Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=asgiovaneitalia1927.it
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 29, 2025
Valid Until
February 27, 2026
47 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
38:7F:30:71:29:8C:5A:C1:E3:3F:DA:C1:69:D3:A4:35:0D:AA:90:1F:55:64:03:0E:51:EC:A1:21:B8:C9:F7:91
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
justshopby.com
www.andiamoplaces.com
apaydin.group
calculos.app.br
artari.org
asgiovaneitalia1927.it
www.azizakgul.com
banadora.live
www.benedictquartey.com
bestlogs.pro
www.bestlogs.pro
app.bluelux.com.br
budgee-app.com
uat.capps.store
kit.citium.space
bonnyboard.com.ec
www.dannyhibbert.com
deepmanifold.org
depara.app
dirtydword.com
ecoexports.in
editingera.in
portal.nexuscns.edu.ng
test.eptgl.com
esv-hansa-luebeck-ringen.de
www.exceed.uy
edisonboe.f2bportfolio.com
fansonchain.ai
entrant.fmawards.ie
futurelegendsai.io
geomove.io
www.gethigher.io
www.greenlightpeptides.com
www.imagineinkdesigner.com
www.imperialinfosys.com
preprod.internal-fun-chegonibudj.com
jananinatyadhwani.in
izkaznica.kd-branik.com
auth.knowey.com
leasebook.online
leohofer.dev
lightstars.rw
www.lightstars.rw
fixasset.maksellent.com
gomsamed.marcafranca.com
metadatagenerator.app
methodtimer.com
agendar.pe.moons.rocks
multi.markets
www.mvpjourney.com
ico.mythril.ai
app.nativetasks.com
adm.navigatetrip.com.br
rodyg-dev.ninfasolutions.com
nudgeiq.io
www.okacodehub.com
en.test.onlinegames-info.com
www.onlytechdesign.com
admin.parroquiasamara.com
pathly.careers
11520753.peerly.app
app.petiblehk.com
pm2i.pro
bookings.pmogs.com
staging.prek.com
staging.quoteworx.com
www.raedapps.com
comidas.redsgogreen.com
www.remotewalk.com
risebistrorestaurant.com
www.risebistrorestaurant.com
www.samitjsn.app
racing.samuelepadalino.dev
sanmiakinlabi.com
seniorcareapp.pl
operations.sidelineapps.com
www.ssf-racing.com
chat.stackinfluence.com
sudarsansuku.in
www.swafpapp.com
tarkabit.com
www.techtoolverse.com
tedxmithibaicollege.com
theguest.it
www.thewebplatformpodcast.com
www.tunaleondelosaldama.com
turingdeal.com
www.turingdeal.com
app.unionmeal.com
navi.urbanhome.app
utt.co.jp
uvifyprints.com
www.vectornode.ch
playgo.vonder.io
widevisioninitiative.org
www.widevisioninitiative.org
meetings-staging.work.life
yottaacademy.com
www.yureto.com
zkstudiotw.tw
Other domains in certificate