Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.amenagements-cyclables.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 20, 2026
Valid Until
April 20, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6B:A8:42:12:6F:01:39:75:70:9A:CE:A4:7C:6B:28:05:96:00:D7:37:D8:45:C8:92:95:19:4E:BD:EF:D0:DF:4C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
fromapot.com
pvp.acadarena.com
afrontare.com
order.akbarthegreat.co.uk
www.amenagements-cyclables.fr
memory.251019-restock.amnotify.com
mymeetings.aniline.io
genieshop.apeiron-tech.com
areyouhouseready.com
arumastudios.es
www.associacaomaosqueacolhem.com.br
assuredflow.com
ataraxiausa.com
dev.bevdb.org
www.bexarsoftware.com
beta.boardgamehaven.com
www.bongato.com
www.briuman.com
bno.bydgoszcz.pl
carcamarchive.com
materials.chi46.com
www.cipreotti.com
static.cityuge.com
w.dinosaurios.comounexperto.com
crownaddons.com
www.d0rfforge.com
www.degreensustentable.com.ar
shplist-5.dev-ltl-xpo.com
www.devicefield.com
diaroogle.com
dijonexpress.com
eaglenetwork.co.jp
elusivecar.com
ennellgroup.com
firebase.eriksturesson.se
www.everestbr.com.br
www.falcon-ride.com
globalseedfoundation.org
www.gooddogs.xyz
manage-qa.goodwheel.work
app.grupocicopal.com.br
apps.halcyonre.com
hausarena.com
headfront.co.uk
auth.heart17.com
hirtak.hu
help.hostmeapp-qa.dev
www.houdovi.cz
www.hubertfrei.com
imperialinfosys.com
inkuire.com
www.joynetiks.com
app.k1driven.com
demo.keynate.com
www.polyprint.kiev.ua
lab.xyz
app.ledsc4.com
leoz.it
connect.leplace.online
whitepaper.luciaprotocol.com
www.marinacodda.eu
www.virtualexpo.matsumototd.com
mealplanpilot.com
mehu.app
dev.mjvirtualevents.com
mosslab.tech
app.mpledesma.com
www.nandehu.com
nathan-ward.co.uk
fortapp.naxelgames.com
cangubusca.net.br
ma.net3marketing.com
neuro-gymnastics.com
nikol.ai
shop.picaround.hu
www.pintraveler.app
www.planebooker.app
www.play24.space
plentyofpostcards.com
links.racetrac.com
raven.quest
roflbook.com
www.saymyname.dev
softmakeia.com
dev.app.spacebridge.ai
spartapps.com
sportmeclub.com
stephenc.art
thalitalucarelli.com
sso.theateraanhetvrijthof.nl
www.thunderboltelectric.us
tsukutech.com
turisfreelance.com
www.unifii.ng
presidente.votei.app
waverent.pt
weseley.xyz
wicked.works
willowprescott.com
test.wordplay.dev
Other domains in certificate