Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=libertysprinciplesmedia.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 26, 2025
Valid Until
January 24, 2026
64 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
71:B6:E0:E0:5E:30:BF:72:B4:22:5F:5C:49:29:FD:5E:B7:A9:7E:D5:32:B8:D5:E4:10:11:37:EF:50:1A:26:FF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
admin.holdtightandpretenditsaplan.dev
prompts.holdtightandpretenditsaplan.dev
store.holdtightandpretenditsaplan.dev
tools.holdtightandpretenditsaplan.dev
ux.holdtightandpretenditsaplan.dev
aipodify.tech
airfresh.solutions
alyticscoach.com
artist360.co
www.auditechme.com
adminsite.avfireworks.shop
avfireworks.shop
www.avfireworks.shop
www.barry-jones.com
bhashaplay.in
www.bhashaplay.in
calc.boostedbrothers.co.uk
schedulerott.boxknight.com
catherinerouart.fr
chromaswap.site
manager.cloudplug.net
plot.commutedavao.com
dailybeagle.com
platform.daros.ai
www.datospilipinas.com
dbaichat.space
www.dieselprices.co.za
payment.digirecords.in
video.digirecords.in
auth.drawjo.app
www.dynattractor.com
wow-link.ehubstar.com
eratravelcam.com
ref.ewishhub.com
expertsco.sa
fincoresolution.com
gameday-plus.com
gandt.melbourne
greeneromaha.com
he3.dev
hihuc.com
www.homebby.com
homerinvestment.com
hotclubdating.com
www.hyperdev.co.za
pi.iarani.com
www.ibercover.com
ilaedado.com
inatman.com
infermieristica.link
www.kamberg.nl
www.pos.kipcount.com
goodandevil.kro.kr
replix.kro.kr
www.laruydiego.com
lensegua.com
conex.lextar.app
libertysprinciplesmedia.com
lightletter.app
looksfamilysalon.com
fahrtenbuch.m4infotech.com
mamczas.org
maptionary.com
mecautron.com
mi-prueba.es
funds.mohinviraj.com
www.mooradesign.ru
nextukati.com
ovrsenssy.me
www.ovrsenssy.me
oxy4vet.com
platinumdeveloping.net
stageauth.playunits.dev
portfoliomaths.com
psicositio.com
www.psicositio.com
myappwork.qasoftsolution.com
sabot.in
www.sabot.in
www.sambarbershop.it
quiz.dev2.screencastify.com
shopranist.com
jmex.shujaacode.xyz
ganita.souravkulkarni.com
surajsirsikar.com
swecc.org
www.tankprecision.com
thoughtpearls.in
www.trainamhuyphuong.com
transitkolli.com
app.treater.dk
www.turtledoveinvestments.ng
urban-vision.ae
www.urban-vision.ae
www.uxy.ch
lnk.voxabular.com
www.wasteleaf.com
yoreferee.com
www.yorkshireapp.com
www.zivotopis-online.sk
Other domains in certificate