Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.plombierstoulousains.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 26, 2025
Valid Until
January 24, 2026
73 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
88:8A:37:F6:96:5F:46:B4:17:54:51:35:D2:0A:2E:3C:50:D7:9F:1A:CE:90:43:0C:A7:90:9E:CB:29:39:A8:FC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
j-levy.com
www.alexbiketrip.com
amcsoftware.pe
angra.eu
links.aniketkumarsinha.tech
argue.com.mx
join.awardrace.com
axiosi.com.br
admin123.bardeko.in
asbhrugby.bfsp.app
www.bharathksunil.com
app.bitel.com.pe
butthole.dev
www.bytecolony.com
einstein.ce-solutions.ca
chopchopapps.com
www.cochesygestion.com
www.codifide.com
suter.commulino.de
critchfieldsprayfoam.com
www.dappsjinja.jp
www.dragonexpress969.com
e-doctor.io
www.edenlabs.io
www.emdr-connect.com
empaquesymaquinadosn.com
entrevo.app
excellentchinesedrimnagh.ie
www.firia.com
network.fml-x.com
app.food-checker.eu
refer.games11.in
gaser.com.mx
connect.givently.com
app.gocad.de
www.gusuyeon.com
dailyreport.harecord.com
descargas.helpy.com.co
homenajesus.com
hyundaiservis.com
www.indvstry.app
apps.infopet.pe
demo.nurse.ishealth.app
www.itcondo.com.br
www.jellycakegames.com
jetsetlovers.com
julienlaglasse.com
www.jumpstaffing.com
www.kitsune.com.br
links.knips.dev
georgejsonanalyzer.lambda8.at
lemustang-bondy.fr
lesamourai.space
staging.m2worlds.io
marcovenditto.com
docs.mentaport.com
menuaddis.com
menuiseriemt.fr
meswcdapoli.com
morganamurray.com
mutantgenesis.com
www.myso.com
nebu-systems.com
ntok.org
ecms.nucor.report
opencasting.jp
www.orcolaxo.com
com6338-hw5-p1.osvaldoconcepcion.com
vendors.patsoffroad.com
www.phoenixbodyandpaint.co.uk
www.pianolessonsreading.com
picovisor.com
plannow.ru
www.plombierstoulousains.fr
plusdent.cl
prismia.chat
www.projectionlab.com
quicksando.com
ragana.app
raghavshukla.com
rebeccadimarco.com
www.recirclable.app
royalsadat.com
rpgworldmanager.com
s12bt.net
saibrindavankids.in
guessmoji.sentidev.fr
meet.sentiovr.com
siscall.in
www.stoopinbox.com
dev.swiftscience.io
www.travisbowen.dev
sig.venturebuilding.nl
vk-studio.co
i.vochi.app
vrize.io
wafe.io
wikivideo.it
woti.io
art.z97.io
Other domains in certificate