Open
Cached
·
just now
85/100
SECURITY SCORE
Certificate Information
Subject
C=SG, L=Singapore, O=Razer (Asia-Pacific) Pte. Ltd., CN=razerapi.com
Issuer
C=US, O=DigiCert Inc, CN=DigiCert Global G3 TLS ECC SHA384 2020 CA1
Valid From
December 17, 2025
Valid Until
October 15, 2026
270 days
Public Key
ECDSA
256 bit
(P-256)
Adequate
Signature Algorithm
ECDSA-SHA384
SHA-256 Fingerprint
6D:B4:D3:2C:2D:7E:19:25:49:D8:69:24:06:98:8A:17:98:9F:E0:D5:16:82:5F:AF:C7:6B:57:B4:58:9B:55:DF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.0
TLS 1.1
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
Warnings
- • TLS 1.1 is deprecated and should be disabled
- • TLS 1.0 is deprecated and should be disabled
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=15552000; includeSubDomains
Content-Security-Policy
Weak
frame-ancestors
X-Frame-Options
Present
ALLOW-FROM https://razer.com https://www.razer.com https://zgold-dev.razer.com https://pay.zgold-dev.razer.com https://pay.gold.razer.com https://betaweb.zgold-qa.razer.com https://betartl.zgold-qa.razer.com https://betaqa.zgold-qa.razer.com https://pay-fg.zgold-qa.razer.com https://pay.gold-sandbox.razer.com https://mol.com http://local.razersynapse.com https://www.interhaptics.com https://webapp.gameloop.com https://hcaptcha.com https://*.hcaptcha.com https://maryann.razer.com https://maryann-staging.razer.com https://maryann-beta.razer.com https://maryann-local.razer.com http://maryann-local.razer.com https://master-marn1.synapse-preprod.razer.com https://qa1.synapse-qa.razer.com https://synapse.razer.com
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Significantly strengthen CSP directives
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
95 domains
app-assets-mac.razer.com
app-assets.razer.com
appcasts-staging.razer.com
appcasts.razer.com
apps-haptics-staging.razer.com
apps-haptics.razer.com
apps-mac.razer.com
apps-prod.razer.com
apps-staging.razer.com
apps.razer.com
appsbeta.razer.com
id.razer.com
synapse.razer.com
media.gold-sandbox.razer.com
media.gold.razer.com
media.zgold-qa.razer.com
nexus-prod.layout.razer.com
nexus-rc.layout.razer.com
preprod.layout.razer.com
preprod.mobile.razer.com
prod.layout.razer.com
prod.mobile.razer.com
promotions.zgold-qa.razer.com
rc-assets.mobile.razer.com
rc.layout.razer.com
rc.mobile.razer.com
rc.pc.razer.com
thumbor-nonprod.phoenix.razer.com
discovery-sophie-pro.razerapi.com
discovery.razerapi.com
discovery3.razerapi.com
manifest-natalie.razerapi.com
manifest-sophie-pro.razerapi.com
manifest.razerapi.com
manifest2-v0.razerapi.com
manifest2.razerapi.com
manifest3.razerapi.com
razerapi.com
stagger.razerapi.com
utils.razerapi.com
cdn.razersynapse.com
cfbeta.razersynapse.com
fwsdk-qa.razersynapse.com
fwsdk-staging.razersynapse.com
fwsdk.razersynapse.com
gms.razersynapse.com
manifest-assets-staging.razersynapse.com
manifest-assets.razersynapse.com
manifest-cn.razersynapse.com
manifest2-staging.cdn.razersynapse.com
mobile-assets-qa.razersynapse.com
mobile-assets-staging.razersynapse.com
mobile-assets.razersynapse.com
oauth2.razersynapse.com
razer-cloud-eq-assets-qa.razersynapse.com
razer-cloud-eq-assets-staging.razersynapse.com
razer-cloud-eq-assets.razersynapse.com
app-assets.razerzone.com
assets.razerzone.com
assets2.razerzone.com
assets3.razerzone.com
audioapp-assets.razerzone.com
avatar.razerzone.com
axon-assets-cdn.razerzone.com
axon-download-cdn-staging.razerzone.com
axon-download-cdn.razerzone.com
axon.razerzone.com
chroma-assets.razerzone.com
cn.razerzone.com
cortex.razerzone.com
deals-assets-cdn.razerzone.com
deals-images-cdn.razerzone.com
dl.razerzone.com
manifest-assets-staging.razerzone.com
manifest-assets.razerzone.com
mobileapp-assets-dev.razerzone.com
mobileapp-assets-staging.razerzone.com
mobileapp-assets.razerzone.com
razer-customer-swassets.razerzone.com
razerid-assets-staging.razerzone.com
razerid-assets.razerzone.com
razerid-cn.razerzone.com
recommendation-assets.razerzone.com
rzcsassets.razerzone.com
synapse-3-webservice-dev.razerzone.com
synapse-3-webservice-staging.razerzone.com
synapse-3-webservice.razerzone.com
synapse-x-assets-dev.razerzone.com
synapse-x-assets-staging.razerzone.com
synapse-x-assets.razerzone.com
synapse3ui-common-dev.razerzone.com
synapse3ui-common-staging.razerzone.com
synapse3ui-common.razerzone.com
wp-assets.razerzone.com
www.razerzone.com
Other domains in certificate