SSL Certificate Analysis for my.keepvalid.net - Security Grade & TLS Configuration

Open Cached · just now

77/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Google Trust

Certificate Information

Subject

CN=www.aarongallo.com

Issuer

C=US, O=Google Trust Services, CN=WR3

Valid From

May 04, 2026

Valid Until

August 02, 2026 89 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

58:90:B8:31:44:19:4E:F0:D6:1D:82:1A:3C:20:94:4F:F2:D6:85:A4:24:5C:18:91:9D:2D:68:7B:D4:7A:48:74

Alternative Names

100 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31556926

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains

my.keepvalid.net

Other domains in certificate

100-pics.com

auth.9xpractice.com

www.aarongallo.com

amazeandwonder.com www.amazeandwonder.com

appleben.de

www.arthamfarms.com

artprostirlis.in.ua

liz-monitor.augustoamaral.com

balitournyoman.com

barvicaflow.com

belezafresca.com

bhairaviglobalventures.com

bhushanmalpure.com

www.bigspear.com

buddingsmiles.com

cdosolar.com

checkmyoffset.com.au

www.chef-it-up.com

cbm.cloudbasha.com

codigoflow.com www.codigoflow.com

codyandcatherine.com

davinchi.dev

staging.delixya.com

devbyhamza.space

www.dive.bio

game.emilyligu.com

enyihotel.com

estoniak.co

etkinlik-alperbicen.com

staging.evridayapp.com

excelexercises.com

fidelidadesotreq.com.br

notes-test1.fieldmargin.com

flowkaching.com

app.flutterflow.io

gamcheatsheet.com

globalafrosound.com www.globalafrosound.com

golfclubcalc.com

guestin.net

gurayarenovations.com

hhtechhub.com

www.hidayah3dquran.in

form.hnz-cpa.com

iidb2b.cl

www.imaginetask.com

www.studio.invanti.co

jdablabs.com

jrcdigitallabs.com

www.junqu.ca

karthikaholidays.com

kilvekazan.com

kindkart.cloud

leashtolegacy.com

logistechs.africa

lotifly.com

baddies.madithouse.com

magnetatools.com

www.mgcreations.store

netmaashesapla.com

onederful.space

admin.pakistanbooking.com

pinstal.com.pl

www.plankyn.com

posgryd.com

www.prabhujihk.com

profisa-kanalizacije.com

puzzlepercek.hu

app.qtshippingexpress.com

www.quickgrow.com

rankforsearch.com

realtechmedicoes.com.br

www.rideyourdemons.com

rutadirecta.com

www.sabhalog.com

www.saintleodegree.com

serdalma.pt

app.servicecraze.com

sesgweg.com

shell-io.cloud

meurobo.shopisa.com.br

shopshielder.com

hellogm-auth0.snnanalytics.com

www.sol-airenvironmentalservices.com

flyindicosafety.sonarcompliance.com

stackpilot.pl

app.teloshealthsystems.com

thabo-and-michelle.co.za

thanhdat.tinhocnangcao.com

trainr.club

traveei.com.br

trekly.co.in

wagoncarpool.com

webverseapp.com

webworksdigitalagency.com

wintaai.com

zeconz.com.br