Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=poolpep.net
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 05, 2025
Valid Until
March 05, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AE:9D:A1:B7:EF:41:52:B6:4B:3E:0F:83:89:B1:33:AB:1E:70:87:FA:69:A6:76:63:F5:4B:16:CF:A2:B9:01:90
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
lieferzeiten.kp-logistik.de
oha.1campus.net
3hlearning.com
www.69thegrove.com
www.analyticsos.com
www.appjar.net
app.arc.tours
auntiehotmess.com
help.avada.app
www.basalsammen.dk
beerandbikes.co
demo-panoramashop.bestat-data.com
billmader.com
console.blotch.app
data.at.calculatorhub.app
www.cellectivity.com
www.survey.cnguyen.de
guide.codmon.com
cottagesvi.com
covertalert.com
www.cuttherapy.com
d13y.co
auth.digitalrocketship.net
www.dinosaurdino.com
dl0.us
www.doyouliveinademocracy.com
elenarosenberg.com
dmi.elsa.sg
obs.elsa.sg
buzonppg.emeriti.es
entrenadortv.es
evergreenchristiancenter.com
account.expiatio.nl
peek.ezturns.com
www.findeckapp.com
calendly.gatheround.com
esptapi1.gogawi.net
goguau.co
uat-cancellation-origin.gohenry.com
cerrocred.gueno.com.ar
guessmybf.org
dev.haynet.co
demo.impulseworkplace.com
inigodelportillo.com
www.intelligentapex.co.jp
admin.jillako.com
strawberry.ju.studio
www.k7.cl
kaneleuc.com
app2.kansasgolfscores.com
knkmobiles.com
www.kora-sdp.fr
alpha.likewatt.com
lnttrainingandtechnology.com
loracon.app
lunemgmt.com
maestrodeinversiones.com
manognya.com
www.mindfood.in
www.mor.company
mshguru.com
neophileinc.com
neu-digital.com
niklausromero.com
oliverbott.com
onemagicschool.com
www.orbit360.dk
oraciones.mileschristi.org.mx
www.paperpeople.io
pelaezabogadosyasociados.com
powermega.planetbinc.com
play2x.city
playnet.lol
poolpep.net
miseensaine.order.pulp.eu
docs.qmunion.org.uk
rajkottaxiservice.in
www.rakchallenge.org
ryanhubbuck.com
www.sanjon.com
schneller-besteller.de
scoreplank.com
sigmaabc.org
sowers.io
click-dummy.sporty.club
inbox.staffshift.com
mobile-dev.stoick.fr
studioszyszka.com
cricket4you.therealmrking.co.uk
app.topprioritytoday.com
tylercartwright.com
www.unaemils.is
vanishing.land
vellone.dev
tce.play.cloud.vermill.io
virtualimmersion.studio
prestamos.vitechd.com
www.whatnow.tv
insighthub.woodfortrees.net
xchbalance.com
Other domains in certificate