Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=budemesoupalovi.cz
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 24, 2026
Valid Until
April 24, 2026
74 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
18:07:F2:1F:19:9B:65:C8:78:58:37:2B:9E:B8:FC:70:4B:11:14:6B:4B:43:58:29:60:FA:38:62:97:C0:E9:37
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
josfox.education
people.adabrain.studio
alajwad.org
www.alajwad.org
www.alphadev.cloud
abi.amy.app
aniketdobriyal.me
www.areyoudeadcheck.com
autoclinicsyria.online
aviraengineering.in
avocadoidle.fun
azamas.dev
auth-firebase.balcaoautomotivo.com
admin.bgfzim.org
gims.bgfzim.org
blackbugsolutions.com
www.blinkiingmedia.co.za
budemesoupalovi.cz
www.butikasistan.com
getdroptaxi.co.in
firebase.softschool.co.kr
geethbags.d-kode.com.lk
partner.menumia.com.tr
www.partner.menumia.com.tr
www.cultivaftn.in
www.dateplus265.com
www.dentalexcellencehyd.in
dmklogistics.in
dvhotelconsultant.com
www.edusustenabil.ro
emo-reader.jp
enohealthcarefoundation.org
esier.shop
freebet.gg
www.freebet.gg
funsport.dk
generateurcv.fr
www.hausera.io
ordertoolapp.holfter.com
admin.honestpay.net
chatfile.hungda.net
www.infection.education
mines.jbarr.io
www.jerry.ma
joose.digital
www.joose.digital
joose.live
www.joose.live
joose.works
dev-app.jumpdata.co.uk
www.breakblock.kro.kr
lakomche.com
land-department.landchain.online
user.landchain.online
lankasoul.com
laypyayai.com
www.laypyayai.com
liuvsapple.com
www.liuvsapple.com
majet.food
mapetitelistedesouhaits.fr
www.mijnhuisartseneemland.nl
oxcrm.misterlavaggio.com
myquranclass.org
www.nearlance.in
nexusdigital.work
www.nexusdigital.work
www.oshitrade.com
pamisa.net
plants-here.com
postmakerai.site
premiersolutions.tech
snn.pusula54.com
www.rdra.ch
alpha.rlcofva.org
beta.rlcofva.org
liberty.rlcofva.org
travel-log.projects.saliyabandara.dev
130th.skkudramaclub.kr
geo.socialonbrand.com
sonaliabelhekar.in
content.soulgate.io
survey.sprouthub.com
srilankamitsaman.de
staynearcochinairport.com
tempio.tactum.si
www.taskcrum.com
tinux00.in
tongxuebox.com
www.torifuku-kaiou.app
tuta.media
www.unseentalk.com
vakantie247.nl
www.wearefundify.com
mopiku.webredirect.org
www.wijschattenuwwoning.be
diabeticjourney.ypsomed.com
yuarinnovaciones.com
www.yukooshima.jp
app.zeamedune.com
Other domains in certificate