Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.gjerdeimport.no
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 29, 2026
Valid Until
April 29, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A2:17:AD:79:A0:21:6F:EB:66:5C:12:06:06:87:B4:82:E4:62:4C:2C:9D:5D:FE:54:B6:C6:FE:32:CC:71:54:6E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
static.youplant.com
aijournaly.pl
www.atomlab.pro
beproudofeverystep.com
www.beproudofeverystep.com
betcracking.com
links.bettercareer.si
www.bigyna.com
borgers-stunden.de
buscadorjuridico.com
butaiura.fan
pov.changemakerz.org
classicmodsrevived.com
www.cocinavegan.cl
www.rajatbhattarai.com.np
antalyahasircati.com.tr
invite-dev.comobi.io
comparepesca.com
www.daandelombaert.be
datapridesolutions.in
www.datax.io
www.dhulaii.com
demo.digma.io
dtotech.com.br
dutchflutterconf.nl
emobilespecialisthospital.health
epubreader.pro
errantry.xyz
fairsharecanada.com
fivestack.ca
eira360.forestdesigner.com
www.gjerdeimport.no
admin.goplaypolo.com
admin.guiapass.com
heinrich-arnold.com
ifotec-peru.com
www.ifotec-peru.com
intraprod.net
profile.jafed.xyz
finances.jgarrett.org
justindcosta.dev
kmeconsulting.dk
larevolucionvinoteca.pe
lgx.lol
www.licorerialeandrocruz.com
llaapp.com
lucary.com
www.m-car-technology.pl
sig.mamamoney.co.za
mgtravel.com.mx
mindscopetech.app
mousymedias.in
n-lite.net
natan.dev
ndisinsurance.com.au
360service.new-thread.de
link-easy.nibo.com.br
issuer.nuvowallet.io
chengalpattu.onewaytravels.in
ordertest.orderbuddy.net.au
pokestats.nu
bardsyarn.purplemovies.com
ragabstudio.com
ranmeth.dev
reachzone.org
tagl.redoxsoft.com
robertwinters.nl
ruckminiprinters.com
deeplink.saferretail.com
admin.santorini1.gr
www.sarkarmedical.in
scieno.de
sherochai.com
www.shrewdsharks.io
www.signoffpro.com
simprainternational.com
dev.caregiver.sios.life
sleepingbaby.app
time.sltechnology.net
socialcarejobs.uk
rays-appget.sonice-aioe.com
stellanconsulting.com
www.stellanconsulting.com
studify.fun
syntoagency.com
qai-portal.tanara.tv
tecnicalevy.com.ar
thebooknookcafe.in
www.threestumps.com
www.tinydreamtales.com
dashboard.tisanz.com
calculadorasolarb2b.totalenergies.es
prod.tractivity.se
trillionusd.com
tutorlearnerdatabase.com
ericsson.quiz.thrive.uk.com
valoi.ai
apresentacao.vpautomation.com.br
team.wallester.com
www.wowrings.co
Other domains in certificate