Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.lolita.boutique
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 22, 2025
Valid Until
February 20, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
68:98:61:96:CE:D4:34:F1:2A:50:75:9F:4A:7E:4A:65:C7:A6:35:B4:F1:DD:CD:6A:8F:B2:5C:A1:BF:E0:FC:02
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
importadorajv.com
www.aimmo.ai
signup.staging.airpayapp.com.au
www.alomigo.com
www.andrewamelinckx.com
angelatarrance.com
www.anneervin.com
apidoc.appfielder.com
www.argdigital.co.uk
avenlabs.com
mattercombines.awwsmith.com
link.bbt-app.com
digitalsignage.bcckt.com
falcon-notify.bellpi.co
www.betteragenttools.com
textile.bluedukkan.com
bluehorizonstemcells.com
app.botfalo.com
www.browserimages.com
report.tzumi.bycopilot.com
cbawebdesign.com
ecobuddy.cervonwong.com
www.cheatwithai.com
citmedia.mx
web.coinby.app
columbia.collagia.ai
www.collinpark.dev
communoo.com
dev.communoo.com
dashboard.connected4life.com
v1-console.connectsx.com
cruise9.com
crystallions.com
admin.daamtu.com
daltongibbs.dev
go.delite.dev
www.devdebugsofttech.com
dr-neli-mihneva.com
drinksnearme.app
dulceycarlos.com
dvacomedores.com
eagl.it
ellishakriesl.com
enishikenntaku-i.com
www.eterkit.com
www.eternal-blue.dev
falconworldtravel.co.uk
fauzdar1.com
www.foodlens.com
ordernow.fooyungexpress.com
www.fullviajes.app
georgepetersen.dev
links.gpstools.app
grupofuno.com
test.hh24.pl
hibimemo.app
iemcentroamerica.com
jlrecharge.com
client.kuto.app
laguiadechiclana.com
laricasb.com
stg.lin-kit.com
www.lolita.boutique
member.loxclubapp.com
makeresearcheasy.com
dl.manyways.info
www.marsbasen.dk
mcneill.app
www.mcneill.app
retro.corp.miracl.com
gallery.mugen.dev
mva-team.com
namai.nl
yamfit.nginel.com
www.oulunlentoasema.fi
editor.outstanza.com
papaleague.com
auth.pegboard.ai
www.pixelswish.co.uk
app.premise.com
app.us-east1.qlub.cloud
new.rideq.se
rtti.dev
sastaticket.app
staffsync.scalingsmiles.com
www.skillenvec.com
slopedog.com
fmv.solerabank.com
www.thebabystuff.co.uk
trackonfit.com
acctmgmt-hcdev.travizory.ch
ruenmaiemenu.triggersplus.com
admin.trygsuite.com
tylerho.dev
aus.dashboard.thrive.uk.com
easy.pre.videolink.app
welcometothereef.com
gibb.wieswies.nl
next2.xpdbx.co
demo100.ymapp.co
Other domains in certificate