Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=s.kli.ovh
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 21, 2025
Valid Until
February 19, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
95:43:75:57:80:60:82:D8:5A:01:15:8E:D2:52:6C:C5:81:86:5C:1A:DE:1B:84:0F:8F:CB:E5:A7:AB:0F:F9:21
Alternative Names
Security Configuration
TLS Protocols
TLS 1.3
Forward Secrecy
Limited
(Check cipher configuration)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
nikita-enterprises.com
openedx.42cc.co
50sub4.com
aife.io
anoopmohan.website
app.azadsandesh.com
manchester-rider-web.basis-development.bike
app.batchmates-app.com
www.becomepcbpro.com
bipinsasi.com
www.birdbirdtap.com
www.blank-canvas-beauty.com
beta.blkcure.com
authentication.bluhome.ca
calendar.studio
carbeneventurestudio.com
www.casaweb2test.org
ceifood.ceisystems.it
la-cazuela-sannomiya-mint.cfs-japan.com
business-staging.chatmyorder.com
coachsandeepsingh.com
research.commorkhor.com
csreddyandco.com
www.curiosounds.com
davidjoke.com
dedolphtechnologies.com
delivertu.com
doubleflap.com
elow.dylim.dev
ekhtebaraty.com
www.elizaryan.com
www.cat83.encodingstars.com
etamidlands.co.uk
www.firstchoicemarket.com
link.gpdrtmaintenance.co.za
cooking.handbook.gr
horizonteknoloji.com
www.idososimedai.com
network.iect.at
frankkb.impactwrap.com
app.dev2.inreach.io
integrityav.com
www.joeradman.com
kachkach.com
s.kli.ovh
www.kllsoft.com
dashboard.laivon.com
www.lumexiatech.com
mahitechllc.com
www.mainbird-software.com
majesticdomestic.co.za
makaylaclausen.com
marusho-kanda.co.jp
www.mlsconfidence.com
piq.mpaqt.io
mypersonalcloset.fr
myworship.co.za
nathanhigh.com
pic-tipwincom.mentor-stage.neccton.com
nerissasnest.co.uk
www.neuvideo.io
okdrivemusic.com
links.oliwheatley.com
landing-template.onedollarwebsite.co.nz
overuwbuurt.nl
test.payearned.com
daily-admin-qc.phongvu.vn
pocketstylist.ai
www.pocketstylist.ai
productbases.site
proudd.es
purpledungeon.com
quqo.co
app.rafaelgabriel.com.br
rajansharmamohadi.com
www.redeemgive.com
www.reliancelogistics.co.uk
robindeneef.com
rushmada.com
www.safemeai.com
scortexlabs.com
remote.secretcityadventures.com
www.shareblad.com
shemesh.info
smartfinance360.com
sogeserv.fr
www.stratascientific.com
staging.superapp.promo
taskily.app
maxim.titovich.me
openhouse.udem.edu
ps.unect.com.br
yc.useassured.com
v.zip
www.valeriocomo.com
vnyreddy.com
voztraveller.com
www.vtes-online.net
wtama.in
zytuny.com
Other domains in certificate