Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=s1.smartmobilityyellow.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 07, 2026
Valid Until
April 07, 2026
85 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
47:2E:86:49:EC:8A:60:A5:07:77:D1:67:C7:08:04:82:40:77:10:A2:1D:4F:92:23:7A:D7:6D:43:BE:76:2A:56
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
stackoverflight.com
www.amglegisinn.com
ancdavao.com
www.ancdavao.com
anotherpagestudio.in
www.anotherpagestudio.in
privacidade.connectgrid.app.br
ar-botoes.com.br
attention-theory.com
baigproperty.pk
banclogs.mp
beingokul.com
static.cascadia.photography
skymessage.chatjp2.app
fin-acc-guide.campuscloud.co.zw
vote.dayone.com.hk
minimarketdonjuan.com.py
homes.darthomes.com
dcarogroup.com
alpha.deployplus.com
ditmarestrada.site
app.demo.doc.cr
portal.demo.doc.cr
ecologfuture.shop
ujilari.peperiksaan.uitm.edu.my
eduflowacademy.online
gameadzoneplay.com
generatedpixel.dev
getmibomi.de
glowroombykima.com
grezl.app
outsourcing.gruposimple.com.co
honoratocoach.com.br
imnotyou.fitness
www.instaladorsa.com.br
jikabi-ai.com
joeameliawedding.com
jwratl.com
kolekcjonerchwil.pl
baldy-crm.krisztianmiklos.hu
baldycrm.krisztianmiklos.hu
lexajava.world
lightandsalthumanitarian.org
lionsclubcard.org
lms-app-test.site
lot-funity.com
www.lvipalvelurinne.fi
www.magneinvestments.ch
maniacjobs.com
www.mariahoriental.com.br
mmonlinetraining.com
moawj.com
mokay.tech
motorsvanns.com.br
myureshsolutions.com
noorix.io
nutralfit.nutrecaps.com.br
app.ocumentor.com
okkerala.com
iwasco.or.ke
pauloeduardotreinador.com.br
prompt-verse.co
qpscorporate.com
kai.quaranta.ai
standalone.test.rpm.quokkacare.io
radioactivelemon.com
ramvel.com.mx
rankinfluencer.online
sauchaespacioholistico.ar
www.seinmaungengineering.com
video.semhekman.online
www.service-baugutachter.de
app.sijilk.com
sijilk.com
s1.smartmobilityyellow.com
admin-test.smartrank.in
snactapp.com
spacewalkautomation.com
sraempanada.com
share.sunbeach.club
links.surgeahead.com
news.tagdigit.co
technick.io
technicklee.ca
www.thejoviapp.com
search.thestratagroup.com
juego.tiendacarpfishing.es
tlumaczenie-stron-internetowych.pl
arthome.tomarsuraj.in
unmexi.co
velacore.site
link.veloo.kr
devtools.vmiracle.com
webbandit.ru
whiteknightsensemble.org.uk
avinashpokale.work.gd
www.avinashpokale.work.gd
tv.xembong66.org
www.yaelmaster.com
yrreddygroup.info
Other domains in certificate