Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=nvasolar.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 26, 2025
Valid Until
December 25, 2025
43 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CE:89:49:70:F7:28:62:4E:29:4D:19:E1:80:3A:47:C5:77:1A:60:EB:13:96:BF:17:5D:BA:47:5B:00:AB:E0:0D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
hagen-schupp.me
edg.12traits.com
28go.jp
www.42degrees.co.uk
kalender.abiomed-veranstaltungen.de
www.adecrown.com
www.agroinnovagh.com
anandvanbeachresort.com
andreitazetdinov.com
dev.appfrog.net
armstrongcleaning.co
azcuit.com
brewbeer.ca
delivery.cadlox.com
cardosolocacao.com.br
dev.casval.trade
cems.app
chorisaga.com
www.cloudbinder.app
mobile.gim.com.bd
barismengi.com.tr
computingteacher.org
app.cria.page
l.ctsh.io
dancingbearmartialarts.com
dazole.com
ddarogyopetcenter.in
www.deepshotai.com
logistics.delori.io
safe-hands-staging.devbeebit.com
admin.dhaakadcinema.com
www.diymechaniclog.com
www.dsapptech.com
www.dssdglobal.org
app.dvends.com
demo.eatlink.co
m.elanza.nl
billbook.enkept.com
face-card.app
fluttery.co
stage-admin.ghuddy.com
www.gl-ph.com
www.goal-list.com
group.events
www.haasconsver.com.mx
haman.ca
go.haru2036.com
magic.henrydierks.com
items.hirehammer.sg
back-ms.inter.mx
dev.invessed.com
jerrysel.in
kashchawla.com
m.khamis.work
mohamed.khamis.work
konfiso.com
web.ltl-xpo.com
www.lukul.ca
maisiesmelody.com
masayaholding.com
architext.masonzee.com
awash2.meander.media
www.meteopress.com
pcr.midiagnostico.cl
and.morethanone.love
muratkaymaz.com
test.mydanceportal.com
archery.nirvanaoutdoors.com
events.nomadway.app
my.dev.norby.live
nothingapp.app
nvasolar.app
octopusbrowser.com
tsukamoto.odo.br
l.onefin.in
pbh.onelastglance.com
covid-19.preversalud.com
link.progressioncv.com
www.radiium.com
www.rboh.codes
reilukuljetus.fi
portal.rendoo.co.uk
mapa-develop.rogeriossantos.com.br
sasandha.net
scholfestival.be
shakhron.ru
staging.admin.shopinn.tw
sjfurniturerepair.com
scoreboard.svetlin.net
tbcceramics.com
tc-schoenbach.de
www.the-escalated-publisher.at
web.trellish.com
www.viiital.com
vppbb1.com
vuestripe.com
www.vypiszevidenceexekuci.cz
plarail-tokyo.waittime.jp
booking.wegolf.ca
staging-studio.yepic.ai
Other domains in certificate