Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=authfb.urbania.cl
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 01, 2025
Valid Until
January 30, 2026
72 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
39:1D:D1:B4:54:04:EF:4A:B4:7B:A0:45:1D:39:92:E6:FA:FC:A0:5C:8F:FE:BA:54:21:02:CF:6B:A8:5A:75:F4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
palmat.oz-tms.com
agamlabs.ai
appinaday.com
dashboard.arbventures.in
astralresonance.com
dev.astralresonance.com
www.aurant.com.ar
www.betamusicnight.nl
www.biglandprints.com
messages.bilys.cc
bitcircle.io
bleckshiba.com
cv.bryanscduran.dev
www.btn.sg
app.buzzapp.is
wm.chadstever.dev
cityevents.in
www.clickautomobili.it
codeplatform.dev
collabmind.in
cunaku.de
www.daniel-choi.ca
admin-portal.staging.trinity.delcom.nl
consumer-frontend.staging.trinity.delcom.nl
angelinacaron.drtis.com.br
e-fridge.de
www.easypinger.com
www.edupoly.com
ericswilcox.com
fitandhitlife.com
registration.geeksloft.com
www.globallinkpharmacy.com
honestwork.io
portfolio.hpdjoy.tech
icdconnect.com
hustcvstudent20215018.id.vn
independentbuildinganddesign.com
bds-api-perf.itxi.aero
www.joshgearhart.com
kadosh.org
kamioncloud.com
www.kamioncloud.com
kidolingo.com
viluppuram.kishoredroptaxi.com
app.klivvr.com
www.konato.com
sepf1.ksug.ai
demo.leasera.com
cv.linkwodin.com
courier.livingskiescannabis.ca
lotuskpm.com
builds.mags.gg
pedidos.meuelevestage.com
yahdinaahsya.my.id
app.myoquality.com
m.nandos.co.uk
projects-web.nexrestech.com
nodrama.ai
www.nordicloop.com
www.nursingexampro.com
nursingofficertestbank.com
ogrodnik-bochnia.pl
oktax.pl
ontozes.hu
www.owqlo.com
brands.parallelcap.in
dev.planikun.com
prod-aws.admin.playbook.vc
puttlogic.com
rapid-studio.site
www.rectangle.news
www.renoster.co
ristorantenapoli.nl
safaritrucklines.com
shriramelectricals.com
sk8brd.in
test.portal.skypay.ph
smcbride.dev
snehacrackers.in
webadmin.snehacrackers.in
softspace.dev
www.songeya.com
www.suaversaostore.com.br
suwanneecouture.com
sveton.pro
talousennusteet.fi
apps.taquiuddinnadwi.com
tcg-mb.com
my-01.staging.ternary.app
thepranalab.com
topdogtrainingacademy.ca
torontozenmusic.com
uniconfess.com
authfb.urbania.cl
a1.urbanride.com
www.veenaholiday.com
www.winarialand.com
admin.winology.app
manager.woob.com
zverze.in
Other domains in certificate