Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=fitnessgear.com.au
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 30, 2026
Valid Until
July 29, 2026
79 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6C:08:8F:18:A4:3A:FD:A6:44:F9:59:A1:9E:CD:0B:8A:B0:27:32:05:6B:FB:A6:A0:06:BF:4E:BA:FE:57:7A:77
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
73 domains
invitation.com.au
*.invitation.com.au
*.cqbdri.invitation.com.au
cheepcarribean.com
*.cheepcarribean.com
*.ww16.cheepcarribean.com
fitnessgear.com.au
*.fitnessgear.com.au
floridadepartmentofmotorvehicle.com
*.floridadepartmentofmotorvehicle.com
*.ww25.floridadepartmentofmotorvehicle.com
formed-shop.de
*.formed-shop.de
*.01.joinville-le-pont.info
*.0bef42ae-76f2-4ea0-b1a3-679178f8ccf3.joinville-le-pont.info
*.acftdaccounts.joinville-le-pont.info
*.admin.joinville-le-pont.info
*.aging.joinville-le-pont.info
*.app.joinville-le-pont.info
*.betting.joinville-le-pont.info
*.bmail.joinville-le-pont.info
*.box.joinville-le-pont.info
*.branches.joinville-le-pont.info
*.buyer-api.joinville-le-pont.info
*.com.joinville-le-pont.info
*.common-api.joinville-le-pont.info
*.corp.joinville-le-pont.info
*.dev.joinville-le-pont.info
*.e385401f-7dd3-4102-83e3-5c93a78e390b.joinville-le-pont.info
*.eml.joinville-le-pont.info
*.gw.joinville-le-pont.info
joinville-le-pont.info
*.joinville-le-pont.info
*.lfq0a30ie4eopf84.joinville-le-pont.info
*.m.joinville-le-pont.info
*.mail1.joinville-le-pont.info
*.mail12.joinville-le-pont.info
*.mail3.joinville-le-pont.info
*.mail4.joinville-le-pont.info
*.mail5.joinville-le-pont.info
*.mail9.joinville-le-pont.info
*.mailhost.joinville-le-pont.info
*.mcxtfspringboot.joinville-le-pont.info
*.mx.joinville-le-pont.info
*.mx02.joinville-le-pont.info
*.mx1.joinville-le-pont.info
*.mx5.joinville-le-pont.info
*.notexistsww01.joinville-le-pont.info
*.openapi.joinville-le-pont.info
*.owa.joinville-le-pont.info
*.pbrand.joinville-le-pont.info
*.poczta.joinville-le-pont.info
*.pop3.joinville-le-pont.info
*.pringboot.joinville-le-pont.info
*.relay.joinville-le-pont.info
*.remote.joinville-le-pont.info
*.saas.joinville-le-pont.info
*.seed.joinville-le-pont.info
*.service.joinville-le-pont.info
*.sgplkmailbox.joinville-le-pont.info
*.sitemap.joinville-le-pont.info
*.sitemaps.joinville-le-pont.info
*.smtp1.joinville-le-pont.info
*.smtps.joinville-le-pont.info
*.spam.joinville-le-pont.info
*.springboot.joinville-le-pont.info
*.sso.joinville-le-pont.info
*.staging.joinville-le-pont.info
*.test.joinville-le-pont.info
*.v1.joinville-le-pont.info
*.ww01.joinville-le-pont.info
*.www.joinville-le-pont.info
*.wwww.joinville-le-pont.info
Other domains in certificate