Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=www.fujimoto.dev
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 22, 2025
Valid Until
March 22, 2026
70 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7E:5E:77:E8:98:6C:65:CB:26:C0:8D:AB:18:5D:37:DC:C5:89:A5:6F:99:7E:D5:3E:93:09:B4:7C:E8:12:CE:81
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
Wildcard CAs
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • You have authorized 4 CAs - consider limiting to only the CAs you actively use
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
Subject Alternative Names
100 domains
glazbaonica.com
burger-builder.adilwaqar.dev
app-beta.agileerp.com.br
agrit.site
grocerment.aidancheyd.info
andremourinho.com
www.anitachakraborty.co.uk
devweb.ascc.me
pagos.ascc.me
www.besys.hr
delrio.biibiic.com
partner.bnce.us
buscador.boxmagic.app
go.boxmagic.app
search.boxmagic.app
work.boxmagic.app
appordini.camiciaondemand.it
xn--4dbceh2bh4a5d.co.il
exosphere.co.in
chat.central.co.th
aaratikumariyadav.com.np
cowinners.com
dev.buyer.dextre.app
dgio.me
dcon.dropsolid.com
org.ekalsutra.com
prairiepost.enotice.io
squaredealnews.enotice.io
cnpj.evtit.com
links.fitwill.app
admin.blog.flutterbountyhunters.com
www.fujimoto.dev
www.fundacionmembrana.org
archive.me.ghussein.org
gibung.id
hirejoshbrown.com
stage-firebase.hoppscotch.io
tools.husainm.com
game.idemo.app
admin-app-test-fb.indiverse.in
portal.jp-superstore.de
knock.tw
app.linkface.com.br
www.loveshoreresort.com
lukekorth.com
app.mamaasia.info
comentarios.marcomadera.com
melanger.id
www.melanger.id
mothertree.is
manager.stg.mymagicchat.com
sso.stg.mymagicchat.com
ghc.nearform.com
www.neswok.com
o3actflow.com.br
xn--hha.org.pl
medicijnwijs-staging.pharmi.info
westmere-bay.philihp.com
auth.pkazo.com
crustshadow.polkassembly.io
www.portaldedelfos.net
www.portalhash.com
serve.poshee.com
prestaservi.net
pretitle.com
pos.prevellosoft.com
qottospot.qotto.net
rahultalukdar.in
www.raiva.in
readven.com
share.revoteen.com
romana.lt
cat.ruaytech.com
connect-ng-carrier-admin.rxoconnectmain.rxo.com
connect-ng-orders.rxoconnectmain.rxo.com
connect-ng-user-profile.rxoconnectmain.rxo.com
school-drive.fr
go.smart-menu.rest
bas.statsbygg.no
steel-zone.com
sueinvestments.com
www.svrtalentworld.in
tarkovtracker.io
go.theisland.jp
thinkingai.in
tonight.amsterdam
www.tonight.amsterdam
kalifa.tupoliza.mx
weirdways.in
xn--0ci.gg
xn--bersetzer-p9a.li
xn--f4v204b.biz
xn--21b0bs8d0cb.xn--h1b7b1e8a.xn--h2brj9c
xn--l3czc8f0c5a.com
email.xn--lezsk-0qa.hu
xn--mgbt8dg.net
xn--nestelp-v1a.no
www.xn--pskdagen-9za.se
xn--qei.gg
xn--tdi.gg
Other domains in certificate