Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
C=US, ST=Georgia, O=Global Payments, CN=propay.com
Issuer
C=GB, O=Sectigo Limited, CN=Sectigo Public Server Authentication CA OV R36
Valid From
June 12, 2025
Valid Until
June 12, 2026
150 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA384-RSA
SHA-256 Fingerprint
7D:C7:A8:0E:74:D2:26:1A:9D:1C:1F:AB:3B:BE:1C:16:AD:FA:0C:00:C8:CB:93:F7:2A:27:28:68:CE:0E:E7:6D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
Forward Secrecy
Limited
(Check cipher configuration)
Warnings
- • TLS 1.3 is not supported (recommended)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
25 domains
propay.com
api.propay.com
cainsiderservice.propay.com
caivr.propay.com
cardreader.propay.com
cmsapp.propay.com
control.propay.com
dtepartners.propay.com
epay.propay.com
epaycms.propay.com
m.propay.com
mobileapi.propay.com
partnerportal.propay.com
partnerportalservice.propay.com
partners.propay.com
payfacportal.propay.com
paymentsportal.propay.com
pfm.propay.com
protectpay.propay.com
reportsapi.propay.com
testm.propay.com
usinsiderservice.propay.com
usivr.propay.com
webhookreceiver.propay.com
www.propay.com