Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=auth-staging.alphagrid.ai
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 19, 2025
Valid Until
January 18, 2026
57 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3C:21:7A:D3:E1:52:DF:88:B4:B9:8A:CC:F2:F5:BB:55:8B:8B:90:91:3C:2A:72:3A:91:0D:2E:F8:8A:26:F2:66
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
nutriacademy.net.br
3tree.io
efficienciesapps.abegs.org
aeronaut.io
agendadelrunner.com
scheduleboss.aidanlee.dev
my.aisportswatch.com
auth-staging.alphagrid.ai
americanbaccalaureate.org
amigosprints.com
dev.araucofoodie.cl
www.assist-ia.com
astrodiyak.com
www.baroneg.com
www.beculsac.com
bhl.one
research.billullonex.com
www.bleckshiba.com
xapp.bosenet.com
www.bossbanmotor.com
icycrunch.brancbyuv.in
bridal-hoken.jp
www.charge.co
paper.vcs.chintseng.com
clagamglobal.com
www.ladanski.com.ng
arjunshrestha.com.np
admin.kiismet.com.sg
ten.com.ua
www.cookrecipefood.com
activate.covidfly.co.uk
dapplink.in
www.darcylawrence.ca
www.revenda.databackup.com.br
www.degime.com
dentalmedizin-aktuell.de
lnh-ops-i.dev-ltl-xpo.com
portal.staging.dspdesign.pro
sewing.edlb.dev
fpc.electriphi.io
ssdempo.equaiton.com
www.equlaq.com
eucurto.net
finnkassaoy.fi
fulai.world
www.fulai.world
www.highereducationbyhomestudy.in
jackleeconstruction.ca
link-fung-tak-market.jec-digital.com
jeesports.online
jeunes-missionnaires-afrique.org
www.jukeboxapp.com.br
devapp.kambioapp.com.br
krm-cashew.in
mantamana.com
www.mantamana.com
matasmatienzolaw.com
www.mixalo.it
mokhtar.tech
mukilstore.in
mycomics.link
mylastbricks.com
auth.newstapri.com
meownet.nyabyte.dev
vapiano-duesseldorf.web.operate-app.com
app.parceryaimoveis.com.br
pensioenbijglobalknowledge.com
networktest.pitchview.de
priti.piticommerce.com
plantiga.io
prismatics.co
procesoresultado.com
theni.rainbowsdroptaxi.com
rampart.hockey
raphaelromeo.com
www.contratos.remax.cl
hustle.rememberthismarketing.com
www.rgeil.net
sandcasino.io
links.cavalry.scenegroup.co
sharescreener.org
www.snbinnovation.com
sudhirsaha.in
synallagma.gr
talkwithtolk.com
theharispa.jp
www.tobias-kraus.com
demo.ttapps.de
consumos.venetovillage.com
vhalconsulting.com
wainery.com
wapis.cl
webassembly.expert
wecofy.com
www.wijunkremoval.com
willbotscanner.com
witney-wolves.org.uk
xeniaholdings.com
yourdndguide.online
admin.zhrum.com
Other domains in certificate