Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.pollamundial.org
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 16, 2025
Valid Until
January 14, 2026
57 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C6:A9:13:05:30:A9:B3:9D:E4:14:CC:A4:B0:EB:EA:DF:EA:7A:B9:99:F3:F7:45:32:05:02:93:6E:D2:18:59:EB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
sampledoom.site
11521400.stratics.io
liteapp.21store.om
www.ai-society-su.com
aiindexhq.com
aitoolfit.com
pwa.ajoenergia.it
www.alfalaqalmashreq.com
live-airband.alledotech.in
andrewchapelchurch.org
androidalchemist.com
rohan.appyx.io
astromnc.com
lms.eco.atomx.asia
audickas.com
www.blinkhomes.us
www.brickellautocollisioncenter.com
bryton.studio
www.budmalart.pl
bugdriven.ee
www.cacophonycards.com
cangpt.app
www.cherryfield.eu
christianbiblestall.com
media.anyway.co.il
test-fim.eazycatering.co.in
www.codecarvings.com
www.covertalert.com
dogfoodlab.io
www.eniddentistryandbraces.com
www.esoftla.com
www.esrig.net
estate-vault-realty.com
vuka.falkor.io
www.fieldmargin.co.uk
www.frazerhatyai.com
x.plasta.freedom.to
dev.gapr.health
portal.healthid.ai
legacy.hobbymusik.net
huntershomes.es
myfriends.infinitifood.com.br
www.jadsa.net
jayamscoring.in
johnverter.ir
julsmind.com
milad.korjani.com
www.kumami.world
mis.leaderland.academy
libell.us
altimeter.lifewcode.com
www.louisvn.com
lvisturkutiimi.fi
magazarchitects.com
www.malabaredutrust.in
mcapp.ch
www.metromanexpanse.com
www.mgma-mm.org
agendar.co.moons.rocks
media.moviola.io
huobi.multiverse.ai
portal.musicly.uk
www.mysavinggroup.com
www.mystoryjar.com
docs.nascent.network
api.novy.vip
www.omegaomex.com
dev.borabora.omnicon.co
lyra.override.com.mx
app.padeltactic.com
www.paikariwala.com
www.parkpaper.in
piedigital.africa
www.pollamundial.org
proyectodidacticomemoriasguanches.com
puckwang.com
quizmenot.com
realbluesoftware.com
www.rushirajadeja.com
sabion.com.br
sdf-2d.schmelczer.dev
sdholdsworth.co.uk
prometeocab-test.segurosatlas.com.mx
www.selfpay.care
shape.me
snowchron.com
spsradaur.org
player.stable.codes
stellaros.dev
www.sullivans.online
martinmartin.give-staging.swoovy.com
talentnetai.de
thebibiseries.com
hro.thepetdoor.net
emoticons.thomsmed.com
tringe.in
kurier.umami.pl
unilytics.univsense.com
wealth-wiz.com
tastemap.zhixiangren.com
Other domains in certificate