Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=figma-for-jira.42nd.co
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 14, 2025
Valid Until
March 14, 2026
79 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6C:59:DC:25:E9:3F:7A:A7:95:D7:3E:70:F7:19:14:99:E9:9D:B0:04:41:BA:AB:B2:BF:14:9D:9B:41:BA:63:19
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
magicamentecreativo.com
figma-for-jira.42nd.co
www.abgasskandal-hilfe.de
manage.adminja.co
www.agil-org.biz
akohr.com
www.admin.alltrippers.com
www.andreeasiradu.com
andrew-shusterman.com
arraymedicalsupplies.com
www.auchair.com
aumnamahshivaya.com
beautyconnect.in
user.bellatech.jp
bgsg.tr
www.bugunsongun.com
www.chaophrayatouristboat.com
app.cloudtabletop.com
yutri.com.py
gdgcanakkale.devfest.com.tr
dashboard.compensate.com
copyrightagent.dk
datarich.io
blog.digitalfrete.com.br
evisits.endlink.dev
checkout.englishbreaker.com.br
portal.faithtabernaclechurch.co.uk
site-upcoming-auctions.farmgateauctions.com.au
figscaf.com
finlaymurray.com
ghatfoundation.org
goban.me
card.granmonferrato.it
ridehard.guyirvine.com
halabjagcm.com
headonfitness.ie
healingwithjill.com
hillol.org
www.himadriagri.com
hotelrasoi.in
www.hotelrasoi.in
hyperdock.in
icelandicdiamonds.com
thaiminh202416568.id.vn
inpuntadago.it
www.itsstonbury.com
www.jaureguialzo.com
www.johnebejer.com
khodiyarchalisa.com
knowewall.com
www.koftafusion.com
spiros.kotsialos.com
dev.ledgertax.io
lolstats.gg
maison-des-epices.com
manamagal.com
www.manamagal.com
www.matwatersolutions.com
miaelianaa.com
layout.mobilizei.com.br
modelcouncil.app
beta.molnfastigheter.se
motcham.vn
prototype.near-balkan.com
agent.niyogin.com
uanychalfapp.nyrr.org
ontry.dev
perfectlyhung.uk
proequiposgn.com
surco.queliga.com
auth.raive.com
record.beauty
app.resterve.com
staging-auth.retinote.com.au
read.riabiz.com
r.runanywr.com
tools.runinsync.com
v2.rutasegura.co
www.ryandonkersgoed.ca
vocabtrainer.schneiders.space
www.singinglessonsbath.com
sohozems.com
app.streaming.com.co
suiko.online
auth.supersonicosanonimos.com
www.takefumiapp.com
templana.com
www.thdev.me
ebay.thewhizcells.com
thomaselizabeth.com
admin.todooly.com
www.turbinywodne.pl
tytpodcast.com
mail.etests.unifytech.com.au
portal.unitdynamic.com
valeofsouls.com
homes.vizure.net
waqasahmad.de
www.wispgarrett.com
petsalon.yassun.dev
Other domains in certificate