Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=project-base.project-g.co.jp
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 01, 2025
Valid Until
January 30, 2026
73 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CE:54:03:4B:D0:E7:F1:2F:72:A1:9B:66:27:7B:96:5D:95:91:DD:2D:00:83:4A:E5:35:1E:D7:92:F3:ED:38:11
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=63072000
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
onvo-tech.com
10mado.co.jp
sync.agamworks.com
www.aiduplay.com
www.ainovative.com
www.aldersbrookpta.org
alexinsurancecrm.com
s.ambience.ru
andreaskurz.info
openpgpkey.anze.dev
web.appaclub.in
staging.aptimithra.com
perry.archilabs.ai
usdt.atrisha.com
triadmobile.attendika.com
aussievpn.com.au
hrm.automattor.com
aztecmemory.com
ben-mayer.com
bestbillsplitter.com
bigfamily.com.br
blankr.fun
bloominggreenfield.com
blurbee.io
cabotagestudien.com
cacki-and-kemal.com
cgll.com.pe
maps.cissai.com
dev-sysadmin.colavo-webapp.com
checkout.couchbucks.com
www.dayatwork.info
www.devexpweb.com
discovering-astronomy.eu
www.drewszurko.com
boldlyforge.easysignage.app
emilie-pfister-psychologue.fr
fadinghours.com
flaxboll.io
fossdesk.tech
www.gregor-potthast.com
halolegion.in
sapta.hourday.io
auth.hovi.id
www.ileti-turkiye.com
www.inventioncloudperu.com
j9autocar.com
jekiapp.dev
kellyfarmtech.com
kocha.pro
familie.koenenenco.nl
tokban.app.konversi.id
www.kpsolutionsindia.com
www.kxp.consulting
www.lackierer.app
f.limscare.com
linkrwave.io
www.littledrops.net
www.malabartyping.com
email.mistro.io
beta.monet.world
msexceltraining.ie
www.mudanzasonline.net
www.nam-nguyen.com
nandarocha.com.br
nataverse.org
multistore-don-taco.nextorder.co.uk
staging.maintenance.nival.me
app.onestopbizfiling.com
paytip.chat
console.pillowcast.app
ziga.povhe.si
project-base.project-g.co.jp
deeplink.ragecom.com
rcsldh.org
lightx.recursyve.dev
www.redratel.com
remixit.io
reportswift.com.au
rethinktravel.org
app.satcron.com
auth.serenefire.com
www.shikoinu.com
stage.app.smokeless.world
www.somosunogo.com
launchpad.soundac.io
www.soundofschwarzkopf.com
www.speakermedic.com
help.spheraus.com
spikegames.co
swamisolar.com
otc.swaparoo.app
www.tahaomen.es
www.techiwant.uk
auth.trackingacademy.com
tripbuddyaiapp.com
true-visitor.com
txlitho.com
www.vlkn.io
weavertalk.com
websolar.cloud
Other domains in certificate