Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=thetimezone.app
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 02, 2025
Valid Until
March 02, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0A:C5:D9:DF:90:D1:51:B7:8A:39:CC:63:1E:C0:CC:95:2D:1D:14:3E:6E:44:44:E9:07:CA:C1:39:7B:E3:90:F3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
iltx.org
www.1jp.app
www.3th.biz
www.accelerate.me
www.apsans4paws.in
asbdesign.in
my-aura.aurasuisse.ch
links.autotext.mobi
barsik.info
www.besttreeserviceandlandscaping.com
coach.stage.bitewell.com
app.camargoadvocacia.com.br
www.chefgo.app
ssl.chowari.jp
farajapest.co.ke
www.coachxuxa.com.br
ul.autopro.com.vn
www.crackingslate.com
devserver.cuppazee.app
dagensdesk.no
decisionmaking.jp
screens-control.deploy-cd.com
hi.disconnections.net
effusius.com
mediate.ege.com
trial.face2faceweb.com
www.fadav.com.br
filtrodescal.com
blog.finarket.com
mission-control.finnihealth.com
mobile.firehawk.co.za
getahelp.in
web.goodplan.app
dev.gopherforchrome.app
firebase.gopomelo.com
dashboard.greenfireindia.com
mobile.guestcontrol.it
www.hannibalnow.co.za
www.hidden-chat.de
www.huydinh.me
iamsh.info
trafinfo.jbr.dk
web.journee.live
stage.karus.ai
www.kimborgen.com
www.kralj.dev
centrumpucp.lapieza.io
slimes.lavask.in
www.lazerblade.space
sign.legaliza.io
www.lisamaccarrigan.com
staging.internal-manager.loplat.com
macrocosm.capital
magepunks.cc
business.mandee.ai
vendors.med-bids.com
firebase.meddi.app
verify.microprogramers.org
www.mmo.life
www.musicdrill.com
cmg-halo.neoufitness.com
authlink.trouve.noren.io
content.nowplay.mobi
scan.opologic.com
www.polyrank.com
portfolio.produvar.nl
leadershipcircle-1.reflect.page
auth.reputedfirms.com
clc2.rflex.io
www.ricksmobilewelding.net
recruit.rodichub.com
screensociety.de
test.shoprocketapp.com
provider.sinou.io
skedler.app
skinster.app
solarusenergy.com.au
messenger.squibit.com
starlands.tech
fbauth.tabletopsentinel.com
data-staging.tamata.com
thetimezone.app
traderstrove.ink
trueworldnewsnetwork.com
tuduz.com
www.tuunepauler.com
twn-network.com
nenga2021.ufotable.app
ssn.uniplatform.app
www.vendergas.com.br
www.vrutti.co
www.waddlebot.com
weday.app
customers.workeo.us
ftso.xawc.live
xeno.cf
acaorenove.unidades.yatto.com.br
yomio.cz
www.secure-dev.yourself.health
www.zilkerfridays.com
Other domains in certificate