Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=bct-mp-dev.pixelkinggaming.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 04, 2025
Valid Until
February 02, 2026
76 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6A:38:56:0D:19:E8:D0:F6:90:EE:2F:4B:67:AA:A8:29:03:C0:33:3D:76:F2:34:BC:95:51:E5:78:1A:61:F2:F1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
Wildcard CAs
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • You have authorized 6 CAs - consider limiting to only the CAs you actively use
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
Subject Alternative Names
100 domains
glowmonize.com
11521739.peerly.app
62drop.co
data.acatar.pl
activatedcarbongold.com
adantor.com
www.agroantioquiadigital.com
aims.zone
www.allincare.in
almafetinci.com
amysadventuresclub.com
links.angelcam.com
www.anne-sophie-et-lucas.com
app4.it
aquiganantodos.com
asoya.co
audiolanka.com
web.autocentroltda.com.co
www.avatarcabal.xyz
www.azora.app
capitaldude.com
cirkitex.com
coastline-vending.com
sthasagun.com.np
portal.crackersworldsivakasi.in
www.crackersworldsivakasi.in
davetiyematik.com
nfc.daylybread.com
nfc.dev.daylybread.com
platform.daylybread.com
staging.imaging.dicomlab.com
www.dropzone.app
pitchdeck.eatsleepplaygames.com
manager.echad.digital
api.everbloom.app
cpl.fishtank.cloud
flinchub.com
flytinary.com
fpdesignpermits.com
vpn.furkansandal.com
g7satta.com
get-cookin.com
getaskemaun.com
gfm-fvd.com
hanam.ca
ibg.church
rvtw.ikd.app
impeachdjt.com
www.isurf.app
jobertol.com
kienzlerpoolservices.com
dt.knolskape.com
kosmala.dev
l2sporttraining.com
learnics.ai
algomas-performance.lernit.app
tracking.lifo.ai
jhinfo.littlesyntax.app
covidvaccine-testing.mayamd.ai
telemedicine-dev.mayamd.ai
mdeeddev.com
melmiranda.com
migloren.com
dev.mirkwood-munchies.app
jeu-sodiva.monjeu.app
pro.monsuivilogement.fr
monusd.com
www.mylifts.me
neoprismlabs.in
app-prod.newslit.co
nocka.co
novacovici.dev
ordervision.app
showcase.petworks.app
bct-mp-dev.pixelkinggaming.com
pulgadevalverde.com
rsgear.business
torino.scouthub.app
securecodelabs.co
www.signoff.me
impact.silverguard.ai
www.solnary.com
m.sousan.app
app.warsztatsamoobslugowy.swidnica.pl
sales.thebrentwood.co.za
tilakjha.live
vue.tricksgym.com
cer.turnosweb.app
vulk.turnosweb.app
www.uniqornio.com
utopic-ai.ro
valcarce.com.ar
verdamd.com
links.waggle.in
willeverett.co
xlsx-exporter.com
profile.yogautomo.art
static01.storage.zoagest.fr
agi.zolnoi.app
bajajpro.zolnoi.app
Other domains in certificate