Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=mapa-develop.rogeriossantos.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 22, 2025
Valid Until
February 20, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BD:F9:A7:96:CD:7C:53:BE:9D:2F:F8:3E:92:BF:F3:82:B2:A4:CF:4A:A1:CF:55:47:57:2D:6B:1E:08:6C:75:F6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
shakhron.ru
forumrecruitment.3diq.com
abdullahkhidr.com
kalender.abiomed-veranstaltungen.de
www.aesteticcar.com
bill.agamipay.com
www.agataandme.com
files.altrollan.app
www.anaid.fr
androrithm.in
autie.chat
www.baijs.com
auth.bikaner.express
bioclockinje.com
app.booqio.dev
cardosolocacao.com.br
wed.atlow.co.il
www.ricette.co.il
mobile.gim.com.bd
commandercodex.com
constanze-ring.de
diffusely.ai
dishan.de
app.dvends.com
distribuidorafischer.edsys.com.br
m.elanza.nl
elismith.dev
enigmavssut.in
www.exchem.de
www.gaumenrutscher.de
admin.gdgyangon.org
www.geigenstunde.at
www.gotogether.link
groebert.com
infringements.dev
www.invisiblematch.com
www.islami.app
itgames.itmizer.com.br
jaysea.org
joeydev.net
kakumei.com.mx
www.keepsake.band
kelarann-validator.io
m.khamis.work
lanadev.net
support.legale.io
electronic.liquidcodeify.in
liziasmr.com
lumbung.net
www.macangroup.co.uk
planner.mags.gg
www.marcelloinfante.com.br
www.mianteburger.com
midwicket.org
millenium-office.be
financeiro-dev.mobilizei.com.br
fund-me.mohammed-najib.me
starter.motionads.agency
portfolio.narumi.app
nordxe.io
nullnut.com
cms.oohmanager.cl
www.paintbar.app
www.planetrk.com
poptacular.com
2022-wiosna.bimakademia.procad.pl
quiz-fast.com
www.richardtea.com
mapa-develop.rogeriossantos.com.br
www.rollastory.app
rxlabz.com
www.saiftech.org
www.sandiegosurfriders.com
santrex.de
www.saramoresyndrome.com
www.shardanabeach.it
simtopup.siamgpstrack.com
production.sigmatec.in
smcorwine.com
sparqle.app
app.sportscalesystem.com
www.stare.ro
stage.starkeytelehear.com
cad.svadola.se
blog.taliferro.com
thegigverse.com
theworldvoice.org
tinyres.link
www.tourette.agency
astropro-tool.transang.me
www.uisyntax.com
staging.cms.victoryrx.com
www.vizsla.tech
vocabtrainer.app
plarail-tokyo.waittime.jp
sandbox-portal.warrantysphere.com
wcf25.live
app.wunschbox.at
www.xkfa.com
contable.yungol.com
Other domains in certificate