Open
Cached
·
just now
78/100
SECURITY SCORE
Certificate Information
Subject
CN=www.samipussinen.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 24, 2025
Valid Until
March 24, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
27:B2:78:7B:00:9E:3A:3D:B7:DC:EC:92:2F:38:0F:D2:2A:A1:84:4E:0D:96:E3:54:C8:8E:31:3E:E6:C0:28:4B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Weak
require-trusted-types-for; report-uri; object-src; +3 more
require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport,script-src 'report-sample' 'nonce-LSZKT4DSnwGoQz9TxKG03g' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self'
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
letremplin.bfsp.app
subs.15minuteman.com
maps.1mark.work
luzdaserra.cms-test.2na8.com
luzdaserra.staging.2na8.com
abocado.co
auth.aceibmath.com
androidmanifester.com
www.animec.es
hh.anthony-poole.com
www.anthonylacheny.com
www.aparna.fyi
apinalbolivia.com
www.bayanatz.com
bingaodopovo.com
www.blicky.co
brokenref.com
cactoquepala.com.pe
tual.cammetalapp.com
autogames-backoffice.cbdata.cz
cesanoseveso.cbros.it
iyoga.co.in
www.uvselect.co.in
colerogers.org
leonardomedina.com.ec
craftpositions.com
cs2chile.com
dojocontact.com
drgopalsharma.com
ecc-reemelsayed.com
capital.elevationai.com
elitelivein.com
www.en-tur.no
nasa.ethanfarrell.ca
eggxiuren.trungdev.eu.org
fakedev-kh.site
fanbox.jp
admin.fazzinigroup.biz
small.fognet.world
foundertools.app
gacano.com
www.gayoforyoga.com
pp.goodgiving.com.au
www.griffinteller.com
www.gundam.com.br
gustavbylund.com
newsletter.handong.app
hawaiifi.net
fwd.helenexpress.online
vic.hemisphere.digital
hotefy.com
businessriver.hrawards.ie
canaldeatendimento.icnr.com.br
omg.ilymgroup.com
www.inclub.world
innernet.app
www.itfreelancing.nl
seeapp.itsmarawi.com
mta-sts.jy.cl
my.kinexis.net
z5.ksug.ai
z6.ksug.ai
kurzzivota.sk
moonio.app
mortgagemateau.au
mpdownload.xyz
my-mdb.co.uk
uatcrm.newtum.com
dev.notifications-sdk.novafutur.com
o-fra.me
www.omundodacrianca.com.br
demo.oplit.fr
auth.oppia.org
app.osboha180.com
www.panoramas-chile.cl
www.picapica.me
www.pixelated.party
app.nightly.pocketpost.life
rawtalks.in
www.rundquist.tech
www.samipussinen.com
scriptify.ge
www.siliconseed.io
softinmedia.com
app.solemomentsclub.com
www.sonicattack.nl
platto.spwn.jp
www.tag.gd
www.tattooar.com
textribbon.11010011.xyz
app.timeschedule.ru
authlink.common.tokyu.co.jp
trompe.fr
www.twingtwing.com
www.under-pressure-diving.com
www.uniget.com
www.urbanportrush.com
uvacellar.com
tech.vschool.io
admin.walkinapp.co.uk
Other domains in certificate