Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.padelresort.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 10, 2025
Valid Until
January 08, 2026
58 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
04:23:FE:78:CD:59:30:CA:34:43:8A:77:2A:89:FF:34:5C:99:24:01:87:26:2D:B8:40:19:A7:32:0B:C2:88:22
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
gosunet.me
555.tapacenter.com
www.acutemalnutrition.org
aecfoodtrading.com
antiinflammatory.app
atera.world
gallery.aurora-schools.org
app.bankcor.com.br
booktrybe.com
www.brace.me
www.brt2.org
ezbill.caplaz.com
ceudecapella.com.br
www.charltonlane.dev
portal.buk.co.il
admin.staging.cofftea.app
crooksryan.com
www.destetico.com
dixyindia.com
dogpalace.co
drivedy.com
e-congress.events
app.ecuestre.digital
edicto529.com
checkin.northlineschool.edu.kh
uat.mis.westlineschool.edu.kh
www.enpgroupgambia.org
erbium.org
www.evernest.fi
filmo.games
fisioterapiaesaude.com.br
auth.freeje.org
dev.gestion-traiteur.shop
admin.getviral.me
demo.getviral.me
flybox.getviral.me
www.handpickd.farm
happydaybooks.com
app.healthyplanbyann.com
jda.ideacloud.com
www.institutodamusica.com.br
www.intothebeads.nl
izyengel.com
www.jigeum.capital
kstlabs.com
newsite.ladystartup.com
lalaandfafa4ever.com
legendoj1.xyz
lightworkseducation.com
batch-fwk.ltl-xpo.com
app.lysconnect.com
martux.cl
schinese.mayamd.ai
payment.maylink.io
mazjid.com
mhamza.dev
auth.milocredit.com
blog.morphyish.com
www.msgdrops.com
mywalletcipher.com
www.netwalkgame.com
nextlevelit.sa
onty.io
globaltech.oz-tms.com
www.padelresort.com
www.parketoggolf.is
www.pascalwelsch.com
msig-portal-1g18o3e.philabs.xyz
phpir.com
www.pixelpuffin.dev
priorityautoescuela.es
puertascimatario.com
www.radhasoami.ca
revesec.com
www.rstraining.business
www.scouts442.com
seatingchart.app
secadoreskoleff.com
semaworks.com
senna46.com
shochu-post.com
orion.shubhranil.com
www.simon4mnda.com
catering.campuzano.sistelin.es
admin.spiderbooks.net
sprawnyserwis.pl
virtual.spwn.jp
www.stayhotel.com.br
test-app.stockloads.com.au
fireship.takeaction.co
admin.tapacenter.com
www.teamos.co
technassolution.com
www.tempestwx.com
citas.tsiba.io
urbanportrush.co.uk
vanguardswift.com
fund.vfi.eco
bevi.xptoconsig.com.br
www.zalboa.com
Other domains in certificate