Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.axonwave.co.uk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 11, 2026
Valid Until
April 11, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C5:42:4B:25:6F:09:4F:79:53:ED:E3:F0:2E:86:61:BF:C9:D5:18:7D:11:2F:CE:1E:C2:7A:1C:6B:20:B3:92:9C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
holeparty.com
www.1bkochplan.com
portalview.209aircadets.co.uk
app.absouza.com.br
meidentsu.anbi-reception.jp
apyguru.com
artistpoornima.com
www.atilal.ly
avenuemagpie.art
www.axonwave.co.uk
bstay-demo.beroia-solutions.com
betheworld.com.ar
blipd.co.za
www.bloodandcaviar.com
kiosk.cardmena.com
codenest.al
data.contril.pl
crownpiperesolutionllc.com
app.customprotraining.com
dailynotes.cc
www.deepsense-robotics.com
splash.digipops.tv
duckzrstudios.com
www.durgaitravels.com
event.e-incube.com
www.sigma.eshqol.com
platemate.ewawazna.pl
expcomm.biz
akalmortgages.f4tek.com
app.fiyoshipping.com
www.gasbyai.com
www.globelaxy.com
gorgerowing.ca
pay.sandbox.solutionengine.gr4vy.app
www.greensopinion.com
spc.gretul.com
www.grupogalea.com.br
careers.guivus.com
www.harrisonwickers.com
huaw.pro
intimecares.com
iqcrafter.com
isablocks.com.br
kadirbyte.org
share.know2share.com
kuannersuit.net
www.kuannersuit.net
kvanefjeld.net
dapp.launchpool.vip
lootgifts.com
mackey-fire-and-ice.com
macronti.com.pe
www.maqspa.com
www.mark-darling.com
maybehank.com
metrixdemo.com
michael-nadine.co.za
housr.moveinout.co.uk
multipleintelligencehub.co.uk
murphysreliablerides.com
skripzy.my.id
na-reke.pl
nevyron.com
2025.ng-de.org
wedding.norianddarick.com
www.npblue.com
omonayajo.com
code.pixi.boo
dev.possibl.ai
portal-mobile.princhealth.com
portal-qa-mobile.princhealth.com
promeriteng.com
quickgrade.app
admin.quizbiblico.app
ramoafrica.com
embakasi-official.reflex-bikers.club
reliancemortgage.ca
www.rhca.com.br
global-key-events-calendar.roche.com
rumo.network
scrapcellar.org
www.sethgnavo.com
app.sigoodonto.com.br
www.sistersuzie.ca
siteinfinite.com
skillsword.ai
www.starmemory.ca
weathertide.sysadm.no
teitrmanagement.services
xingshenshaonu.games.tianyin.store
data.tinkable.net
www.unigreekai.gr
renuwise.vangotech.us
www.velofesta.com
www.versaclinic.app
demo.vida.studio
viseversaapp.com
vizdgtlmrkt.space
voluntr.in
ziater.com
Other domains in certificate