Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.obaspace.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 08, 2025
Valid Until
January 06, 2026
58 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7A:4C:5F:EC:BF:BD:B6:7A:BD:9F:37:F6:84:17:8F:49:93:3E:92:B8:8D:F7:45:99:30:AC:89:81:90:C4:0F:E9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
peoplehousing.com
firebase.1independent.app
staging.monitor.api.coverage.28east.co.za
auth.app.addingwell.dev
www.aireader.co
photos.allsports.tw
admin.alsys.dev
live.angelsandairwaves.com
www.chem.annamyznikova.ru
app.appspotshot.com
quantaiser.audeering.com
www.autov.be
basslessideas.com
bellinmuseum.art
bexcare.club
sliding-nav.carlosagosto.com
www.civicbase.io
api.claimsgate.co.uk
www.app.qma.co.il
www.rds.com.hk
cos4duns.eu
www.cowfishgames.com
admin.cpl.cloud
cryptorunup.com
crytiq.co
geospatial-i.dev-ltl-xpo.com
dowhite.co
dragonmountainfamily.com
www.drateresagomes.com
dugward.com
epicmusicquiz.com
ericshenk.com
www.fagerlund.com
www.falkens.at
test-webapp.farmgatetest.com.au
onboarding-dev.felixpago.com
fh.ax
a0gd.foodle.su
funcreaenaccion.com
dashboard.getayna.com
go.806.tw
gowthami-weds-vasanth-for.life
gundo.life
huayan.academy
portfolio.hugebelieve.in
invite.human-detector.com
bravesmlb.inseat.menu
my.iplugn.com
google.auth.irl.com
www.japy.jp
kapalasainvestments.com
qr.kartejais.lv
www.kcalendar.ch
www.knowharrison.com
link.kol.store
dev-cherry-app.kpos.store
gestor-admin.llamafood.com
www.lnjnt.com
iadmin.lucro.com.co
www.matheusrabelo.com
menyja.co
darten.apps.mindtraffic.de
people-ft-tech-radar.internal.ml6.eu
dashboard.modernshare.com
moderacao.mundogif.com.br
mylexisplus.com
www.neighborbaked.com
www.netrapradhan.com
www.obaspace.com
oralsurgeon.ai
www.orchidroot.com
share.orijin.io
oxtxo.com
pagosescuinapa.com.mx
piotrbanachowicz.art
lpny-0411.porcupine.live
proadplus.live
psicamilacortez.com
app.pyxo.co
staging.r-portal.ca
ww.rointeconnect.com
www.ruthlessbabes.ca
kanji.samcor.in
samcummings.dev
sevendaze.sg
www.shauncast.com
smartodr.in
studentroom.top
www.sushiwork.com
tour.fs.tammeir.com
www.tapworx.com
thetherapyclinic.co.za
www.tremantis.com
api.tweetbutler.com
uriafood.com
usmanbashir.com
app.vitalera.io
main-prod.viteusa.com
weirddogav.com
water-restrictions-qa.yardian.com
Other domains in certificate