Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=purposeunpluggedlifecoaching.co.za
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 26, 2025
Valid Until
January 24, 2026
68 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AE:6F:DB:A0:F6:C7:E8:91:DB:C6:80:E8:99:6E:3B:5E:70:48:28:1B:E3:F5:F2:6C:14:D8:3A:E2:F4:1D:72:42
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
nijjar.me
affiliates.acuteplus.app
www.adshi5.com
mta-sts.aigen.jp
auth-prod.alphagrid.ai
www.alvira.se
go.ambrook.ag
kanban.arthurbaron.fr
www.authentication-singapore.com
axieacademytracker.com
baghera.it
prizecloset.brainsprays.com
callbuddy.ch
rqam-cbd.carnotinnovations.com
www.ceyaexport.com
www.chamaodelivery.com
www.clintonrivertraffic.com
share.radioapp.co.in
mmk6.businesspackage.co.kr
twitdeck.lynlab.co.kr
www.codesur-solutions.com.ar
yunlin.onestudy.oneclass.com.tw
vatlieuhome.com.vn
magic.comazon.dev
www.creativeseed.com
www.dianabraganca.com
dilhocam.com
api.dkdagency.com
www.dotaexp.com
eclipselegalmarketing.com
ourworkplace.equiem.mobi
www.equipogiochi.com
rtl.femoli.com
join.flapcards.com
www.cc.frontfacer.com
firebase.gamerarena.com
goworldtour.in
greifensee-boot.ch
haendel.com.br
iaccept.in
dev.ilikacloud.in
rajyotsava.ilikacloud.in
sydney.imacoco.world
dev.admin.infusioncenter.org
dev-stage.jcuapp.com
joshreed.dev
juneandkhin-wedding.com
www.kalebmurphy.com
karwasara.com
kp.345.fi
ksslc.com
by.lajoscseppento.dev
lalatoys.dk
link.license.land
www.locaderia.com.br
www.locltour.com.au
tiruvarur.makemytriptaxi.com
share-dev.moaja.id
movie.informacion.my.id
mypuzzlelibrary.com
mytradinglab.live
contact.nazarovgeo.com
www.nemesislabs.com
hc.neumobot.com
www.novimgames.com
ordu.com.au
paillardes.app
periscolaire-chenoise-cucharmoy.fr
plannedadventurepro.com
www.polysquat.com
ponistraponi.ru
porcaoburger.com.br
www.projection-lab.com
purposeunpluggedlifecoaching.co.za
www.pusyapi.com
devondoku.ricrio.jp
riverrockmedical.com
www.riverrockmedical.com
link.servicesmeubles.com
bo.stg.shippio.jp
skydartexpress.com
smoothtravelling.com
www.solutionselectrical.ca
enedis.speakylink.com
spindoctortennis.com
streetartmap.be
training.structube.com
mta-sts.tabl.page
pleppy.tarpo-hiraoka.com
www.teleflextraineesettlement.com
www.thetherapyclinic.co.za
theupperbasement.com
www.thienky.com
tunacancup.com
u-goservices.com
viadellazzurrabeb.it
walmartnhj.com
www.webppointment.com
www.zizigi.info
zophiria.com
Other domains in certificate