Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.vintagepunks.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 24, 2025
Valid Until
March 24, 2026
70 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
84:42:D1:70:9A:3C:64:46:4F:7B:1C:63:11:0C:AF:5E:18:D2:7C:09:79:97:C7:0D:46:1B:17:58:B0:2F:FE:4A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ferrumgate.com
portal.acessocriativo.com.br
akshykhade.me
www.albrima.be
alignmatrimony.com
www.alquilerlabarrosa.es
alvinben.com
anakthi.com
web.analitica.id
annasinger.pl
tapick.console.staging.appabrik.jp
app.apptranslator.io
www.asegier.com
www.boxalino.com
www.cb-corporate-finance.com
brod.clau.io
www.cleverr.in
login-dev.clientchatlive.com
www.coora-ai.com
davidrobert.computer
admin.dfcmrfp.com
douze.info
www.eddy.dpyl.com
www.duelingground.games
e-voxtech.com
e42.io
creator.echoes.xyz
economycity-hy.com
www.registration.egraft.fr
leavenworthtimes.enotice.io
ezequielestevez.com
gos.fecg-speyer.de
fecoresh.com
flowerstoqatar.com
www.food-carousel.com
getquick.link
www.gorillatapstudio.com
www.gotl.jp
polizei.gretenburg.de
app.hairmake-theater.com
handcart.xyz
register.healthpointe.team
heckle.link
www.hkieged.org
app.huvilaharka.fi
www.ifelsething.com
morgan-hub.impulseworkplace.com
scratch.intelino.com
app.invue.live
www.jvlab.it
pay-with-korba.kampaignlive.com
kb-notaires.fr
dev.korni.app
www.kovovelic.sk
krzysztofziembla.pl
www.leportfolio.cz
loopgames.net
love4succulents.com
reporter.madewithrelish.ca
obs.malliaridis.com
www.mcnet.in
newsapplication.melroypinto.com
metamorph.ink
www.michael.cx
admin.mywero.com
www.nahush.in
www.namehacker.net
calendar.nova-c.dk
voting.openreview.jp
app.orally.network
register.nurse.org.il
www.outraverse.io
api.petabytelabs.com
peterstiglitz.com
www.piccante.co.jp
www.ppittack.com
auth-operations.quantiful.io
lab.reev.group
mybooks.ronnika.de
satecadapters.com
screenserve.net
selfimproving.dev
www.sleepy.help
sports2health.com
test05.surugabank.co.jp
admin.talkatease.com
link.terer.co
www.thesimplechemics.de
test.trainfitpro.com
concierge.tripzai.com
www.uhstechnology.com
www.venleycapital.org
wallet.verifiedx.io
www.vintagepunks.com
www.wishworlds.us
connect.workus-web.com
xeo3.net
daria.zarebska.me
mta-sts.zipi.co
n8n.zns.legal
Other domains in certificate