Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=blagoservice.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 21, 2025
Valid Until
March 21, 2026
80 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
99:C1:E5:E2:3A:54:2F:47:89:DE:66:E9:2B:5F:07:54:37:E7:A4:C4:94:85:7B:A3:96:52:83:7B:6E:B1:76:36
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
johnnymob.wiki
demo.actionbook.ai
aeglepro.in
assessment.agileai.university
harpia.altave.com.br
amsable.com
firebase.aquitech.eu
notes.auggiehealth.us
ww.autobid.com
avanti-untergriesbach.de
aventuri.my
demos.bambumeta.software
www.barjar.app
beeboyproductions.org
blagoservice.com
board-brawl.com
manage-feature-prod.captego.com
charlingtonhub.org
dealer.chekt.com
chepeparrilla.com
www.panel-dev.cieneguillariberadelrio.com
istmarina.cloudlabs.llc
sdesignz.co.in
wti.xpulse-cms.co.in
daydal.app
www.deepscoring.com
degreesofchance.co
ecoceptive.co.uk
eda.studio
elivenetwork.com
admin.fc-administrator.com
feyor.com
dev.financialmodelingprep.com
sveltefire.fireship.io
auth.freshpaint.io
gencurve.co.uk
gesticleanup.com
greenfeedingtool.org
cumin-emerald.harecord-dev.com
www.heartworktherapy.ca
portal.hiccup.com
hookaly.com
app.horseanalytics.com
howcookiescrumbl.com
ianseto.dev
sandbox.ideaverse.org
inviter.foundation
up.itgviet.com
javicres.es
product.jewemall.com
jjimovel.com
flynas-sdk.joinsherpa.io
journeytohired.com
jsohndata.com
kellora.com
www.kidslog.ro
lankarealty.net
lcollins.info
www.luxplusprotection.com
maccuri.com
www.madasamyadv.com
makemecolorable.com
marplebot.com
maruthimasalas.com
scan.menyja.co
minigameproject.com
staging.mixidea.org
www.nhseriesenterprise.com
links.observatory.academy
mahjong.octopusfantasy.com
oreuropa.it
www.otkupvozila.info
photodoctor.lk
car.takanome.pirika.org
plutosagt.ch
viz.photos.r42.ca
app.roamdevices.com
rpinvestments.ca
link.rugiesm.eu
rynamic.co
www.sacagrande.com.br
cv.sbz.works
search-rank-check.com
smart-check.net
smartouse.com
washapp.solyomsoft.hu
srpateljewelsart.com
www.staige.fr
admin.sunbears.com
temlo.io
tfshealth.net
thekiteapp.com
www.vacancytoday.be
app.vihashospitalitymanagement.com
village-pizzeria.co.uk
www.voicerepo.com
www.werewolfvalley.com
www.withexxa.com
irfan.work.gd
www.zproxy.info
Other domains in certificate