Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=uoman-amagasaki-qs-mall.cfs-japan.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 21, 2025
Valid Until
February 19, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3D:D3:BA:36:70:38:44:92:0B:65:6A:3A:40:84:B0:40:01:05:DD:CE:DE:94:D8:83:AF:97:A2:55:F3:80:A0:A3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
estimatesmaker.com
3awda.site
publisher.adgenticplatform.com
akasa-s3-booking-json.akasa.lk
aykaryapi.com
becalis.com
www.brainsderby.com
uoman-amagasaki-qs-mall.cfs-japan.com
www.chronovault.app
cismacore.com
www.cloudmall-uk.com
kraftmusic.co.kr
lumat.com.pl
condominder.com
cybertruckwiki.com
dallasandgioschicken.uk
dannybsullivan.com
dentzay.com
lydear.deweysworld.app
www.diegoflassa.dev
digitizeme.com
www.dminsnetwork.com
video.dn2me.com
drivesphere.org
dullatinfrastructuresquarepvtltd.com
duque.bar
www.duque.bar
pdv.eceos.app
eemi.tech
elf.world
ferrymarroc.com
inscripcions.fic-cat.cat
link-sbx.fintecture.com
notification.forja.cc
academicum-renewal.geddy.com.br
identity.getyourguide.com
admin.glorified.io
googel.app
kiosk.grace.app
split.guzguz.fr
www.gyms.jp
redenvelope.hainanairlines.com
hippona.eu
hitchcock-farms.com
hockeystats.dk
admin.hubjur.com.br
hudbarbers.com.br
illuminateuniverse.app
indesigngraphics.com
ultimate-signup.ip-ddns.com
student-dashboard-stage-4.ischoolconnect.com
ads.jajas.in
www.jamesdavidpresents.com
jasperreddin.com
joa.live
jupiterdistillery.com
justdrinkbinge.com
www.kaslami.app
hapala-dev.lohnbot.at
maneasilverband.co.uk
www.mariusjakobsen.no
milantoursandtravels.com
montinv.com.br
www.msradiologia.com
absensi-perkuliahan.my.id
jiot.nenoluyo.com
thiepcuoi.nhungmagnus.com
oken.app
omarcarpinteyro.com
ona.vc
pb-i1.s.openkind.me
www.optimoo.se
moon.org.nz
paigham.app
phucminhtravel.online
polvo.site
links.qodwa.app
rdorid3012.in
projecthub.redwindow.tech
www.remosea.app
sandlab.xyz
dashboard.searchhammer.com
skywatch.studio
dev.sltechnology.net
view.smoky.no
www.soundtouch.xyz
dev.studyspace.io
tiles.tfx.is
thedeck.poker
www.thepurpleblossom.co.za
app.trackero.io
trange.app
travelor.app
forest.turnosweb.app
app.urbans.es
www.vitoneto.com
dev.wandellint.nl
wayve.live
www.wiltshire-global.com
zaga-in.com
Other domains in certificate