Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.di2pra.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 15, 2026
Valid Until
April 15, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F1:84:43:7C:D0:35:FF:DA:9E:A6:ED:C9:4F:80:CB:F0:3B:1D:06:EC:39:DF:7F:7F:A6:1B:30:3A:F1:7E:A5:A5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
songsising.com
tifo.253below.com
dev.feasibility.wecom.28east.co.za
aakritityagi.com
ads-techno-expert.ro
www.aediax.com
www.affilatenetwork.com
affinitree.org
www.shop.avsemprize.com
azaza.fr
bamorem.com
bape.capital
beeppoint.com
www.betterbloodcare.com
app.bookzam.io
bowing.com.au
www.bqhflooring.com
capitalthaione.com
www.capitalthaione.com
www.casinobharat.space
codeplace.co
coursconnect.fr
teams.cpredmann.com
cryptofarms.me
cursacuratuste.ro
www.descubretrinidad.com
www.di2pra.fr
admin.displayvista.com
dome-alsancak.com
app.dubplanner.com
earlyedqualitycheck.org.au
eco-track.org
shibz.eddress.co
www.educationencompassed.com
play.evytest.dev
fitkirti.com
trial.flattummyapp.com
foirola.com
staging.founderrr.com
hairmedicareturkey.com
link.healthpass.cc
auth-qa.heartfulness.org
www.helpcomply.com
emiradosesfiharia.infinitifood.com.br
maboucherie.innovorder.network
www.javelinsports.app
www.jedatu.com
kidflowapp.com
www.kinebalanced.be
brightspace-demo.klarway.com
cms-com.koffein.io
web.kojihirai.com
care.hotfix.lifemd.com
msg.litescan.io
www.lojaalmeida.com
technology.mahsua.com
mallucrypto.com
www.mallucrypto.com
mindfood.gr
www.missionmanager.app
morrisres.com
estadisticas.mujersaludable10.com
mutanguha.com
navrufupdate.com
www.newageflooringnc.com
nbfsc20202021.ondagoapp.com
www.ostricher.com
www.ourmarket.africa
perfectyourtext.com
www.phoenix-dz.com
www.playarea.gr
pramitra.com
www.primosa.in
rexmd-pe-m.pyxal.io
admin.quiziko.app
reactnativeyou.com
retokena.com
www.sablecrm.support
www.saumyacreations.com
www.scottlabs.us
www.sharpmotionstudio.com
siq.coach
sketchpaper.ink
open.snapscan.io
link.staging-bitcastle.work
demo.stratj.app
synccentral.synctalk.us
taxsum.ca
www.taxsum.ca
www.terapart.com
pointmaker.theseabay.com
clinica-sanalia.timp.io
www.toollife168.com
trustedtradepartners.com
upbias.com
app.vippax.com.br
vitaello.es
adminpanel.walletpayment.net
wilmeltech.com
www.zoznamdlznikovsr.sk
Other domains in certificate