Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=navitasenerji.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8D:CF:1B:C6:8C:EE:1C:D1:C9:20:BF:AD:9F:36:EA:E6:C2:01:2A:3C:69:06:56:B6:05:AC:5D:98:5A:DD:C2:ED
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
navitasenerji.com
administrationmp.com
actividadescostos.almeraim.com
aminhassani.com
aquetha.com
mentorship.ar-chaos.com
austincornell.info
baejunman.com
betsantaanita.com
bihani.app
link.staging.cardeo.com
portal.cargo-beacon.com
chadbuck.ca
beta-links.chalkboard.io
www.chromaweb.app
certificates.tracktrailltd.co.ke
receipt.colavo.kr
link.chictrip.com.tw
coppercrane.com.au
us.creatoradar.com
daisuzz.dev
www.digitalchiefs.org
www.eastrotary.org
www.efexfinance.com.br
www.eugen-i.dev
fergieweb.com
matching.api.fielder.one
hosonno.fraffrog.it
freedsound.com
gtms-entry.fsv-aptor.com
app.gensokyoradio.net
smb-app.gysite.in
dontget.hacked.com
www.hapticsignals.com
bookings.heydaymedical.com.au
www.hrocberlin.org
www.hyec.me
javiergonzalezrocha.com
jjhop.com
jvrmed.com
kampaamoliikemama.fi
keane-oun.website
kenforddigitalimages.com
lackierer.app
leesistersukulele.com
trial.lfv.jp
ichu.liberent.net
warehouse.lifo.ai
maceioparaeventos.com.br
madisonmountainreclaimed.com
www.makasete.co.jp
www.mamabellacafe.com
member.mason-fifth.com
www.mattp.com.au
www.mavatrix.com
www.penguinfury.mbitgames.cloud
measures.me
merchresize.com
www.merliniumiot.com
www.minecraftquiz.com
minervaforums.in
painel.mobilizei.com.br
order.moviebeam.com
m-stg.mozaic.earth
www.myloopinc.com
portal.mypetparlorapp.co.za
pic-sportingindex.mentor.neccton.com
nzctd.co.nz
app.oikoswm.com
karaoke-odai.oka-ryunoske.work
auth.onepiece-cardgame.dev
original.engineering
peroyapparel.com
www.phosmic.com
www.pranavarts.in
www.prayertime.pro
app-stage.pspmetrics.com
ads.rd4x.com
server.sarmad.xyz
saveliev.work
www.savlalaminates.com
seller.shopsogood.live
vip.signutra.in
statix.it
www.stpaulopticians.com
uga.studentopportunitycenter.com
studiolanmd.com
suhasbacchu.com
votations.tdg.ch
techasialab.com
kayan.testing.ly
www.thedreamlife260.org
thelin.app
www.therealtypa.co.za
www.tillhub.co.uk
www.txyshannon.com
restoran-tema-2.ultof.com
admin.v-waiter.com
victorrocha.dev
www.writer.solutions
Other domains in certificate