Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=live.jawsplay.tv
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 13, 2025
Valid Until
January 12, 2026
48 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D1:90:33:48:7F:F4:E6:07:E6:05:52:D4:63:23:C6:BC:7A:D9:69:16:7E:33:CE:54:A9:C6:F8:32:25:22:6E:7F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
pramaproject.com
www.abintra.com.mx
affirme.app
blog.afgriot.com
login.ahamake.com
app.airsset.com
www.ajoara.com
www.albert-sare.com
covid-19-panel.algistix.com
allianceautorepairs.com
www.amar-lynnconsultants.com
appapt.com
ia.appvisionaire.com
archipelcontent.com
aromas.asap2go.com
fb.atheistengineer.com
baranozer.com
bernardobraga.com
www.beyondcity.me
blockblaster.app
freelancer.bou.co
tosashimizu.bus20.com
caribrunch.com
choochurnhoe.my
points.clementstheatre.com
app.cubatel.com
destamutisya.com
dww.divshot.com
www.dotplusdot.com
drillmaps.com
eggtartsoft.com
equityseen.com
10et.esad.pt
www.ev-nets.com
exploreshackle.dev
fasttackdroptaxi.com
www.filipe.at
www.flowgram.com
futbalowski.com
futuresoccerplayer.com
3457-k6.gamefp.dev
www.gandanapp.com
login.gboetrack.com
app.gfalm.com
survey.glucosezone.com
dev.guiloop.com
patient.healthdocs.co.za
courses.helloenglish.com
www.hungrii.com
www.igorplaksiy.com
staging.intelli-hub.com
landing.ipiring.com
dashboard.express.ironmountain.com
advisor-dashboard-stage-1.ischoolconnect.com
isitaweek.com
live.jawsplay.tv
jeanaoldham.com
www.kabaka.com.br
jiri.karpisek.family
kataroek.dev
manitaselpana.es
photos.mariage-charlotte-et-thomas.com
wine.mark-dekker.com
www.max-nft.com
merencia.com
merliniumaiot.com
www.nathancase.com
auth.ngn.au
nobhillca.com
www.nuitomo.app
staging.oee.com
www.oliveiraimoveisrs.com.br
evtrails.ondagoapp.com
app.orderandeatnow.com.au
orkunsaglam.dev
pkrcurrency.com
email-signature.powerfront.com
www.proflead.dev
propertle.com
open.publibike.ch
rainbowdesignhouse.com
www.redline-x.com
www.ritzshrivastav.com
rutasdechiloe.cl
seandriscoll.dev
images.secrets.ninja
www.securedevhq.com
invite.staffway.com.br
teamper4mance-diggi.com
www.tgfionline.com.br
insert.api4.thorbooking.com
www.tierla.com
www.todaygate-tech.com
turkishpv.com
agenda.txapita.com
tylerdrake.com
painel.viapj.com.br
w-i.by
awards.viinikanlahti.weup.city
zolushkallc.com
Other domains in certificate