Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.rosesam.pw
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 07, 2025
Valid Until
March 07, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9A:A6:61:8A:6F:78:86:F9:20:90:6A:5E:2C:82:8A:57:19:DC:F5:62:B2:40:27:DE:C8:66:10:47:0C:CA:0D:53
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
natalielanglois.com
abeinstitute.com
abitztech.com
rogan-labelers.aimmo.ai
amordecoracoes.com.br
apme.io
cao-vvt.appdashboard.nl
ashiatohr.com
www.assessoriadomovimento.com.br
api-users.atyabtabkha.com
www.autoescuelaclickandrive.com
beta.azzle.com
beta.dashboard.azzle.com
t1.billexpense.com
www.cagwholesale.co.uk
www.cdmonkey.uk
checkyourprivilege.today
login.chuzeat.app
www.clarioncamps.com
www.flynsmile.co.il
doweb.co.in
surajjha.com.np
app.comunidad-vecinos.com
app.crickingdom.com
crypto-4-charity.com
www.d10x.co
www.dalejonesplanning.com
deeplink.fitnessroom.delcom.nl
destinyhomes.in
dev-optima.com
dev.admin.digitaltreasury.fund
doanet.xyz
www.doanet.xyz
www.dynamicsolutionodisha.com
www.edavot.mx
providers.enhearten.io
enrolledhealth.com
www.evernest.ch
f.fan2play.com
portal.festil.jp
testapp.fliebencapital.com
demo-link.flitter.fr
app.fortnite-companion.com
foyoso.com
tinker.dev.fxr-insights.com
dashboard.getscratch.com
www.giulia.net
app.globalfleetsolutions.co.za
test-me-origin.gohenry.com
gotraxs.com
harvardxr25.com
www.hossfeld-weber.de
hover.vote
firebase.huyutsuki.com
hyperdev.co.za
nguyenhuymanh.id.vn
phanminhvuong.id.vn
idankimel.org
staging.ifixitapps.co.uk
www.innovationlabs.uk
januskopf.com
jlsventures.com
kawakib.net
kumarvibho.com
lappka.pl
www.leovick.com
lht.io
malitht.com
mapnom.com
mariasdominguez.com
matrixprog.com
milliondollarjingle.com
namenciscapital.com
www.oaktreechildcare.co.nz
earth1.omniscape.com
www.planz-coffee.com
mission-control.pwapilipinas.org
at.radioplayer.app
www.rastreadorguardian.app
re-furnish.co.uk
evento.reinaldoalguz.com.br
www.web.rentprog.ru
www.rosesam.pw
shannonleahwatson.co.uk
stanholmes.com
tadhg.app
tapbox.io
tenx.live
tept.in
texasxp.com.br
plavicon.theappmaster.com
tyneside.tech
internal.ultrapremiumdirect.tech
www.unimats.ng
sales.dashboard.villageco.io
vrmmo.cafe
www.vyugamsolutions.com
share.widgetkid.app
alfabetizacion.wumbox.com
xttream.com
Other domains in certificate