Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=animalpt.com.au
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 06, 2025
Valid Until
January 04, 2026
53 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4B:DB:A2:4B:C0:10:E3:E4:05:57:9F:E4:03:AB:E6:CB:48:E1:F7:EE:CB:D3:E2:89:85:10:EE:3B:5E:C3:B8:03
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
serve.blop.dev
aadilshaik.com
www.agaramapps.com
akaz.at
animalpt.com.au
portal.apiax.io
auth.autoapply.in
www.beardedrobot.com
admin.beequick.app
www.bigbrainnotes.com
borneoapp.com
buzzmobile.mk
app.bwgs.co.za
newleaf.bytekast.io
calisthenics-counter.com
wash-agents.citycar.co.il
fdblockchain.co.kr
www.trabee.co.kr
linebc.bigc.co.th
docs.cognitedata.com
docify.com.tr
www.devsports.co.uk
dirtyorclean.com
app.diversdashboard.com
www.drdeepakacharya.com
guests.easyguest.dk
uk.eatsharp.org
tmp5012.eggacy.com
app.elli.eco
www.emanueledisaverio.name
www.escuelagranada.com
superroute.evergreen-labs.com
fabulasdeaprender.com.br
fairscience.it
www.firstclassaccounting.com
app.fledglingheroes.com
champagne.foru.fan
reports.glib.ai
ae.growthat.agency
www.happer.me
attda.hereplusnow.com
himendlemendle.com
www.houndsonthehoof.co.uk
www.app.staging.ibexperts7on7.com
v1.ikehunter.com
itechnotion.com.au
mallig.jawsapp.online
www.kavyacabs.com
gallery.keshif.me
website.kneg.nu
www.laugga.com
emn.tracker.dev.liquidanalytics.com
www.api.lokalebon.nl
app.lukutahti.fi
lydavorn.com
macro-cheat-sheet.com
www.macroandmarkets.com
mafre-swap.mambo.li
www.masseguros.pro
www.st.miahire.com
nusantarafest.kucingscript.my.id
navacloud.com
mutualofomaha.neoufitness.com
www.nortrix.com
www.onairzone.com
thomas.orchestra4edu.com
std3dev.order.place
www.padelspot.it
rdcapaofm.pampa.com.br
fire.pouncy.co
user.privech.com
radio.proclaimug.org
www.vestre.product-passports.com
www.propfluencer.com
media.raagnaad.com
app.redhome.cc
www.sanddraw.me
sanmaharjan.com
quiz.screencastify.com
meet.selia.co
www.stackscout.io
share.stash.games
www.suniltechtips.com
auth.symbolserver.com
www.tatiage.com
bizworks.gov.taxscribe.app
prototype.thebridgematch.com
www.thenextapp.nl
tokenlive.me
www.trendzvornik.com
www.trimcutz.com
www.valetstudentstorage.com
vedantbansal.com
login.venuescout.org
mc.vitaly-ix.com
www.watakura.xyz
www.wellnessspaindia.com
wilsonfundraiser.com
app.winningimpossiblegames.com
www.yamamap.com
Other domains in certificate