Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=dev.api.lokalebon.nl
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 21, 2025
Valid Until
March 21, 2026
65 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
35:24:64:C8:CA:23:C7:C6:FB:D3:9D:39:CA:89:09:C2:44:F3:36:8F:04:49:B0:D6:FA:04:73:D6:AF:B5:A0:87
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
filla.id
lowes-decking-cert.3dcloud.io
www.agilesoftwarearchitects.com
www.aidenmhr.com
alamdentalcare.in
www.anforasdeatenea.com
anjanadevibadrinath.com
uat-pheno.anuvabio.io
anzabio.com
www.arqui1.com.br
ashwinhamal.com
assuranceitcorp.com
bad11.com
www.barbobu.de
baroqueyachts.com
www.bewanderone.com
www.boiledocean.ca
bravotalents.com
app.brightspots-health.com
www.buddy4u.com
dl.buscatucarro.app
capyai.com
cpg-product.carto.solutions
stage3-payments.chaserhq.com
clinicasya.com
cliquexp.com
www.cobblestonepizzas.com
www.cocokaleel.com
elezioni.comunesg.it
covid19hospitalstatus.com
www.crisper-casmouse.com
danielposthuma.com
dashdashwheel.com
deficalculate.com
pro-app.doctolib.com
www.dzemat-salzburg.app
eduardogaxiola.com
ergo-pool.com
estellepicq.com
link.fahr.land
www.fantamaniaci.it
www.flightsnap.com
mapfregr.frontbox.app
gfutils.com
globehero.com
www.gloverbamboo.com
gokhaleandco.com
gomidnight.com
grotecaquaculture.com
leviathan.challenge.growflow.com
app.gruposercomm.com
links.heyfood.africa
hopedodge.me
howardchenportfolio.com
www.hrhub-bd.com
hurgallc.com
itstrending.in
mea-portal.itxi.aero
ivnizki-apps.com
www.jorgebaralt.com
keyton.com.br
dev.aff.kidsup.net
kovaijuiceandbakery.in
lafinyhealth.com
dev.api.lokalebon.nl
llm.lychee.pro
www.mdra.world
api-vendas.meuelevestage.com
mijnbabydagboek.be
mlaw.ai
corporate.mosahay.net
movimentohep.com
auth.dev.muuv.ai
thankyou.mymoons.mx
www.nanojaw.net
pro.niceloop.com
www.noboundfx.io
www.northbricks.com
api.oddset-cloud.de
app.phoenix-signals.eu
dev.pwa.pinggo.co.za
playgg.in
www.poker-planning.org
www.powerextract.co.nz
www.ppkk.fi
test.selfassessment.psypack.com
www.quakeproject.com
payments.quickseat.co
www.quicktasks.app
realconnect02500.realmetrics.io
www.sintra.me
app.slausonrobotics.top
emoticon.sooyadev.com
download.spaceculture.co
stjudecabinetry.co.uk
s.trueid-preprod.net
afa.upwire.com
www.albaniproject.web.id
wiingaard.xyz
www.yaisana.in
Other domains in certificate