Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=booksplusapp.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 17, 2025
Valid Until
March 17, 2026
80 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
13:16:DD:AE:CE:54:F0:BC:F4:66:A5:67:BE:F8:5A:03:98:F5:70:37:0C:A3:E9:17:5C:0A:F8:30:93:D5:3D:C2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
Wildcard CAs
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • You have authorized 6 CAs - consider limiting to only the CAs you actively use
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
Subject Alternative Names
100 domains
greenpickr.com
2150design.com
lakeshore-roomplanner-test.3dcloud.io
links-physikinstrumente.acty.com
www.alquiler-de-proyectores.com
anhnguyen-space.com
es.artboxy.com
app.aspire.tv
aztecasys.com.mx
baintec.com
www.bethmar.co.uk
login.spark.blaze.today
admin.bookinggood.net
transportschwechat.booknito.io
booksplusapp.com
www.bricksgta.ca
budgetina.org
buildsolo.dev
www.chancyreddit.com
snowroom.codebravo.tech
www.codelov.com
cole.la
hngbrothersfrozenfood.com.my
compound-timer.com
app.confinity.ai
app.contactify.ai
cp-kong.com
crfono.com.br
www.crunchcourier.ca
www.ctrlxv.com
cuidarte.co
portal.dhanucrackers.in
www.digitaljourney.it
preapplinks.dominospizza.es
links.dugriapp.com
test.elecode.jp
enganchaunmichi.com
www.enlightenflow.com
estebanquiroz.com
stageapp.fan.ai
www.beta.flachip.com
staging.flowup.cz
www.footware.app
friendtab.app
www.genuinedatasms.in
gomapay.xyz
sbh.hbco.net
hoasaptenote.com
home.hossameldeen.com
teams.hyoj.in
vuanhduc.id.vn
creative-tensions.ideo.com
saigonsportsclubmt.impactwrap.com
intranet.maissabor.ind.br
www.ironpdf.com
one-education-stage-6.ischoolconnect.com
isotopic.com.br
cr2.test.kengin.app
kyotabi.dev
lacasamejiabarrera.com
www.lashandbeauty.gr
bin-fe-test.logexa.com
lxrose.org
lynnandedcarl.com
www.makeyourmealcount.org
www.marcioaraujocorretor.com.br
www.mavenlandscape.com
appointment.play.medeintegra.app
link.mentemo.com
www.mistergreenlease.fr
mrynot.com
www.mypcand.me
pic-boylesports.mentor-stage.neccton.com
www.nivec.ltd
www.nivinu.com
www.noben.org
perc.norththird.io
www.onthigplx.vn
subscribe.onxmaps.com
opioidhelpnow.com
plutform.com
auth.projectocasta.org
matrix.protaxplus.com
ram3n.com
www.rydesafe.net
sensormonitor.fi
shardings.com
app.sniip-uat.com
www.solosquad.in
southsideminimart.com
home.tapir99.info
www.tddesign4x4.com.au
vidmed.site
vie.digital
www.gainsol.web.id
auth.wedew.id
dev.wordseveryday.net
link.world-museum.org
spil-pms-dev.wwi.app
youhero.be
Other domains in certificate