Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.pricesegments.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 05, 2025
Valid Until
January 04, 2026
48 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
22:59:73:D3:5B:D8:B3:11:3B:FF:EF:93:D3:FD:33:E5:3F:6B:B4:31:E4:E5:84:E8:4B:28:5C:ED:88:EC:71:AB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
michaelpapes.com
www.alejoavila.com
alex-b.cyou
ragevideo.apptget.com
share.apuestes.com
lamienins-admin.arghyac35.dev
www.aserstein.app
beyond-agentur.com
abanca.bracelit.es
resume.brandongrant.dev
plus.bsnk.dev
camilameotti.com.br
cardrat.es
www.cebbinghaus.com
app.chessenigma.com
chintpatel.com
www.chunrapeepat.com
cci-pays-de-loire.civitimeapp.com
civol.earth
clevercorners.com
bma.deskbooking.app
newspaper.dflores.dev
dreamfrontier.com
throwabird.emallstudio.com
auth.endless.academy
evdev.me
familienberatung-eilbrecht.de
firesearch.io
www.gaston-services.com
hacsbc.org
tst.hasanuzun.de
honzasima.cz
www.hpe.one
order.ibo.app
inspectionreportpro.com
www.janellebrooks.com
m.kaguc.com
scout-staging.karla.ai
landtechnik-kern.de
mindfulnessbell.langhoangal.dev
timely.marquardmedia.hu
mata.rs
shortslimiter.mimxr.com
buddybucks.nb-inc.jp
blog.nbellocam.dev
digital-storytelling.ncldata.dev
www.nikolinaspirkovska.com
blog.noga.dev
www.nojausa.com
download.obiex.com
www.fundabitat.org.ve
osmancoskun.com
paddlingfoundation.org
mightypartyinvite.panoramikgames.com
www.piyushkumar.dev
auth.pomelloapp.com
poplist.popweb.dev
www.pricesegments.com
productgang.de
app.ptscompanies.com
app.readwok.com
cwbackend.rehmall.com
app-qa.rentmindme.com
wedding.rootid.dev
numeroscope.sajilotool.com
www.samjandris.com
www.sarah-and-jack.com
www.science-of-sex.com
daddit.scottbenton.dev
segubitly.com
www.seipex.com
servicepics.com
emolytics.shiftlab.tech
shurikon.com
simpliweather.com
sp0tz.com
drexelphotoscramble.sqwadhq.com
stretchydb.com
secure.superpath.dev
www.support-devs.com
embed.survcart.dev
test.survcart.dev
ticktalkto.com
www.vervaecke.dev
tag.via-at.com
voyagermesh.dev
vydejnachuti.cz
wanview.fr
www.wddg.com
xencomputers.com
music.yangisgood.com
reward.yirunway.com
itc-gift.yugverse.com
staging.yugverse.com
www.zagasocial.com
www.zainbaloch.com
www.zealsight.com
www.zensolutionsllc.com
zdrop.zilicontechnologies.com
app.zp-ls.com
Other domains in certificate