DNS Gurus
Open Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=bolivarbravo.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 01, 2025
Valid Until
December 30, 2025 48 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B4:1E:AC:66:FC:49:0F:8C:4E:C2:13:6F:4C:A8:E0:F3:10:31:4D:3A:4A:62:82:BA:14:2E:DE:46:C4:C7:3D:B2
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
lawrencefergus.com

Other domains in certificate

www.7april2019.com
www.aesthetikside.com
afcogs.com
alexasanguinetti.com
anonsum.com
ash.uy
www.aultom.com
avalonmap.com.br
dev.avmes.ru
sv-calc.ayataka0nk.dev
bitpunk.dev
www.bluetileroof.com
bolivarbravo.com
buddyb.co.uk
cadeobloco.com.br
mcp.castromau.com.br
www.chainy.co.uk
chaudharyventures.com
childhack.com
www.app.claimify.ng
clintboyett.com
orders.kfc.co.in
ormp.perahub.com.ph
www.crader.co
recipe.crosstalks.me
diffcenter.diffvelopment.org
m.ekinbarri.tech
elevareapoiosocietarioealvaras.com
wesley.eng.br
www.evafadrique.com
businesscard.exzycloud.com
fiftheon.com
gjerdrum-fysikalske-institutt.no
newuserinvite.gliprc.com
growyourfinance.com
www.gurbuztekstil.com
biliardino.hubandspoke.it
icrossinguniversal.co.uk
immentertainment.com
ithuteng.co.za
nacionalsaude.dev.portalcliente.izii.io
www.jeevaindustries.com
kaibaru.com
acpr.keeponrock.in
liferhythm-oauth.kenkohsien.com
crappo.kmldn.dev
www.kurzzivota.sk
lavanderiakyo.com
staging.lific.pro
livingroupinvest.com
app.lokalniekulturalnie.pl
lona-music.com
spe-ev.lsceco.cloud
mathartprojects.com
www.midcenturymodernmovies.com
www.morrisfitzhugh.com
www.myvoice.mu
narongkijruamtun.com
neonspacebanana.com
www.nesdc-event.com
interno.optomed.si
dynamiclinks.ordename.cl
www.orderdx.com
textbook.bluepowerrobotics.org.cn
paramoverte.com.co
www.phillandfred.com
pintopainting.homes
spincar.portal.plenadata.com
t.10mfxx.pp.ua
www.quintoamar.com
manage.realpartyinfo.com
renterban.com
www.robinstangl.com
management.rumo.co
seni.mx
sibidao.com
sinhax.com
www.skilllab.io
skybitmax.com
www.soundbunker.net
steelkraftengineering.com
humanity.studiograines.fr
supayut.com
www.sydetasker.com
covid.sysquare.com
tabsec.io
tejaengineering.store
tp3-uat.terradots.com
www.thetodo.net
katanga.thinkzambiafoundation.org
timespace.io
tlcdental.mx
hmlchat.trendbuild.com.br
tsivos-iason.gr
vismuth.net
vpinch.uk
auth.xlord.web.id
embed.widget-chat.com
wordofprey.com