Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=okayama.linx.live
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 17, 2025
Valid Until
January 15, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6C:42:4D:26:A9:FB:D9:27:CC:DD:0A:6C:3E:74:F8:03:13:16:31:B9:6D:C9:4D:F9:B9:69:70:A6:79:3D:2A:D4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
nolanclark.co
bot.abcd.rest
absoluteheatpro.com
contraelracismo.afroup.com
aipetto.com
www.americanbandinstrumentrecycling.com
blog.ankitkushwaha.site
barbroulette.com
rental.bazelink.io
www.benzenker.me
bistro.ai
boringbutgood.co
www.budgetburndown.app
farmer.bx-earth.com
www.byjoshmiranda.com
profile.cactro.com
www.cdspa.cl
claimback.org
www.climbroad.com
clinicadentalcali.com
www.taanfire.com.tw
www.tovibt.com.ua
curdlegame.com
www.cvvp.com
consumer-frontend.staging.regensburg.delcom.nl
luke.emmacanhelp.com
www.errandite.com
www.ethy.co.uk
www.evont.pt
b2b.favstay.com
filmind.hu
fivebyfive.biz
www.florianbachl.at
upload.fotoatm.com
www.galaxy-tale.net
harryzook.com
haveyouherdgame.com
order.hawaiidesignworks.com
highwaydroptaxi.in
dev.twi.hrappsys.com
i3software.in
alcantara.is-a.dev
jamesnorton.design
jessicaklassen.ca
jesuszuleta.com
www.keisang.news
analytics.kidsstar.tv
kohinoorr.com
dshub.kro.kr
laaricoin.com
laurahayas.com
development.mobile.lifebites.cl
okayama.linx.live
loner-dev.com
luminousworks.nz
incidencias-dev.madema-app.com
matchle.io
app.mcdiamondfinder.com
portal-qa.medcury.health
cip.meraplion.com
www.mitigater.com
modeng.rocks
www.mojo-dating.com
nextintechnologysolutions.in
nicovenegas.com
pavetra.art
www.petaracorp.com
pluralpolitics.com
www.pob.onl
expense.polycents.com
pullgain.com
www.rm3logistics.com
rotadoctor.co.uk
ruansiqiao.com
customer.rxoconnectdemo.rxo.com
suluuat.corp-internal.rxo.com
sahajgaming.com
saudegest.com
sendit-climb.com
dev.skilltech.ph
tools.skywayclassics.com
admin-qa.socialgiver.com
l.stg.clue.spinlow.co
lcpstrivia.sqwadhq.com
stoacademy.com
www.subsreader.com
auth.swivlplatform.com
www.tabeno.me
tangen.dev
my.tessie.com
thepourpro.com
www.thetutorology.com
thimilar.com
linz-testet.triply.ai
tumpify.cloud
we.veolia.es
whats-my-tax.wingcheongyip.com
worldwidegeneration.co
www.youchoose.cc
account.yoursapp.co
Other domains in certificate