Open
Cached
·
just now
92/100
SECURITY SCORE
Certificate Information
Subject
CN=routista.eu
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 19, 2025
Valid Until
February 18, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EA:CA:07:9B:C1:1B:AE:7B:7C:B1:66:17:4D:24:39:27:5D:B0:CE:BE:E5:FC:72:EB:8A:BF:D2:03:1E:57:61:6F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=31556926; includeSubDomains
Content-Security-Policy
Basic
default-src; script-src; style-src; +6 more
default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.googleadservices.com zoom.us *.zoom.us unpkg.com calendly.com *.calendly.com *.growthbook.io *.googletagmanager.com *.stripe.com *.google.com *.gstatic.com *.licdn.com *.google-analytics.com; style-src 'self' zoom.us *.zoom.us 'unsafe-inline' unpkg.com calendly.com *.calendly.com *.cloudflare.com *.google.com *.gstatic.com; font-src 'self' zoom.us *.zoom.us data: unpkg.com *.cloudflare.com *.gstatic.com *.google.com; img-src 'self' *.doubleclick.net *.google.ca zoom.us *.zoom.us data: haleo-backend-dev-ancmabgwe2hxhgap.z01.azurefd.net haleo-backend-release-e2eaf6dybefvanfq.z01.azurefd.net haleo-backend.azureedge.net production-backend-bucket-1961ddc.s3.ca-central-1.amazonaws.com *.google-analytics.com calendly.com *.calendly.com *.google.com *.gstatic.com *.linkedin.com; media-src 'self' zoom.us *.zoom.us; connect-src 'self' *.doubleclick.net zoom.us *.zoom.us wss: *.growthbook.io *.haleo.ca *.googleapis.com *.google-analytics.com *.google.com *.gstatic.com *.linkedin.oribi.io; worker-src 'self' blob:; frame-src *.doubleclick.net *.stripe.com calendly.com *.calendly.com *.google.com *.gstatic.com
X-Frame-Options
Excellent
deny
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
geolocation=(), camera=(), microphone=(), interest-cohort=()
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
evaluation.haleoclinic.com
www.21-media.org
actekmfg.com
poker.agilenatives.com
www.aiagency-masterclass.nl
www.member.alliedwellness.com
doctor.amblyoplay.com
ambulomics.com
anahericamatias.com
psi.anahericamatias.com
anumaan.io
appsolutely.no
autthentic.com
autumotrizcucuta.com
link.aximetria.com
betos.tech
www.bhuwanbhattarai.com
login.bingelister.com
gps-qa.brainloper.com
bruxton.com
buildongroup.com
en.buildongroup.com
www.camping-les-muriers.fr
charactersvault.com
www.chaseschweitzer.com
circle-sd.com
preview.circup.ch
b2b.bgood.co.kr
bajgaindinesh.com.np
konsinye.marcar.com.tr
context-mcp.com
oanda.deskbooking.app
www.doogopets.com
coffee.eight-cups-and-a-lady.com
beta.erfp.co.uk
www.estiscan.ai
zanella.dev.everywear.com
resonance.factive.io
famy.sn
www.findmyobx.com
form.miyagi-npo.gr.jp
www.greenfield.ly
www.gymmanagerpro.com.br
www.imax.com.pe
impulso-ia.blog
influencermarket.studio
authenticator.tvl.io.vn
jadeplace.xyz
jpinillos.dev
atschoolmobiledev.kbcinc.cloud
kingfishercc.co.za
lang-en-gelukkig.nl
lasertherapymedic.es
lauracollins.dev
omnibusdemexico.lernit.app
web.lilia.agency
www.luckymegame.com
lumenworks.org
medad.host
app.meteovistabella.es
chytrybox.monks.cloud
munichfilmfestival.com
google.mypersonalshopper.co.za
nbembedded.com
www.newportinternationalchurch.org
omnexiatechnology.in
www.onnpilates.com
www.openworks.it
dashboard-staging.physio-analytics.de
www.pressing-saint-cyr.fr
rush.qdx.co
stage.tradex.rainbytes.com
www.ripixel.co.uk
routista.eu
skills.runwayclub.dev
en.samuelcaetite.dev
www.en.samuelcaetite.dev
www.samuelcaetite.dev
www.shaman.land
driver.shippie.ca
pals.smart171.org
solaryscnp.com.br
en.soosteknoloji.com
streamsonic.live
babysleep.summitedgepublishing.com
tasks.techwithag.com
www.thefleetmt.com
thegamedevtoolkit.com
tizzly.com
xdplugin.toolabs.com
tranquil.capital
cursos.uniconnsistemas.com
resultaat.verwijderkalk.be
www.vignanschools.in
www.visualvue.app
vulnops.ai
warwick-foods.com
www.weekly-option.com
www.zachdenney.com
zeegysolutions.com
Other domains in certificate