DNS Gurus
Open Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=api.parkalot.io
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 06, 2025
Valid Until
March 06, 2026 88 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2B:5C:74:08:E8:60:CB:A1:F7:4A:ED:61:F2:1E:C2:08:7A:35:37:18:EC:0A:79:9F:8D:9C:AC:C8:E1:D2:C4:B0
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
feasibility.clearaccess.28east.co.za

Other domains in certificate

11521807.peerly.app
2ndgentech.com
lsportal.3rbehavioralsolutions.com
agrisense.live
ahmedmaghraby.me
alephzero.ai
www.apatosaurus-software.com
dividend.beeman.app
support.bpm.app
buethsoftware.com
campus-deportivo.cdclaret.com
cine-match.com
admin.preprod.clevernet.app
oztech.co.id
slack-log-viewer.comucal.com
fau.copal.ai
www.dispatch.digital
dissect360.com
domysumaarchitects.com
console.epap.app
fluenquest.in
www.freskisimarket.com
associadomahatma.g2canal.com.br
geistleiter-geschwindigkeitsfabrik.de
staging.getuff.com
halogoose.org
hanumanglobalexim.com
hebammearndt.de
scrum.hemmelig.ninja
heywyer.com
howtobuyiota.co.uk
gyanamacademy.indiandevelopers.org
jagokissan.com
cours.jaouan.dev
jjworkshop-academy.com
jmstonelogistics.com
alunos.juntosnaredacao.com.br
kaviyatravels-yercaud.in www.kaviyatravels-yercaud.in
knotes.app
www.komple.io
koto-app.com
stage.lobb.in
auth-platform.lup.com.co
demo.m1studio.co
portal.manageplus.co.za
marsilletravel.com
test.millisite.com
misoporte.digital
mosaicmedia.fi
musfiq.dev
enku.afifurrohman.my.id
staff.iop.myanxietytreatment.com
profile.mysideline.com.au
www.nela-foundation.com
www.newtypekk.com
www.olabi.org.br
otobesa.com
api.parkalot.io
my.payprz.com
cms.plannt.app
boardbox.pro26.in
web-staging.pubq.se
www.quick-maint.com
clock.rapodor.com
readcoderepat.com
lifecounter.savvyworker.com
reval.scarborough.me
agora-sitemaps.searchagora.com
www.seniorkultur.no
www.sevendots.art
games.shimage.net
smaluminium.com
gdifotofinish.soaq.co
julkalender.socialdemokraternainorrkoping.se
player.sonarfm.cl
souvenirmax.com
macutriviaseg3.sqwadhq.com winterhawkspoll.sqwadhq.com
stand-up.be
stonepro.com.br
dev.client.stylers.cloud
app.t4c-companion.com
gwa.tania.id
teaganskitchen.com
thaisborgholm.dk
www.tonesoft.hu
www.toolbeltapp.com
app.touchme-tech.com
trendscope.fr
trishelite.com
odinmalargue.turnosweb.app
blockchain.ultrix.digital
unpack.digital
volcanmind.com www.volcanmind.com
devreport.wellnest.tech
whatsthescor.es
yazool.net