Open
Cached
·
just now
75/100
SECURITY SCORE
Certificate Information
Subject
CN=backgammon.share.coolplay.io
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 24, 2025
Valid Until
January 22, 2026
68 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BB:41:CB:B6:26:FD:7E:4E:0B:BA:FD:34:9A:E9:31:A3:E3:79:6A:EF:CC:74:CE:76:AA:6E:65:C9:DE:64:1C:EC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
kdothcuh9uijt5ritgbg.smartimob.io
gutscheine.additive-apps.eu
aelab.my
agecalc.io
client.aiira.co
www.aisyte.com
www.antoniofernandez.com
bigtandthecodeb.us
testjsc.bmarken.com
bodystreak.com
siteco.cateringportal.io
todoredo.chrisstoy.com
app.cleantie.com
www.cmg-consultant.com
best-10.co.in
messagebot.autonet.co.kr
mobile.tupana.com.do
magiza.com.tr
application.concordchildcare.org
rctcovid.consulbrokers.it
www.contentsimi.com
backgammon.share.coolplay.io
debatemap.live
doughnuts.design
agregados.entregaja.com.br
dev.static.firesidechat.com
athena-trial.frontiergroup.info
yoga.glowbe.com
settings.gumb.app
ptoapp.harobox.com
hechoconamor.store
helpinghandssurgical.net
www.hippr.org
cname-to-firebase.horo.jp
www.ilparcocasavacanze.it
app.impperiaimoveis.com.br
rooms.ismartnav.com
www.jefferyhatch.com
joyhealthcare.org
minedu-peru.juliaca.one
www.jyotishyatra.org
www.kagwima.com
www.kainottrodt.de
stg.kcotsa.com
teaclub.kro.kr
beta.liveparty.jp
longterm.guru
madasamyadv.com
www.mallickmusic.com
www.manikandanrajkumar.com
app.v2.manowpoint.com
www.maverickims.com
howmightwe.mettle.studio
www.mnhlaw.co.za
familyconnect.mobover.com
mwcdds.com
naidugaru.com
www.ndcfc.co.uk
ticketshop-moebus.new.de
sfs.next-audit.de
novimgamestudios.com
novynaplo.novy.vip
nowcp.eu
app.onfakt.sk
newengland.profit.orderprinting.com
virginia.profit.orderprinting.com
compassionfest.org.nz
beltur.orwi.app
oyvindeid.com
www.api.dashboard.payos.app
d2cfrance.platformkids.com
playerbeacon.com
www.preventtool.com
proofy-ai.com
ptbkids.com
adminv2.realtybulls.com
www.rtindore.com
rudavko.com
connect-ng-documents.rxoconnectperf.rxo.com
samehjadda.com
staging.admin.sglcertified.com
www.sim2travel.com.mx
sinezap.com.br
online-react-js.sivasoft.in
staff.dev12.skool.sg
links.app.smilekiosk.gr
status402.com
s.stores.jp
sujanthan.com
taaran.in
fire.tazpool.com
auth.stg.tecture.jp
tedxhcmussh.com
theshopreal.com
theworkshop.co.uk
qr.twinbuild.dev
valuewins.com
vnprogrammer.com
smarthome.wasdlabs.com
shadow.waw.pl
Other domains in certificate