SSL Certificate Analysis for intrainfo.fortum.com - Security Grade & TLS Configuration

Open Cached · just now

92/100 SECURITY SCORE

Certificate Information

Subject

CN=www.vqspraktis.com

Issuer

C=US, O=Google Trust Services, CN=WR3

Valid From

October 12, 2025

Valid Until

January 10, 2026 34 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

04:2F:FD:90:52:70:86:D3:D4:A1:F3:9A:10:5C:07:DC:F2:CF:6B:D0:DB:D1:7B:06:2F:0F:C8:93:1E:78:7B:1B

Alternative Names

100 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Good

max-age=31536000; includeSubDomains

Content-Security-Policy

Good

upgrade-insecure-requests; default-src; base-uri; +8 more

X-Frame-Options

Excellent

DENY

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Present

no-referrer, strict-origin-when-cross-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Consider adding 'preload' to HSTS for maximum security
• Strengthen CSP by removing 'unsafe-eval'
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains

intrainfo.fortum.com

Other domains in certificate

flora.algoritmo.lat

aptfi-edu.com

www.baldcomics.com

bamedtech.com

blackbird.rocks

www.blackpoolone.com

bobbykegel.dev

liff.botlogy.com

brianlee.org

www.cafenook.co.uk

ccc.demo.chance-store.jp

printit.co.in

codingllama.dev

comefollowmeapp.org

crai.no

www.dalakliniken.se

danopia.net

play.db.tc

test.deliveree.com

demoqrata.com

www.drsarulrhaj.com

europe.earningsahead.com

www.eegedu.com

ennovatix.com

estudiaringles.net

jcdecaux.fiksuruoka.fi

www.filleruputah.com

qr.fitkore.com

www.florianna.ru

fmuirhead.info

admin.fundforward.co

static.getinsights.io

api.goegonetwork.com

www.grappex.com

www.guardioesdacapoeira.com.br

l.haandvaerker.dk

www.halfcyan.com

www.heartenoakvineyard.co.uk

party.hotarek-ribel.at

iepsource.com

www.improntacomunicacion.ar

insectbyte.com

one-education-advisors-stage-4.ischoolconnect.com

joebrown.dev

www.jointrst.com.br

karinatutberries.com

keerthana.com.au

kodapro.dev

www.locagera.com.br

localiz4you.fr

portal.matt54633.com

www.misohungry.co.uk

invite.moonlighting.io

www.nelsonenzo.com

collegemitra.net.in

app.neurozone.com

nukleuslabs.com

database.owenschulz.com

pathsmentorship.com

pickpackcar.eu

player.playfm.cl

polar-moment.com

paiksbbqmel.posnet.com.au

www.proempresarial.com.br

track.radean.xyz

repka.me

reshetmashkanta.com

manager.roperetail.com

shelf-designer.com

sibertakvim.com

simpleclub.schule

www.socus.co

www.spatzvomdach.com

www.spindrops.org

www.staycoolnft.com

stocksorstonks.com

www.sunmanhm.kr

www.tdswholesale.co.uk

www.testescolare.ro

thefour.au

links.thriverewardsnv.com

tobydrane.com

twilightbeautyspa.in

on.tyme.today

admin.v1.varahealthcare.com

editor-res.vidma.com

www.vqspraktis.com

www.vtpdev.com

weatherforddds.com

xr.wec360.com

auth-dev.whatscookin.us

writedown.dev

xcloc.com

paints.yinglets.online

yinuohuang.com

youmatchwho.com

yourlimitedlife.com