Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.atktransportation.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
February 02, 2026
Valid Until
May 03, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6B:11:A5:94:7B:48:87:92:4E:16:26:59:90:7F:18:A8:D5:14:66:9A:06:07:56:04:7D:5E:FA:FB:1C:98:9B:F6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ludwigsidenmark.com
dev.link.1timesports.com
www.606cloud.com
acemyx.com
alesholman.dev
alfaharmony.com
www.angularfire.com
dev.aplano.de
www.atktransportation.com
mannerenrollment.auxswot.com
bfun.app
welcomekit.biloba.com
biportal.live
www.boonmee-recycle.cc
calcul-interessement.fr
www.cameronlowegolf.com
cheapcarrentalvancouver.ca
test.chronogram.io
lifestatus.co.in
codetolive.in
compostforthehumanmind.com
admin.crush-words.fr
www.deli.land
static-demo.dentalxr.ai
www.dgklogistics.nl
swap.diamondhands.technology
q1-myaddressbook.dpd.co.uk
www.dustinfrankel.com
www.electcorrect.com
www.eleganzahomes.co.uk
app.ethy.co.uk
www.evergreencattery.co.uk
fendlife.com
projects.flexhero.de
furbabies.ai
geitaberget.com
www.glassapp.us
app.glueon.io
stroller.gms.church
mymenu.gupshup.io
www.guttracker.com
join.hellobcs.com
www.iheartsoftware.com
goldgrid.insight-htp.com
stage.intelligent-play.com
jkoettgen.com
www.shop.karmapemadorje.com
komple.io
ankur.kotwal.me
kwadof.store
tunnus.livetaajuus.fi
www.magicseth.com
marinacodda.com
firebasetemplate.michaelwcrawford.com
www.minimal.cards
mnschoolofhorseshoeing.com
learn-dev.mobilemind.io
share.momsrising.org
admin-dev.monittor.com
www.mrsiefensrobotemporium.com
mystellar.co
ohsomyo.com
admin.oncities.org
orto.website
grdc.parkalot.io
comunication.paroledevie-orleans.fr
penaltyboxiii.com
auth.test.playhenry.net
plutomap.com
buy.popcorp.org
www.portalclientesrm.com
clube.proshooters.app
quinoacoin.cc
www.rbasouth.com
trivialblitzrcgk.rccsonline.com
reeliva.com
www.rightsourceyiwu.com
saiit.co.uk
live.scrbrd.com
lifely-app.sheep-apps.com
event.sonarworks.com
www.sparestwowheeler.com
mobalpa-sfg.speakylink.com
auth.sportinghood.com
sriharinicrackers.com
schooladmin.stride.studio
blog.superinsight.ai
reports.sustcoscore.com
staging4932.tasquet.app
tee-factory.es
dashboard.thelevelupnutrition.com
www.timemaster.me
de-lart.timp.io
stg.admin.tokei.day
www.topdogtrainingacademy.ca
www.vbresults.com
app.viddi8.com
dev.wisbu.net
bbuy.zajno.com
app.zipmerge.com
Other domains in certificate