Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=kollektivzuerch.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 04, 2025
Valid Until
March 04, 2026
48 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5F:62:2B:3B:49:65:0A:88:01:CF:CA:B1:63:01:C8:69:35:7C:2F:8C:8E:60:2A:4F:FD:B0:86:7A:9B:45:DB:30
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
firebase-test.funktronics.ca
www.0xua.app
2dcstudio.com
share.authenticator.2stable.com
accorducorps.fr
admin.marquee.activecove.com
www.agendafacilcliente.com
alperdagli.me
alterwabbit.com
auth.amal.express
amarabeautysalon.com
anvarat.com
www.anvarat.com
arjunmadavoor.com
arkforge.net
ayanengenharia.com
beemind.ai
link.brian.study
buildo.sk
casatuacocina.com
uat.chapterly.in
line.central.co.th
www.afrohoneyguide.co.zw
www.conodoble.com
dev.varever.cradlecode.com
mvp.craftyourtaste.com
admin.datototal.cl
calculator.dave-becker.com
digisell.pro
edinaleckovic.com
python.docs.encord.com
nahuales.enimod.com
www.ganacontupc.com
gerher.com
developer.greythr.com
hadinsolution.com
harshtonschools.com
www.healthmaddy.com
hoodsfood.com
www.ibossco.com
admin.ictacademies.com
sportpont.idata.hu
developer.imobzi.app
admin.inddigi.com
www.infraconsheltersafrica.com
www.itboomi.com
winvirusai.jakejoris.lt
jokates.com
www.jonfadum.com
jugglertoolbox.kakaojp.com
mycounter.kakaojp.com
kaushal.dev
www.kelvinzhao.com
v1-5.portfolio.kfzaki.com
kollektivzuerch.com
api.kotomarket.pl
design.components.lab.mobi
mawoservices.com
www.merqury.co.uk
miradamagicca.com
motokadr.com
www.multiengenhariasolar.com.br
l.nested.com
www.nexigoenergy.com
nhabogrocery.com
nixorobex.com
auth.obboco.com
ojstudio.com.br
system.admin.ordee.io
orderportal-dev.pharox.io
www.printer-px.com
ravibs.com
auth.roadtodevelopers.com
www.robindesarcy.com
www.selviautomobiles.com
panel.sipass.io
teleprompter.soturimedia.in
www.stefanward.com
designer.studyu.health
sunyside.co.jp
swsssmart.io
www.tankerch.com
omni.message.tec.br
tegg.app
www.trungtrinh.ca
app.unwrapyourdream.com
dashboard.veniceprojectcenter.org
xn--82c4adcd7cf7cc7dnbe0a1d5uc.com
xn--b1aafcaklq3aedeoj3hxe.xn--p1ai
www.xn--b3cwandbj0pfce1b0jvek.com
xn--bootsprfungen-2ob.de
xn--foa.cc
xn--m3cegb8b0a1ec9l.com
xn--p89a642cbrdpa843j.com
gameshow.xn--skjrgrds-e0ah.no
www.xn--t8jb7q741sor8b.jp
xn--t8jb7q741sor8b.jp
xn--vabadpevad-v5a.ee
www.xn--x8j6kwfr23k.com
www.yumibm.com
Other domains in certificate