Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=feelthemusic.org.uk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 05, 2025
Valid Until
January 03, 2026
49 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DA:56:F1:2B:48:E2:F2:33:E5:71:5B:53:6A:83:B7:84:78:DF:09:90:BF:53:EB:CB:E5:8A:90:31:17:D7:50:41
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
fyne.ai
jlp-roomplanner.3dcloud.io
cms-dev.aappoint.me
pro.agnd.com.br
training.alienbrains.in
365expressarte.anukin.com
astros.apy.finance
exchange.arcuma.ru
www.bakkiicookii.com
dev.blastfurnace.com.au
blood.dev
www.borbelyviktor.hu
www.brokencorks.ca
www.bumpme.in
click-clock.com
arrowmarketing.co.in
vidhyaeducation.co.in
coign.net
dawidfrontend.com
dergoegge.de
digitaltco.co.uk
drift10.com
einfach-reisekosten.de
news.elaresort.com
enflate.eu
feelthemusic.org.uk
cook.grevling.dev
grigorov.net
harshparashar.in
www.hidroelectrik.mx
myclass.hurreytech.com
igoramabibi.com.br
inqq.co
irlive.jp
financeninja.itmlive.in
www.jmstonelogistics.com
www.joinzebra.app
www.jyfasesoresdeseguros.com.ar
www.kay-organics.de
www.kevvlar.com
layanan.kudukomunikasi.id
kydoscope.com
www.lightsource.shop
dashboard-ppp.magnusmonitors.com
dashboard.magnusmonitors.com
mayurdentalclinics.in
metercheck.co.za
admin.mia-solutions.ch
microfiction.ink
www.mokuden.online
moonlama.com
www.naxverse.com
www.samavesh.org.in
www.pem-eg.com
clientes.petroil.com.mx
pic.as
platinumdesk.co.za
plyty-meblowe.eu
votaciones.presbiterianacentral.org
progalaxy.in
lunch.q070.nl
dev-customer.qa-tribuu.com
www.radhafarms.in
www.reprom.io
www.rotaapartfethiye.com
front-dev.sacurn-dev.com
www.scitrials.net
seedforgood.com
m.shipcarx.com
landing.shippingratescalculator.com
join.solerabank.com
honduras.solomonschariot.com
mexico.solomonschariot.com
devadmin.speedpowerplay.com
uploads.spotpix.me
links.squadra.work
startec.be
app-demo.stoick.fr
landing.stomalink.ro
www.strojarijum.hr
earlygrowth.strollhere.com
chat.svianet.com
sp.tatahlth.com
www.teampics.org
magazine.technuttiez.com
staging.tempestwx.com
onesolitaire.games.tetherstudios.com
the-chatbot-company.co.uk
ng-trade-csdk.trafyn.site
twl.trenchwars.com
d.trips.aero
flagpolestudio.turnosweb.app
pay.usa-transfers.com
admin.rapidrentals.valari-dev.com
www.verumai.com
www.walterlaupickleball.com
welcometothemoon.co.uk
sessions-dev.workshop-live.com
zfg.lv
uat.app.zuluchess.com
Other domains in certificate