Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=asatelit.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 07, 2025
Valid Until
March 07, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
57:67:BD:24:5D:66:EE:28:A4:11:12:62:FD:CC:38:41:6C:CD:D9:35:C9:6D:C1:02:05:7C:F1:F7:A2:76:20:57
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
jcvalencia.dev
417.cz
www.aaronburpitt.com
dcjp.aawssm.com
www.adrianolobo.dev
monge-corredora-dev.affinity.do
altsight.com.br
csos-client.amiti.cloud
www.anymoney.co
app.aokitech.com.ar
ticket.arcadeqr.com
asatelit.com
ayanesuzuki.jp
www.bncy.se
bouafia.ca
calendar-dev.branchapp.com
www.btl-i.fr
www.cabinetmedicaldesmarots.fr
caloreez.app
interior.portal.cargo-beacon.com
metrics.chrisvogt.me
circuitodeideias.com
www.cloudpark.app
www.connectedapp.com
www.driveclear.app
app.easylivesales.dk
app.essentiallysports.com
www.eurika.app
fiddlerswork.com
agreena-staging.fieldmargin.com
www.firstdrivingandtrafficschool.com
www.fluidstorm.com
app.frontiergroup.info
gachigames.com
s05finals.gameofapps.org
asesoria.gestomex.com
getslides.app
ginastgermain.com
studio.gtknow.com
halscoon.com
harrahdental.com
netcabs-hub-staging.ingogodev.net
kemluk.com
kempire.hu
landingpage.kukerja.id
livbraiker.com
markriggan.com
www.martinmaterialsolutions.com
www.mazpartes.com
www.melontownfriends.com
mgustav.ca
minderva.io
shortlinks.nearcast.com
nebsyl.ai
www.novelcraft.app
www.ode.dev
stage.organizeat.com
signage.dev.pltfrm.jp
www.plumislandcarvings.com
app.kc.dev.provisionai.com
skillcatalyst.pssgroup.ro
www.pulsomusic.com
test.raceme.io
www.ranky.app
www.rcargenteuil.fr
dev.rcloudsoft.app
studio.rebalancetech.com
resorthour.com
store.rubidik.com
rullebo.rocks
app-auth.prd.samcart.dev
skudu.online
login.sleepcycle.com
admin.sndplumbing.com
startupguru.org
studioone.dev
instant-booking.talentics.app
tamsinlewis.co.uk
portal.test4.life
admin.the3dapp.com
firebase.timewarp.app
timiowoturo.com
tinygiganticgames.com
topicapps.com
toraholmberg.se
fourbios.minhacentral.trausedu.com.br
tupodologa.es
www.ucbyanggang.com
3s.urbin.app
event.vidocto.com
viexel.com
feedbus.vizury.com
vseconline.com
dev.keybot.w3a.io
worshipdepartment.in
links.wunderflats.xyz
y-hu.dev
link.yesrewards.net
admin.ykinnovation.co.jp
www.app.youtranslate.bible
Other domains in certificate