Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=freeplay2048.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 31, 2025
Valid Until
January 29, 2026
68 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E1:3C:C0:36:E8:04:8E:82:65:77:67:D8:CA:73:B2:19:5B:D5:3C:4A:2F:AE:2D:BB:C7:13:03:22:98:E8:C0:F4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
Forward Secrecy
Supported
(Modern clients use PFS)
Warnings
- • TLS 1.3 is not supported (recommended)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
penguni.no
11521705.peerly.app
forreportweb.5dtesting.com
reindustrialisation.absolute-event.com
businessriver.accountancyawards.ie
student.ajarnadam.tv
letsquiz.alexandermasud.com
ambienteysostenibilidad.org
todoit.ananki.no
get.appgameon.com
asiadebut.group
www.autoroost.farm
autumndash.com
www.bobcoin.cash
bonjourboisco.fr
checkout.centrosaliados.com
chatora.cafe
www.cleandirty.bg
mhv-stage.cmedhealth.com
vayumotors.co.in
codefolio.online
converge.is
danielmuseles.com
www.duckmotors.fi
dutour-avocat.fr
www.ersin.ca
www.evenpark.com
examcountdownapp.com
eyedocassociates.com
www.finspro.fi
app.fithub.com.br
vip.flaner.com
claims.foodstarter.io
backoffice.francepneusselection.com
freeplay2048.com
guardianmatch.com.au
guillermobosca.com
castingfair.hahmshout.com
headwindanalytics.com
hxvaccine.io
www.iceberry.se
www.incugamecon.media
andrii-viktoriia.invito.link
www.iragazzi.com.au
nicetodayweather.is-a.dev
japanintro.com
journal-freiburg.de
www.juiceme.it
app.just2play.gg
auth.develop.purchasing.leaner.jp
leanove.com
catch-me.loiddy.dev
auth.lomex.io
privacy.lorenzbaum.de
www.lupiconstruction.com
studio.mafynetti.fi
www.merliniumaiot.com
www.mettifogo.eu
dvdshop.namespaceahr.eu
newglamourhairfixing.com
nvgenai.com
paperml.ai
www.penzionvrchlabi.cz
www.phononics.org
pro.pozer.com
www.publicdomaincinema.net
app.staging.quiltt.com
quizlist.xyz
race-photo.co.za
www.raecom.fi
reflectly.app
reingenio.com.ar
sanchezdiego.com
sarditable.it
scoreyourgoals.org
www.seashell.live
selintasarim.com
coonatra.sismoit.com
www.skillikz.in
soulbits.games
sozcuk.xyz
www.spacetrace.app
sreejaenterprises.com
www.telltaleapp.net
www.theculicon.com
dev.alder-hey.thetraumaapp.com
dev.nhs-scotland.thetraumaapp.com
thinksview.com
book.thursday.link
twentyseconds.app
ulearn.study
demo.insights.umanni.com
dashboard.usehighfive.com
www.valorem.ing
velope.tv
link3.vocepede.online
wardactionlist.com
wassim.dev
reconheca.youdeserve.today
zakatfitra.info
Other domains in certificate