Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=docs.mira-one.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 08, 2026
Valid Until
April 08, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
39:3F:A8:1F:E7:5D:D2:3A:FF:6E:20:01:E9:8C:80:4E:C1:0B:0A:B0:C9:4A:18:E7:64:3B:BE:AA:E5:2B:E6:73
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
roysanreality.com
erepublik.12traits.com
prod.4syt.co
m.acg.aaa.com
memonavirus.againwewander.com
www.ajinkyabhandare.com
alphagym.lat
www.ascenda.work
www.askmadhav.com
avamatrixtech.com
app.backinpack.com
www.bluewingspolymer.com
cacitizenship.pro
www.casapontanduvini.com
dreamlandwaterdrillers.co.ke
engieap.cydocs.cl
www.daivalogix.com
learn.dreamkit.cc
dusrapanna.com
www.elenaharford.com
qa-app.emailkart.com
topenergy.enercon.mx
erickxavier.com
link.etoto.pl
faceplanes.com
feathershair.com
www.felipecuevasleiva.cl
fictionengine.com
www.findikwhitehurst.info
www.fynegames.com
glamerapay.com
pay.sandbox.ding.gr4vy.app
pay.sandbox.partners.gr4vy.app
pay.sandbox.slyp.gr4vy.app
pay.sandbox.stripe.gr4vy.app
pay.sandbox.zip.gr4vy.app
pay.uelz.gr4vy.app
clients.hectoware.com
www.helloargus.com
hugobyte.com
hunbalsiddiqui.com
danghoangthanh.id.vn
ilkerkaran.com
iota-ls.com
theme6.itsyourdayofficial.com
amo-docinho.jordanadelino.info
iotconnect-hochschulwerk-w.kapion.de
laksithaliyanaarachchi.com
test.sign.legaliza.io
legislationlemur.com
ics.levizumi.com
mahalohq.com
docs.mira-one.com
mtapp.app
beta.mvpex.io
myhand-poker.com
lau.netifyhub.com
nexday.my
app.nextsimu.com
northstarkpis.com
nuligems.com
www.oaxis.com.br
dashboard.omaka.mx
ongginature.com
app.opticcount.com
huddle.optifit.app
d.petdriver.pet
app.petxamapp.com
pinkvulture.com
platin-bm.com
prakash.vip
www.prakashgundu.com
ptnbservices.com
realcreative.net
my.risksteward.app
rpg2d.com
runsattitude.com
sahanakannan.com
saveme.bg
app.screengeni.us
semaphore.llc
semillerodonernesto.com.ar
www.serianaic.com
vitiligo-dev.skinopathy.com
smile-package.com
socosci.com
stylaise.com
swapfone.org
api.talkitout.app
coupons.tapngogh.com
taxifakta.se
play.tdvideo.com.br
theoarifont-gc.com
toutim.fr
tsakaev.com
app.twisto.pl
www.unserlebensbaum.de
ds.wellings.net
join.werulethewaves.com
ziisnotes.com
Other domains in certificate