DNS Gurus
Open Cached · just now
80/100 SECURITY SCORE

Certificate Information

Subject
CN=portaal.manc.be
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 25, 2025
Valid Until
February 23, 2026 82 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
51:F7:48:6A:8D:B5:DA:C9:34:31:83:44:11:19:3C:BC:AB:15:AA:88:91:3A:45:77:3D:CC:E7:2C:58:E8:75:1C
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Basic
script-src; object-src; base-uri; +3 more
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Improve CSP by adding more specific directives and removing 'unsafe-inline'
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
propshop-msg.sidelines.io

Other domains in certificate

l.22d.cloud
ntiative.3diq.com staffingstrong.3diq.com
www.abastim.com
abueloseficaces.com
deped.academelms.com
squirrelcensus.againwewander.com
alainlamy.com
workersense.console.appabrik.jp
bandz.com.br
benkalman.com
bildeler.net
dev.bleepbloop.app
admin-beta.buttleuk.org
camiapp.net
cmssaude.app
www.yazhdroptaxi.co.in
m.cubor3.com
test.travels.daudr.me
aicalc.designedtotalk.com
dhanoosh.me
tech.dynamic-ai.com
link.elsa.to
www.episeron.in
console.exite.site
rpldev.finncub.com
get.fuocos.pizza
fitnessparkforms.gymkee.io
ignitebrite.ca
www.imageskewer.com
links.instantmentor.io
gestor.inteliped.online
www.invoicegenie.xyz
www.jamesmshaw.co.uk
linkedin.jardakorinek.cz
www.joshowatrading.com
www.joynson.software
www.juliaandtom.us
www.kalugi.com.au
www.liloop.in
defesas.linka.la
lostpixels.org
portaal.manc.be
medibridgeworldwide.com
www.mohamedsafvanvp.com
hha.moinahoi.com
link.musashiya-net.co.jp
app.myhoney.finance
nanio.info
www.naturheilpraxis-daube.de
surkhet.nepaldrivinglicense.site thulobharyang.nepaldrivinglicense.site
callin.google.net.tw
onehealthpharmacy.co
www.onstage-vr.com
mst.partnerhub.co.za
www.pedroalvarezfernandez.com
www.uat.personalni-standard.cz
pianotutor.org
dev-fundep.prompt-pitang.com
promptmaster.es
rajinnresidency.in www.rajinnresidency.in
www.recocycle.in
bmslink.reconfigure.xyz
rukupdik.com
www.seis8.com
serakidz.com
jewellers.mysore.servicemall.in
shimaemi.com
api.shortbridge.io
shreenik.com
mobile.simpleclaim.nl
www.skullz.city
sparksphere.tech
www.spikbow.co.uk
stackdeepdive.com
zakaznik.acc.stammgast.cz
www.summerjobsconnect.org
www.sunyataglobal.in
bodacuellarfernandez.swanmoments.net
crowdidea.sybrux.com
app.talentjn.com
on.taproom.app
results.telecare.com.au
www.teqhy.in
www.thesmartflip.com
thisorthat.vote
admin.ubelalearn.com
stage.dchs.quiz.thrive.uk.com
www.unicorntemple.com
t.upnow.fun
budget.vermillion.app
staging.storybook.vette.io
www.vickeyapps.com
testing.viscalc.app
vm-logistik.ru
too.weja.us
auth.wyshlist.io