Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=tcgmate.co.uk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 11, 2025
Valid Until
February 09, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
83:1E:D4:28:62:CD:B6:9E:D5:B5:3E:6F:C4:58:B6:9F:26:87:C5:EA:CF:20:85:C7:85:BB:F1:CD:96:50:B9:F8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
mcz.chat.ac
zendesk-toggl.42nd.co
www.aboutmeapps.com
amevor.com
arifenergysolutions.com
asociacionveracastillo.org
www.asociacionveracastillo.org
beastfitnessstudio.in
teachers.preschool.bee-happy.club
bevwerk.com
app.bid.sa
bingo-online.app
www.boireasyfiling.com
bonjiartworks.com
bookhappyevents.in
facts.bortronx.com
link.buscaempresas.co
cdpinlan.com
ec.centbids.com
es.centbids.com
www.centbids.com
chatificia.com
viewshare.clinicalofficerssitelive.com
www.welcomeinsurance.com.my
constructdatabase.com
dev.corpexpense.com
couper.app
templates-test.datascope.io
www.dgvantage.com
dishank.dev
does-it-swing.com
downloadyourcourse.com
www.duocraftapps.com
xku5xhzmcsumfdu4.easyapp.co
ecommerce-data-analytics.com
effex.ae
encryptedme.com
endervan.com
existence-klcorp.com
www.festushelaoshatipamba.com
gamaenglishacademy.com
mathsdaddy.grodok.com
groupgrubblr.com
h90-ai-project.com
link.dev.harmo.biz
www.helmora.lk
www.intrinsic-software.co.uk
jackuptondesign.com
www.jenniferkajda.com
support.jorato.com
www.kimsellis.com
kopensystems.com
kruvedinfotech.com
laisbarbaraconsultora.com.br
www.launchbelly.com
bmi-tracker.leonard-z.fr
libria.club
tracking-beta.lifo.ai
liraai.tech
localbox.ai
manatee-academy.com
mavfishoil120.com
mitraboga.id
www.gov.mockexam.online
mrenergy.me
musklchain.com
admin1.myancare.org
navayuca.com
comparacel.net.pe
www.newblack.life
www.nextedgenode.com
static.nexus.xyz
obraly.com
ochrelshop.com
kanyakumari.onewaytaxiwala.com
nilgiris.onewaytaxiwala.com
www.pointprovider.com
pomofly.com
poshweb.pro
prakashgundu.com
admin-dev.realtorsathi.ai
admin.realtorsathi.ai
www.sanchaya.app
dev.saveme.bg
www.signlogistics.in
natal.stargaz.ae
marketing.stembionix.com
admin.talkster.app
tcgmate.co.uk
throatmail.xyz
tomsensu.com
react.try.ee
tsinoytech.com
unbeatableflyer.ca
unreal-dev.com
app.engage.cja-collections.voyagernetz.us
engage.fjujunwsrwgijcjgsjwm.voyagernetz.us
www.web7.md
forum2025.weglobal.ai
translate.withg.ai
Other domains in certificate