Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=setagaya-park.signsense.jp
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 28, 2025
Valid Until
February 26, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
05:DB:85:D6:73:6D:80:21:30:FC:30:5A:5A:57:1E:28:69:1C:A8:6B:EC:92:17:10:12:43:3E:CC:EB:A2:90:94
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
moffitt.io
www.aconcagua.finance
shortlink.adsplus.vn
akylix.com
connect2-dynamic.amrock.com
curvy.app.br
arzhna.net
vishimage.atgnano.com
blog.athlyts.com
cyberradio.aurojitdas.com
bestbrightness.co.za
app.beterbijons.nl
blitztcg.com
bookingbuzzbd.com
www.bouilland.jp
www.bramble-lang.org
brightuni.com
www.bukmona.com
buzzhubs.co.uk
flooding.carptech.org
www.castlecanykescouts.org.uk
www.cleversort.com
www.korom.co.kr
anuflo.co.tz
novamriya.com.ua
consultafatura.com.br
objetiva.cuponclick.com.mx
cutoobeus.com
cyberlinkgt.com
damansah.com
www.detellerloopt.nl
news.dev-insights.com
www.tippspiel.djohs.de
dev.donut-kim.com
dvac.tokyo
www.easyearvent.com
staging.ermbouwportal.nl
www.ev-app.com
qr.fbtech.ca
enterprise.figgoapp.com
www.folktale.jp
francogavioli.it
www.gimbly.io
www.h2mc.jp
halflifeband.com
register.hooray.vn
hsportal.co.uk
htmlhandbook.com
app-staging.humanaiplatform.cloud
dimdays.itu.dk
bread.jetpackpony.ru
www.jurio.jp
omni.keylink.info
kiranafast.com
kotobagames.com
omnidel.ky21c.org
www.littlebro.us
msp.llaa.co
lovepoptestsite.com
mamxanh.org
marioprasetya.com
www.meditieren-bewegen.ch
megamedianetworks.com
minhafila.app
livedrivedashboard.monogrammedia.co.uk
app.myholiday2.com.au
www.nigglobalinvestments.com
www.nuiriankh.com
www.nuiriankh.net
oliviasalon.in
app.otvnazareth.be
papermillmail.com
portal.paynowafrica.com
www.pecosvalleyqualitywelding.com
www.plivka.io
www.prayersend.com
preetham.xyz
psabtraining.com
pulsesoftwareapp.com
pustechnologies.com
quentlabs.com
app.quizzers.club
www.edificiodoparque.rar.pt
renatomontans.com.br
sahasteelfurniture.com
offers.scontinent.com
setagaya-park.signsense.jp
scholarplanets.skillupai.com
calculator.skota.in
api.stestuj.cz
stran.ir
tagblock.me
theshadesandswatches.com
my.thestudios24.co.uk
three33barber.com
dcqa.thrivemetrics.com
tobysimonds.com
link.vetvise.com
visiohabitat.net
addin.web.id
Other domains in certificate