Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=routista.eu
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 19, 2025
Valid Until
February 18, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EA:CA:07:9B:C1:1B:AE:7B:7C:B1:66:17:4D:24:39:27:5D:B0:CE:BE:E5:FC:72:EB:8A:BF:D2:03:1E:57:61:6F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
konsinye.marcar.com.tr
www.21-media.org
actekmfg.com
poker.agilenatives.com
www.aiagency-masterclass.nl
www.member.alliedwellness.com
doctor.amblyoplay.com
ambulomics.com
anahericamatias.com
psi.anahericamatias.com
anumaan.io
appsolutely.no
autthentic.com
autumotrizcucuta.com
link.aximetria.com
betos.tech
www.bhuwanbhattarai.com
login.bingelister.com
gps-qa.brainloper.com
bruxton.com
buildongroup.com
en.buildongroup.com
www.camping-les-muriers.fr
charactersvault.com
www.chaseschweitzer.com
circle-sd.com
preview.circup.ch
b2b.bgood.co.kr
bajgaindinesh.com.np
context-mcp.com
oanda.deskbooking.app
www.doogopets.com
coffee.eight-cups-and-a-lady.com
beta.erfp.co.uk
www.estiscan.ai
zanella.dev.everywear.com
resonance.factive.io
famy.sn
www.findmyobx.com
form.miyagi-npo.gr.jp
www.greenfield.ly
www.gymmanagerpro.com.br
evaluation.haleoclinic.com
www.imax.com.pe
impulso-ia.blog
influencermarket.studio
authenticator.tvl.io.vn
jadeplace.xyz
jpinillos.dev
atschoolmobiledev.kbcinc.cloud
kingfishercc.co.za
lang-en-gelukkig.nl
lasertherapymedic.es
lauracollins.dev
omnibusdemexico.lernit.app
web.lilia.agency
www.luckymegame.com
lumenworks.org
medad.host
app.meteovistabella.es
chytrybox.monks.cloud
munichfilmfestival.com
google.mypersonalshopper.co.za
nbembedded.com
www.newportinternationalchurch.org
omnexiatechnology.in
www.onnpilates.com
www.openworks.it
dashboard-staging.physio-analytics.de
www.pressing-saint-cyr.fr
rush.qdx.co
stage.tradex.rainbytes.com
www.ripixel.co.uk
routista.eu
skills.runwayclub.dev
en.samuelcaetite.dev
www.en.samuelcaetite.dev
www.samuelcaetite.dev
www.shaman.land
driver.shippie.ca
pals.smart171.org
solaryscnp.com.br
en.soosteknoloji.com
streamsonic.live
babysleep.summitedgepublishing.com
tasks.techwithag.com
www.thefleetmt.com
thegamedevtoolkit.com
tizzly.com
xdplugin.toolabs.com
tranquil.capital
cursos.uniconnsistemas.com
resultaat.verwijderkalk.be
www.vignanschools.in
www.visualvue.app
vulnops.ai
warwick-foods.com
www.weekly-option.com
www.zachdenney.com
zeegysolutions.com
Other domains in certificate