Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=singmusicacademy.songadayforamonth.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 12, 2025
Valid Until
March 12, 2026
77 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
32:00:62:5F:F6:72:CB:C2:56:DA:60:D8:E5:3F:DB:5D:EC:CD:3C:28:BA:BE:65:04:CF:C2:64:16:9E:4C:13:2D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
river-camera.tv
sej.5u.hk
acceleratecoding.com
accordle.nl
www.actiohx.com
alkahestia.com
alphapack.mx
amusa.ai
andybee.com
www.apsuathleticscamps.com
webservices.bitsonic.ai
buildit3.com
cannabistat.com
app.checklist.cargacerta.com.br
burrito.clau.io
pandahousemultiplaza.clau.io
runway.clau.io
criticalmass.works
www.csusbathleticscamps.com
www.davidsoncollegeathleticscamps.com
www.dexnia.com
boy.eakkew.com
xlzcc6gblk.easyapp.co
app.efilebuddy.com
www.estudiofuentestedesco.com
famz.pro
www.fantastic4wheels.com
filander.se
www.grigaci.com
helvetica.world
hfg.design
hgs-digital.com
histories.live
icarushotsauce.com
igia.se
ihsanullahkhan.com
impulsaaysen.cl
www.interviewsandbox.com
jacksmodels.com
momentcam.jpos.jp
kamalunisexsalon.in
www.keshavmathur.com
kndl.in
kuruvillageorge.com
admin-dev.lamienins.com
api.leanpassion.pl
www.leonelcastillo.ing
maatariniambulance.com
martechito.com
mata88.org
bridges.mcrich23.com
www.minventario.com
auth.mitch.guru
moistmen.se
www.mrtstayo12.com
firebase.mybiglove.ru
www.nammalonline.com
pic-tipster.mentor-stage.neccton.com
api.nettplus.net
rewill.nginel.com
nomadpulse.co
receiver.nurture.is
ramanathapuram.onewaydroptaxie.com
tiruvallur.onewaydroptaxie.com
virudhunagar.onewaydroptaxie.com
l.openrm.dev
www.panoptes-data.net
www.pd-leukert.de
picz.mx
api.pixelplaces.net
www.prahoukrizemkrazem.cz
www.pro-bonum.hr
qrowdapp.com
interna-publica.queliga.com
radiantaiautomation.com
login-qa.reachmobile.com
www.repuestoselmate.com.ar
roadrunnercreative.com
saadhikatech.com
market.sagisu.com
saibalajidroptaxi.com
ghcalendar.sajidahamed.com
servimatfiregroup.com
shekharchavan.com
stats.skore.ai
smartlitic.com
singmusicacademy.songadayforamonth.com
stpeterscatholicschoolgh.com
thegouldenratio.com
www.thehubpizza.com.au
insidetrac.tooltrakr.com
agent.u2paycash.com
base.urbancitytravel.com
cms.veewar.com
backoffice.thor.weblium.io
www.wellstoneoiltools.com
ymsmart.co
yoichiro.dev
youzag.com
link.zam.me
Other domains in certificate