Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=naturally-salt-poolaccess.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 12, 2025
Valid Until
January 10, 2026
61 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A5:72:E6:6F:6C:A4:16:ED:09:4A:49:1D:21:20:02:99:59:A8:58:AD:EE:0D:61:5B:83:C4:F5:02:5B:D5:45:AC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
Wildcard CAs
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • You have authorized 6 CAs - consider limiting to only the CAs you actively use
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
Subject Alternative Names
100 domains
k2designers.in
admin.academix.dev
demo.listing.ailumia360.com
www.andrewpitt.co.uk
www.anthonyhenley.com
appnificent.dev
arrage.apptget.com
www.avianaluxe.com
bean.best
beneprog.com
bytevillage.dev
chain-work.com
choudhry.org
www.chuckchuck.co
www.timedme.co.ke
app.coachelite.co
www.codevamping.com
codologies.com
alpha.courseplan.io
cperezg.dev
www.daftscience.com
dailycodingchallenge.com
ec.dev.orilabo.dataequinox.com
www.datavis.sg
www.dbcustomoffroad.com
www.democracyfighters.com
tae.digacel.com
dreamswopper.com
app.edvoy.com
chevauxweb.elinmejorable.com
canada-water.equiem.mobi
www.erdoganakdeniz.com
erickcarias.com
www.estatestats.com
vts.exohivedigital.com
monday.fadesk.com
fatmaparlakol.com
salesforcerkofy23.framez.sg
disney.gatheround.com
app.gedu.it
getchirrapp.com
notes.getvirtualview.com
grizzly-computing.com
t2.gtconsol.com
havimas.com
atf.staging.hcn.ac
p.heim.jp
hrdash.co
ms202416584.id.vn
neihkhuat.id.vn
actionnaire.monjuridique.infogreffe.fr
internationale-tage-juedischer-musik.de
c.iscr.com.au
itsjustawedding.com
www.dev.jonas-wanke.com
www.joshuabasche.com
www.jotajot.com
kinamo.org
kowalski-wiedom.de
krijst.nl
dev.juror.latinfever.app
getset.learna.ac.uk
letsplant.com
lkdin.io
malabaredutrust.in
marbit-jp.com
meh-yar.com
www.mm1stopcs.com
naturally-salt-poolaccess.fr
nmstateretrojerseys.com
www.nrobinson.ca
oap-deepdive.oceansai.tech
oleanderfilms.com
app.planest.ai
app.plitte.com
www.projectagint.com
rainbow.care
widget-latest.runllm.com
seanpautzbio.co.za
link.sicoobnet.com.br
app-mts-pkb.sistemasimo.com.br
smartshoe.in
soundscapecore.com
ifm-electronic.speakylink.com
applecuprace.sqwadhq.com
bcheroesadmin.sqwadhq.com
vwsweeptestadmin.sqwadhq.com
www.start-hub.ca
www.stowblockchain.com
www.sunshineranchdenton.com
www.the-trivia-api.com
links.treembo.com
trimbleconnect.at
www.universalcategorysystem.com
variantspark.com
chatx.vyeron.com
www.waitizzy.com
wallaceapp.io
www.workscapeoftomorrow.com
yssolutions.org
Other domains in certificate