Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.silviamorenoromero.es
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 29, 2025
Valid Until
December 28, 2025
37 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3D:AE:DC:97:F7:09:90:1D:A8:84:EE:0A:61:C6:01:41:E9:C4:27:84:50:14:3D:57:C0:4B:61:18:C0:36:7F:EF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
itschrisclarke.com
wildcardsports.12traits.com
console.adswag.ai
www.affirmativetherapyproducts.com
agentic-ad.com
www.airakas.com
vip.airportspeedpark.com
www.alexg.io
planning.andmap.co
appkasa.com
www.avantcore.co
benbroadaway.com
gps.blunomy.app
www.borobalatar.com
breakingwaterbassclub.com
www.browsenodes.com
bryanoyloe.com
caldera-studios.is
cherrytreesgardeningcornwall.com
hi.chincai.com
clearnotices.com
app.cloudsoundboard.com
accounts.on.co.ke
codesweepers.fun
app.commongoodexeter.co.uk
curae-crafts.com
www.danielrothfus.com
deadmanworks.com
link.defio.app
designwithanjali.com
reweigh-c.dev-ltl-xpo.com
apka.dietaoxy.pl
dreamsense.ai
dvelop.com
www.emili.live
app.enfra.ai
www.exibidos.club
flaxboll.dev
fucian.com
manage.funneled.app
baby.garrettroell.com
ghaziconstruction.com
gkfitness.gr
cms-dev.gloww.com
grunsys.com
harinasdelcampo.online
hazkendelight.com
staging.herface.uk
www.iamsajithk.com
sbperu-auth.ibep-test.com
www.innerenglish.app
test.jeenyme.com
joinyachtparty.com
stage-money.kahero.co
kmei.design
development-ad-userwebapp.knolskape.io
www.box.labellecom.fr
www.ldequadra.com
livingwithforgiveness.com
cocoslab.lotusfa.com
lukas-klotzbach.com
hungdat.m1studio.co
majafy.com
loki.meisterveda.com
www.mikegoodman.io
www.moevil.store
monedin.com
motherteresaemhs.com
www.moxodesigns.com
www.ondernemen-haarlemmermeer.nl
m.onsoco.com
www.party-game.app
zoomcx1.pksquad.com
plowrapgod.com
propertyecho.ai
puffymore.com
apps.reharmonize.art
revellemodels.com
rosenbergtech.com
collaborate.science4africa.org
fgr.scouthub.app
setkfree.com
sharetomorrow.co.jp
www.silviamorenoromero.es
sipplanner.app
herculestirestriviagame.sqwadhq.com
www.takeitnorth.com
www.testme.gg
grow.thoughtworks.net
timehurry.com
sales.tooweze.com
torneocat.com
bgc.trueteach.io
stage.aviva.quiz.thrive.uk.com
mtd-eligibility-checker.untied.io
www.urlo.app
vacadigital.com.br
viddeon.com
walkofmind.com
ztcona.com
Other domains in certificate