Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.jesuslopez19.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 28, 2025
Valid Until
January 26, 2026
73 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
63:D0:F2:8F:C9:4D:B5:B6:A4:03:A0:BA:87:E4:80:02:F9:38:9D:F9:75:24:52:F4:94:8D:E8:18:DF:26:1C:AD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
rgllima.com
13labo.com
actionary.app
smart-activity-app.alaskaritech.com
www.andrew-mikaeel.com
mymoment.ashreinu.app
beta.bigordr.com
bilginadamlar.com
blokke.de
admin.buzztop.io
bytore.com
canadaday.events
spa.canalsidecoach.app
www.cavedivingtulum.com
www.ceramicworlddestinations.org
regul.ck.ua
www.codelingo.com.br
haskellcountymonitorchief.column.us
stage.daphnesdesserts.com
demo.easymrs.com
elastikobjective.com
www.ma.estro.ai
etoileliaison.com
app.formup.fi
framedbynick.com
extension.getluna.ai
giantrobotgame.com
www.goju-karate.co.uk
links.gouldcs.com
app.gros.farm
www.habitual-coffee.co.uk
haydenlowe.com
www.humandone.com
hwinyo.co.uk
auth.inworld.ai
tw.ionoi.biz
datamaster.itmlive.in
www.jesuslopez19.com
johnnyyork.dev
www.joshliley.dev
joslin.fr
admin.k-backoffice.com
katballo.com
www.kiddi.zip
ooty.kishoredroptaxi.com
se417.kyleg.dev
lauragolding.co.uk
learnfrommaps.com
licu.es
liegebeest.nl
www.makemoredigital.com
map4us.com
ads.maplans.com
freelance.mehmet.contact
milesokamoto.com
mltea.morninglavendercafe.com
svg.morphyish.com
business.myreshn.com
www.nationalday.ai
api-dev.nava.app
microcontroladores.nodoelectronico.com
onb.vc
kpop.onlymilan.fans
dallas.profit.orderprinting.com
www.phoebeapp.com
phypyy.com
piala-intelligence.com
ausibaby.piticommerce.com
okamoto-hp-auth.pocketkarte.net
positive-places.com
prodios.com
www.proresume.app
relay.prototyp.digital
rajshivamredevelopment.com
roadsense.roadbotics.com
hillcroftphysicians.runtalos.com
go-test.driver.rushtrail.app
www.sammya-ng.com
www.sanoberconsultancy.com
gameshow.sgospel.no
www.shadowhusky.cn
www.shopreviews.org
smalldogsolutions.co.uk
itisteatime.snapmentor.no
dev.sprytelab.com
www.takashi-nakayama.com
www.tanguiimmobilier.com
cartoon.theorygenerator.com
thurmond-webdev.com
turingtext.de
crossfuncionaltrainingsi.turnosweb.app
dev.undock.com
guardian.poc.unsproject.com
home.visita.in
answers.wavatec.fr
whattotalk.com
www.wingnotes.app
www.wira.lk
www.yiseullemieux.com
zebral.net
Other domains in certificate