Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.spordifysio.ee
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 16, 2025
Valid Until
January 14, 2026
44 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
52:E2:1F:B8:5F:57:63:51:50:7F:44:03:4E:D2:FA:E0:37:C1:E6:48:13:FD:A3:13:69:78:90:28:FB:5D:FA:F3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
pklog.info
test.acmsscbs.in
www.airasia.design
aivionllc.com
www.allergocentro.com.br
almarisolution.com
accounts.almeraim.com
api.alobutton.com
portal.alpinedx.com
andrewkrippner.com
apex-living.com
ua.appsfy.net
assistantsgpt.fr
app.baddi.link
balm.ai
bandquarters.com
report.livecareusa.bycopilot.com
www.capsulesession.com
captionit.in
ccnets.org
opencall.chiayifilmstudio.com
desigps.co.in
policies.cocart.in
www.ngl.com.pk
apps.createyoursociety.com
darkeinu-library.org
davidgomez.us
www.davidogden.dev
dentconnectdemo.dentdesk.ch
dentlabdemo.dentdesk.ch
doar.fenomenos.org
stk.fpmaorleans.fr
www.geredamotors.pe
www.herdtutor.com
imkind.in
www.integer.cl
admin.iverbs.net
jeevahomestaypoovar.in
tango.jkan.cz
laeta.cloud
cdn.luckykittens.io
www.macrogoogol.com
manishtalreja.in
marinamunch.co.uk
home.metafic.co
aparelhos.meuplanoclaro.com.br
mtv-gifhorn-ski.de
andyskitchenorder.my.id
nevermindtheballads.org
www.neyastudios.com
pizzacala.on-menu.app
www.onestoppdf.com
customer.creative.optimasysdev.com
www.orangebloom.ca
parcelin.co.za
parentstoo.com
www.parkur.group
core.patrol360.dev
app.fairpflegig.paymytable.com
pedrorisquezcalvillo.com
pradella.me
www.projectrpr.com
luciayluis.rcinvita.com
usil4u.rebus.com.co
remsig.com
resource.coop
www.retinedirecte.com
ricardobezerra.site
rocketflag.app
www.roselandcountrycottage.com
connect-ng-warehouse.rxoconnectuat.rxo.com
www.shilass.com
admin.simplyschool.app
www.smallpinefarm.com
www.spordifysio.ee
spvdeepak.com
sunsideguesthouse.com
tirupati.supercabs.in
www.surfeus.com
symbotalk.com
tabsaur.us
tanchiachun.com
www.tannder.com
teamsquare.app
apps.techiecomputers.com
thecodingforce.org
www.themarblefern.com
topblockchaincompanies.co
www.topblockchaincompanies.co
www.triggercalc.com
utahathleticscamps.com
utechpa.com
vansona.info
vaplayer.com
vovent.com
vvipnetwork.com
sistersbeach-orders.waiterpro.com
www.wall-investments.com
wherethehellisglobalwarming.com
wigor-witaminy.pl
Other domains in certificate