA:E5:37:58:9D:FB:1E:E2:5F:08:57:32:90:6E:D2:63:C7:C7:4B:D8:60:D8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
elnb2b.com
javascript.1f8.co.jp
app.academeplus.com
adoratorio.com
www.airot.co
wiley-mechanisms.alchem.ie
alignitgames.com
attractionsupporttest.amero.dk
timestamp.appspltfrm.com
galavina2019.ar13.cl
arab-health-net.com
profile.arkdating.app
www.azlandscapingauthority.com
www.booo.red
brainweighve.com
ceylonserenitycare.lk
www.healthumbrella.co.in
cognitialabs.info
upkklms.testpaper.com.my
ref.uplus.com.pl
www.crafty.film
login.staging.daybridge.io
signatures.digital113.fr
dreamjotapp.com
www.cbe.edu.sv
loyaliteit.eeetwell.be
enjoyworkinjapan.com
evenmore.tech
www.eyeinthesky.photos
favourfelix.com
cp.feverplan.com
www.gardetteconseils.fr
geirfoto.no
geisonroberto.dev
www.gem-repair.online
guildstacks.com
shop.gyanaloy.com
client.healiam.com
iugonline.com
www.jameschou.org
mbe.jdadvising.app
link.jevitty.com
www.jonahphotography.in
juanballarino.com
jusu.com.au
karen-joynson.co.uk
www.keabot.fr
kinenjin.com
linkbus.app
lithiumcomputers.com
makerdays.co.za
mangosolutions.info
mapeh.site
fukushima.maploy.com
markleymotors.com
masondunn.dev
www.meier.uk
backend.mikiz.online
yuning-demo.minya-studio.com
oliviamaryschulz.site
migrate.marketplace.openblox.io
admin.staging.origin.me
breton-top.petit-bateau.co.uk
antiqueby.pixoby.space
www.prakharsinghdhaila.in
link.qalby.io
iverdura.quetzaltech.net
ravisn.in
relayhub.jp
www.rocoemr.com
maestro.rotaractmora.org
rudrabuilds.me
attendance.saleumsack.com
info.sitespirit.nl
dev.app.smart-qa.io
pvs.snapmentor.no
www.softruler.com
joinseneca.softway.com
txbaseballismscratch.sqwadhq.com
srlogisticgroup.com
www.srsukitus.fi
apis.staderlabs.com
meetmerlin.starkernel.io
k12.dev.stutor.com
www.suntec.hk
alex.thesimpleclub.de
www.tiac-kw.com
app.tikti.me
tinycommerce.com.au
generalpolicy.tristan-industries.org
talent.ultrix.digital
uphelix.com
www.useless.my
www.vaultactivation.com.au
merchant-sandbox.veripaygate.com
ops-sandbox.veripaygate.com
waheedtajchishtiskillsai.site
web.withmigo.com
www.yonqu.com
yumi-shop.store
Other domains in certificate