Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.playon101.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 20, 2025
Valid Until
March 20, 2026
70 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
02:8D:70:A9:A7:66:73:4C:49:A8:BB:69:7A:8A:77:B8:20:72:17:30:7C:79:BC:F5:E9:A5:A6:12:CC:DF:7D:15
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
share.myinpocket.com
robotogames.12traits.com
abrahamvelazquez.com
pepsico-admin-progress.activ8games.com
www.ae2jrueda.com
albaramigroup.com
alienpunkthings.net
hfrac-l.amrgharieb.com
annamyznikova.ru
asianbox.mn
intentionalwalk.azumio.com
bquik.seca.banpunext.dev
rpa-dashboard.bce.dev
bfanteam.deeplinks.bfansports.com
bikecrm.app
bitlending.club
sms.brassblizz.in
bzystudios.com
caseyryanmusic.com
go.catholify.com
www.chekhealth.ca
laundromat.cleantie.com
checkout.clockly.pro
www.clubedeprofas.com.br
cohmoe.com
www.merkezjaponotomotiv.com.tr
crazyguava.com
rotf.crescentyr.com
crispdev-orders.crispnow.com
deadsink.com
deepreboot.com
www.dendrotreecare.com
doloresantander.com.mx
doralsolutions.com
douglasrodriguesjose.com
www.dphektiv.com
daya.ejrosie.com
vcards.enfochannel.com
extecha.com.au
inventory.form-factory.studio
dev.dashboard.getslideapp.com
goldenpitchforkguide.com
www.goseet.com
iddev.goship.vn
guillaume-deroy.com
dev.highridge.app
huddleuplearning.com
icebroker.in
it1llc.com
itesca.be
portfolio.jordanmars.dev
jyotishyatra.org
karmadevs.com
exceed.kosidev.com
www.kt-y.com
kulinabeytepe.com
app-link.lawallet.com
stage-admin.levigata.com
us.staging.console.lopay.com
map2.online
mema.art
www.natuurbegraafplaats.nl
pic-betfirst.mentor-stage.neccton.com
dev.accounts.nomelome.com
orcafina.com
starbucksfr.order.place
vasump.iotbit.otobit.com
permanent-clipboard.app
www.pharma-alpha.com
app.playon101.com
powerfollower.com
bcloudcenter.qpos.me
r.quesmatic.com
www.rainbowgrid.online
resyrrect.com
richlira.dev
connect-ng-carrier-loadboard.rxoconnectdemo.rxo.com
salvageunionworkshop.com
login.selectext.app
sereneplay.com
shubhambundela.in
sirpeaceo.com
sla.ng
www.spacialvision.com
www.specter.mx
nmutdscramble.sqwadhq.com
www.strukto.io
sunahai.one
tayler.design
teruhisafukumoto.com
www.thekamarajusphotography.com
karoon-centro.timp.io
reports.my.togetherplatform.com
charts.ultramixer.com
www.vicong.com
www.visionworkout.com
dev.weperson.com
www.whocook.nl
admin.ebm121.wowdesk.jp
wsr-starfinder.com
Other domains in certificate