SSL Certificate Analysis for securevale.com - Security Grade & TLS Configuration

Open Cached · just now

92/100 SECURITY SCORE

Certificate Information

Subject

CN=glucosemonitor.me

Issuer

C=US, O=Google Trust Services, CN=WR3

Valid From

December 21, 2025

Valid Until

March 21, 2026 66 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

83:F2:89:E7:C3:54:36:30:06:D9:31:7E:81:54:46:21:E8:1B:51:A9:04:7E:FA:C7:20:7B:AB:F3:6E:4D:62:32

Alternative Names

100 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=15552000; includeSubDomains; preload

Content-Security-Policy

Good

default-src; script-src; style-src; +6 more

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Present

accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Strengthen CSP by removing 'unsafe-eval'

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains

securevale.com

Other domains in certificate

netflix.aarshoza.me

accordle.it

shop.isfjordscentret.gl.attraction1.ameroservices.dk

admin.annabananabakery.ca

inventax.divergente.app.br

aprovespprotecaoveicular.com.br

www.tackilinc.av.tr

www.bethanywhitfield.com

mta-sts.ccsd180.org

chz.asia

www.regul.ck.ua

www.lifeengine.co.kr

dev-privacy.colavosalon.com

ktaxic.ktaxi.com.ec

account.cleanmasters.com.ua

agreementroom.coursebooku.com

dashboard-link.creekmoremarketing.com

famiquarium.cstolz.de

www.danielecarbonez.com.br

www.danielquevedo.com

www.davidvanzyl.me

developer.dev-crazygames.be

sp.devfest.com.br

www.dl0.us

www.dreamnestconstruction.co.nz

dribble.works

easyplife.com

dev-manage.ecsdev.co.uk

links.essentia.dk

www.fhuft.org

gattenregnskab.dk

embarque.gen-t.science

auth.getstudioplus.com

glucosemonitor.me

grevian.org

www.grooveapp.io

talks.grsc.cz

www.guinchosbrasil.com.br

galaxies.hybri.io

fitqm-doe2-dev.ibts.org

food.ikea.us

auth.inkit.com

jancso.me

jonescain.co.uk

jordancoinjackson.com

www.journeyproductions.org

www.karavaychuk.com

keithpope.co.uk

comerciales.legalhub.la

lempinet.de

lunchpot.site

maestroscuranderosdehuancabamba.online

app.metengineer.com

calculator.mifinancialplanning.co.nz

m.mirinestore.com

modulmix.fi

kintai.mosa-architect.com

www.myrnd.in

life.naepo.xyz

www.neilcuthbert.co.uk

admin.octaos.com

open-mic.space

paris-turf.live

www.pattle.jp

user.bus.pe.kr

orbis.pencilapp.com

perryhomewoundcare.network

snackcar.plan2win.be

mentoria.profaulashow.com.br

progidro.ru

www.qrq.app

tools.reactifplus.com

malindi-official.reflex-bikers.club

www.ruhealthhack.com

daily.screen.so

shipraiderscamps.com

sysadmin-beta.staffshift.com

dev.disney-coloring-world.storytoys.com

ai.syedbaqirali.com

dash3.terpity.com

tfter.app

thaisomworldwide.com

www.theactuaryfellow.com

thepicturehousegallery.com

www.cotizador.tint.com.mx

recipes.toddhansberger.com

towa-kyoto.jp

www.trashfusion.org

triplehey.com

hospedese.tur.br

app.vedicastroapi.com

www.verifico.co

dev.enterprise.vette.io

www.villamerica.hu

actie.woonveiligheid365.nl

purpose.wowdesk.jp

fire.pt.woxtr.com

inacash.dev.zero-one.cloud

kruzer.zuusi.com