Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=weeknumbernow.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 29, 2025
Valid Until
December 28, 2025
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
83:29:81:2E:FE:D0:4F:60:EB:64:3D:DE:3C:50:7C:D2:BF:21:55:E4:2D:79:37:56:B9:E7:0C:68:6D:AB:FC:8B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=15552000; includeSubDomains; preload
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
projectnewm.io
0xts.dev
www.accolibra.com
aduant.com
agrifunction.com
agustipc.dev
s-dev.airtrip.jp
algoltech.com.br
alicorncloud.io
sat.almeraim.com
www.alnitek.com
developer.alt.ai
andrelucio.dev
shell-webapp.applogsoft.net
www.arisecontractors.com
aroa.dev
wallet-transfer-tst.astropay.com
www.asukaur.com
bargybud.com
app.beatbiker.com
thanos.briowireless.com
join.campusshare.de
chalatex.com
www.codedvelocity.com
www.codereis.com
codinspec.com.br
www.cosm.run
app.cosminsavu.ro
www.courses4arab.com
daleleeguide.com
demo.flexcards.darwinz.ai
blog.davidgranado.com
docs.dcupl.com
diablo-tools.com
info.diwima.de
dmitrijrysanow.pro
admin.duckytest.no
customerinvoice.ehryourway.com
ep.kulxtreme.eu.org
admin.ezboxmedia.com
www.ezymoney.in
emissor.farmcont.com.br
fbceclectic.com
flowductive.com
freeforfans.org
get-testing.fresbopixel.com
www.gathara.org
go-tec.cl
www.gogisenyitours.net
gujaratpolysol.com
app.dev.hagakure-gate.net
terms.hyqoo.com
i-am-zubzz.space
samsungbenelux.invue-live.com
www.ivycoder.com
www.jesustorreiro.com
staging.jinbupal.com
editz.kingsphotography.in
kooberengineering.com
post.letsfame.com
www.levelapp.com.br
www.lyfeplanner.com
gatsby.makroskop.eu
www.mazeikiugyvunai.lt
taxistjerome.megataxi.com
www.meoiswa.cat
motows.com
my-alert.be
hippielucas.nilss.dev
papafoods.com.au
pehlivandev.nl
pentonomy.com
phicode.io
pricesync.pro
pug.chat
www.roofhq.com
stashify.rustinedave.com
api-qa.saudigamer.com
schmittding.com
smartsync-labs.co
sfr-business-app.speakylink.com
bucknelltrivia.sqwadhq.com
srs-admin-test.statueofequality.org
sydelab.com
go.theseniorscoop.com
www.theswanginbros.com
www.tleilax.com
tljgroup-order.com
trespasserswillberecruited.com
triclubchallenge.com
www.tumblepod.com
www.ugtravels.com
vipintergroup.com
weeknumbernow.com
ferg.weluvtrap.com
whenhestill.com
links.sbus.telema.whitecloud.jp
app.wifime.id
contractor.develop.wowworks.ru
www.xpstudios.co
Other domains in certificate