Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=theta.antoniojkim.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 09, 2026
Valid Until
April 09, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
78:0E:D9:98:19:29:E3:B1:A6:48:93:3F:8B:6A:23:E1:71:74:59:E9:B5:D3:51:5B:79:4E:85:32:DD:ED:40:DA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
lilapasteleria.com
sttra.acuizen.com
calculei.agrimind.com.br
all-4u.art
alzekr-alhkeem.com
amzexplorer.com
www.amzexplorer.com
manage.anchormachines.com
theta.antoniojkim.com
qr-demo.arielretamar.com
automaksud.ee
www.baerell.com
betimoja.com
admin.braceyskyway.com
www.budgetwithchippy.com
www.photography.caldera-studios.com
charitywork.app
chugunov-logistics.ru
www.clockhub.co
www.mummaslittlebakeryy.co.in
coloratus.art
www.prolici.com.do
ravtozap.com.ua
auth.cresca.xyz
todoy-web.dariusleeshin.com
djkhushraho.com
doctordigital.mx
www.dv4all.com
admin.dzmanifest.com
emelokosarkomarom.hu
exaltedinc.com
www.exaltedinc.com
docs.fitstudiocrm.com
a0eg.foodle.su
applink.getrewardsapp.com
www.globaljobnexus.com
goodcounsel.ie
apps.gradi.es
guiver.pe
www.haydenlowe.com
auth.hellonabu.com
www.iagc.world
nguyenphucanh123.id.vn
imabachgolfer.com
io.juanmg.com
www.kentel-solutions.fr
share.kliky.ai
riheonc.kro.kr
leestudios.ng
old.mathring.org
auth.mavnscent.com
megaraptor.cloud
www.metiscompute.ai
miguellugodev.com
milliyiyici.com
match.mountaintortoise.com
www.muroblanco.cl
myktsk.com
upgrade-dev.myvaillant.com
py.n00kl33r.org
www.netwerkclub040.nl
nextlevelcardsva.com
www.neztu.com
push.nicephotos.com.br
cms.nikkan-pro.co.jp
wb-test.nucor.report
cdn.oddzwaniaj.pl
panel.onlinetis.com
www.onlinetis.com
optimaxsoftware.com
simulateur-hemea.optimmo-energies.com
test.console.order.place
orestisz.com
www.piabixtechnology.com
test.pinaak.co
auth.dev.printlol.xyz
resources.ragavkumarv.com
re-cognition.tech
realtyedit.ai
www.realtyedit.ai
renovexpertparis.com
rockisonfire.fr
auth.rtlhub.com
sahihmuslim.site
smallbusinessforward.org
venue.snowtable.co
sobrasdecampanha.com.br
www.solanadawae.xyz
baseballismscratchcooltodayadmin.sqwadhq.com
www.srimworks.com
docs.storyhunt.dk
subfy.app
health.sumamachi.jp
bodaalbertoperalta.swanmoments.lat
tabu-fy.com
kuukausikalenteri.tailajaheikki.com
linkstest.telyport.com
tertemizkoltukveyatakyikama.com
unigreekai.gr
lxm66.xtable.tv
Other domains in certificate