Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=bodachristianymichelle.swanmoments.lat
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 10, 2025
Valid Until
March 10, 2026
69 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6A:BB:C4:E1:E7:6C:70:FE:1F:CC:86:9E:65:28:E3:CB:2A:21:19:58:72:C4:F2:1C:CE:0B:DB:E5:C7:2F:CB:E0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
juris-codex.com
cdn.1nga.com
certs.agileai.university
huytruong.amatsucozy.com
aolda.app
www.ocorrencias.app.br
atrapaelgift.es
atrapaelgift.mx
admin.bravijanasevavedike.com
brusentsov.dev
www.btgw.in
www.cifraai.com
c4sapp.class.me
clubeats.ae
abbaigari.codeforbidden.in
billing.com.bd
www.hafizahmed.com.pk
creativeimpact.tech
daomimi.id
www.daomimi.id
darvoo.com
deentutor.com
www.employee.drilldown.online
easy-catalog.app
eatwiselabs.com
frog.ke
gajendrayadavpathlab.in
glintstudio.ng
www.glitch-game.com
gophora.com
gripgorecovery.com
pri.grosshanten.com
grovo.io
hbsdentalcare.in
hvaskjerm.no
raquis.intecc.org
loss-survey.intechvalue.com
jaronilles.ch
www.kakawachoc.com
menu.kiwisignage.com
studyhub.kro.kr
lothlorien.dev
makebreakoutgroups.com
mal-pay.com
matiera-land.com
melbournepeptides.com.au
milkomedamusic.com
family.netlaw.com
newvisionenterprise.in
www.newvisionenterprise.in
nounthewiser.com
app.novinyadakco.com
numerogame.com
www.nvrnnrglobaltrustdodleru.com
www.offerskavala.in
testflight.puzzle.or.kr
dash.propcart.com
www.prugipanda.ee
pulselovesessilorluxottica.com
puntocash.lat
qazacounter.app
web.quetzalpos.com
webapp.quetzalpos.com
rdhps.com
www.reconstruyendoxochimilco.org
millionceos.return40.com
richdreammaintenance.com
run2.ai
shiba-11.app
simonyiutiovoda.hu
sossil.com
www.splitafterswallow.com
spookyvalley.com
sr-woodworks.com
stackables.app
bracket.stattogether.com
suganobeverage.com
bodaarguetacalderon.swanmoments.lat
bodachristianymichelle.swanmoments.lat
swapper.co.za
pilgaming.tharunchowdary.info
theaid.ai
www.theaid.ai
thesmartbench.com
pilates-virginia-gonzalez.timp.io
chat.titulacionesoficiales.com
authlink.stg.common.tokyu.co.jp
tovae.at
trekkingbackcountry.com
www.valevntine.it
www.veag.tech
vhum.io
wlicrm.co.za
kiosk.yoojis.app
okstations.yoojis.app
overview.yoojis.app
zaferayan.com
zenkubernetes.com
zerodash.store
www.zeyone.in
Other domains in certificate