Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=mivoto.net
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 04, 2026
Valid Until
April 04, 2026
79 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
05:6A:10:96:59:6A:FA:EE:70:98:41:5F:7F:AD:0E:FC:0C:7D:95:12:66:AB:66:DF:20:42:AA:A8:C4:47:D2:9C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
fiheon.com
auth.1fam.app
21-foundation.org
91clubapp.shop
links-gruppoeva.acty.com
staging-api.adniter.com
adorcy.com
nithya.akhilmohandas.dev
albertopurpura.com
alexsegundo.com
anubolu.com
pulse.appsatease.com
www.aravindmetku.com
quasar.atmta.com
pdf.backlight.ai
www.bastiendupont.com
magnet.berrynovel.com
beyonddualism.com
bibirusustd.com
binarysignatures.com
www.bluehouselogistics.com
components.bluerobot.com
boltspeedometer.com
info.bonestudio.online
boxing-lab.net
www.bullfrogads.com
www.burnablesnft.com
bce-pwa.bynery.com
demo.carryairs.com
cddmedia.com
cestvs-anime.com
chenggames.com
chwarthur.com
reinvent.cloudhop.in
manoharfinancialservices.co.in
auth.tonzo.com.tr
link.ami-solution.com.vn
www.damianbreland.com
apps.dangraphs.ca
www.dealerccc.com
deepvisionx.co
devaranaspa.in
dmrpharma.com
ibrahim.doal.dev
e3io.com
eereena.com
exprezzzo.com
motorista.transkompa.facss.com.br
www.firealgo.com
focoagronegociosltda.com
www.focoagronegociosltda.com
harrysandersiv.com
inncoder.com
www.intellectbridge.co.uk
duelers.jayther.com
karimab.com
kastleproductions.ca
kdl.pet
signup-dev.kiwisignage.com
lapaxsys.com
tecmilenio.lernit.app
limeboard.link
app.limitlessminds.com
www.lingualoomm.com
linkuestays.com
marioporceddu.com
buyback.medicalmaterials.com
admin.medstaff.care
meghehrms.in
app.misalud.ai
mivoto.net
moorecandy.com
www.nashwalt.com
auth.nativepay.io
newcaruberlandia.com.br
www.opinari.ai
kaaassembly-app.oz-tms.com
auth-staging.pollinator.coop
privateoffshoreregistry.com
rizzai.com
www.rockhoundingblog.com
www.ruknaladwaa.com
dmshotfix.corp-internal.rxo.com
rn-drawing.ryky.tech
www.sacredriverboats.com
www.seita-consulting.com
control.skykit.com
sommytech.com.ar
app-beta.squarbrix.co
stevemasson.co.uk
portal.dev.strukd.com
www.suwagrocery.com
book-staging.tanto.app
taskful.co
thecourtyard.ai
theo-vidal.fr
therightclick.org
www.thisolddc.com
tomduresmith.co.uk
builder.vbtradeshow.com
Other domains in certificate