Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=akshikacarecenter.co.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 02, 2025
Valid Until
March 02, 2026
48 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
83:BB:EB:21:AA:C5:6B:DE:F2:18:9C:40:90:24:A9:7C:BF:D8:1D:7D:91:2D:D2:88:5D:E6:5A:78:63:39:E5:05
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
fawan.space
www.531go.app
cms.aappoint.me
partner-ru.abinbevefes.app
pwa.sagt.acuizen.com
www.aglide.co
aidentity.app
dev.crm.airlift.app
djr-manager-time.aldridge.app
docs.dev-thecsas.algo-artis.ai
alignasi.com
connect.ar-remote-assistance.com
askquikstrike.info
auro-space.com
bareltayouri.com
bloomtherapypnw.com
admin.bluemind.app
ipd.byhc.group
app.bynand.de
app.cao.uno
capsol.us
www.chassisrobert.be
christophgajda.com
www.cinetrips.com
deeplinks.citypop.app
akshikacarecenter.co.in
admin.mna-vp.com.my
commabot.com
dashboard.crave-cloud.com
crazytrip.com
digitalinam.com
digoas.com
superadmin-dev.driverguide.is
adam.drivevesta.com
krunal.drivevesta.com
www.dycrea.com.mx
eanint.org
master.easybus.app
doitac.talk11.edu.vn
alunas.englishcomcami.com
app.eventdoctor.app
web-staging.faks.co
fameoil.com
admin.freightra.com
dl.pre.galgo.tv
green.legal
hotcryo.co.uk
houseofcarslondon.co.uk
studio.husori.com
hyperpolybook.com
alpha.hypesocial.com.br
wimmog.immodigi.app
www.joinslip.com
katieadams.uk
link.kawaii.pet
kintimer.app
kmoschatter.be
talentohema-performance.lernit.app
lffl.ch
api.lipsurf.com
app.litsoftware.com
museotechniki.com
www.nanometer.app
app.nekudotaim.com
nvdr.space
admin.orderlock.com.au
www.palakkadonlinenews.com
parasets.parallel.life
pendulumsession.com
emoji.playful.ist
tailored.preventtool.com
prioritycalculator.app
api.protoworld.io
nuevamente.quickpass.app
q.r-nold.eu
reynanda.ca
auth.beta.portal.riggsdavie.com
riply.in
auction.rwrc.net
link.saytm.app
www.secondworld.games
sekocitylogistics.co.uk
weather.simonton.app
merchant.simpleservice.app
spectrumsolutions.in
stylelimb.uk
sushibelgium.be
swarkoz.com
taskontable.com
telefrend.com
www.app.themetagate.it
thenorth.in
tripletise.de
app.ujama.co
www.unrealshowcase.org
rubik.untitled.cl
gerdle.vext.co.uk
www.walsallchess.com
wordscanner.app
workzee.app
Other domains in certificate