DNS Gurus
Open Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=daanrutten.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 27, 2025
Valid Until
February 25, 2026 88 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FD:C1:E4:3F:D9:D5:52:69:71:0F:2C:4D:F6:3A:34:4B:CE:42:59:91:78:E1:29:A7:9E:40:50:E1:BF:60:8D:BB
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
margariinteriorismo.com

Other domains in certificate

mybobs.3dcloud.io
www.4track.mx
admin.360.audion.fm
adrien-clavaguera.fr
www.akabuti.com
aloisiodecoracoes.com.br
americanbandinstrumentrecycling.com
link.andme.org
apostoladodelapreciosisimasangre.com.ar
converter.apphive.io
experience.beautifulcode.co
bitcoin-pt.com
eservis.caracal-machines.cz
www.chatfinder.app
www.chowdashi.com
chrisogdenfilms.com
lens-by-example.chrispenner.ca
wfmannotation.clearquote.io
www.ligled.com.my
sga-admin.connectblue.com.br
www.covaliu.dev
daanrutten.com
deepsense.app
depfly.com
tam.eddress.co
demo.equix.app
www.dashboard.etc-cat.com
leapfire.exelor.com
auth.fanspo.com
ggx01006-002.gadabout.games
app.get21stnight.com
url.getemit.com
dev.globalfleetsolutions.co.za
gottatrip.com
grandmamarilynn.com
grenutvikling.no
gundu.id
haikuthunder.com
www.igruyere.ch
app.inbodyhome.tw
indiakka.com
admin.iskconsolapur.org
isxo.dev
weddinginvitation.itsyourdayofficial.com
xujhs-famday.jameventsph.com
janebrinquedoseutilidades.com.br
www.kentkad.im
lend.test2.kiki.finance
kumaravelumapathy.com
order.la-cherie.in
labson5th.com
www.laquintacumbres.com
contracts.m.works
3d.mabiloft.com
www.marsolier-electricite-fougeres.fr
test3.matchtal.com
www.medule.com
app.memento.ge
michaelwebcork.com
miku.fashion
www.milestores.com
duovoice.mmcallsapp.com
smartchat-stage.mysmarthotel.co
fireworks.nabehide.com
test.wsd.netbulls.io
nse-edc.in
dev.nuuphealth.com
www.o-o.sh
pimpmyhouse.be
etcheby.pinkbeton.com
www.plus-class.jp
hourskeeper.polycents.com
pernambucanas.presen.ca
signin.purple.fit
auth.qistudy.com
app.regnspotter.dk
reyemb.io
docs.rookout.com
sinan-club.com
birthcertificate.sirancheevi.com
lanouvelleboutiquedevitrolles-transdev.sky-boy.com
www.spartanjs.org
steelemart.in
mjhealthtesting.studiossolution.com
www.thehotelsmanager.com
www.theorigami.io
tomas.do
tashcoleman.tombewley.com
www.torvgarden-tannklinikk.no
document-submission-web-page.review2.trustdock.io
hook.qa.videolink.app
wedoedu.uz
www.whist-score.dk
dashboard.woodcountyoh.app
xenthropic.com
www.yalla-content.com
amaira.yanalcom.com
www.yentrox.com
j.yookos.com