Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=barackdafarialima.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 21, 2025
Valid Until
March 21, 2026
72 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5D:BA:53:2C:CE:ED:31:4C:18:CF:B6:BD:13:8D:D5:92:BF:23:95:B1:1F:3E:A2:A4:49:B5:98:DA:6D:FE:B6:71
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
Wildcard CAs
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • You have authorized 4 CAs - consider limiting to only the CAs you actively use
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
Subject Alternative Names
100 domains
mycodecafe.com
share.passkeys.2stable.com
open.3dlink.cc
access-demo.5loyalty.com
abhilashpm.com
www.alvarolmedo.com
astrology.apiverve.com
emailvalidation.apiverve.com
scraping.apiverve.com
appsesoria.com
payments.awardcrafter.com
azume.app
barackdafarialima.com
berber.im
help.beryl.cc
shop-eu.beryl.cc
staging-link.beryl.cc
bop-tech.com
phonepad-v2-qa.bop-tech.com
www.bop-tech.com
ssr.buybuy.app
blog.cartodb.com
cartodb.com
auth.click2bim.com
attendence.cloudxdb.co.in
codeworld.blog
data-intel.dev
davidsalazargarcia.com
awesome.dentsuachtung.com
rootrix.dooboolab.com
dorachan.com
app.dupli.io
kiosk.dupli.io
cafe.evtit.com
cdn.evtit.com
exanor.com
enamecard.fabatechnology.com
fazendaestreladovale.com
hub-test.fctech.xyz
gaiafilmproduction.com
zoo.games235.com
www.goosekey.com
grabadogpm.com
qr-code.hm.com
www.holatengosop.com
interviewserv.com
www.interviewserv.com
www.jurapp.com.co
book.kalpas.in
www.kulan.business
lddiary.com
lewoniec.com
homolog.linkface.com.br
magnaebasta.app
magnetisme-energie-positive.fr
malabarmaskin.com
maxellm.com
phpcodingchallenge2021.mindgeek.com
www.mirage-estilistes.com
www.mnaranicinnamonspa.com
multiversoapp.com
business.mygig.com.au
worker.mygig.com.au
api.nestuge.com
oliviafrank.co
orbionis.com
www.overweb.com.co
paynho.com
www.petway.com.ar
picturescope.art
provoketraders.com
remateseninmuebles.com
app.ressconsultoria.com.br
datadetective.ressconsultoria.com.br
evolufy.sanchezcarlosjr.com
images.anandadhara.sarkar.dev
satuten.com
selectfoodtrucks.com
www.sueinvestments.com
msoffice.synergy.page
www.teku-lab.com
static.thichcay.com
thomasrenon.com
tomheg.com
editor.trakto.studio
backstage-staging.trustvox.com.br
ttechnosys.com
ultraflame.com.co
vialca.com.co
agent-dev.rtm.vnlp.ai
livechat-fe.vnlp.ai
livechat.vnlp.ai
voxianews.com
xn--jumeaunumrique-jkb.fr
xn--latournedesproducteurs-h8b.com
xn--sfj.cc
xn--smjobb-jua.app
xn--velogrtner-u5a.ch
my.yeetcode.app
slack-clone.yingchunwang.me
Other domains in certificate