Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=stlswingdance.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026
52 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
86:69:AF:EA:6C:64:C2:F9:62:96:CD:A6:2D:D7:15:94:7E:ED:D3:1E:31:72:4B:06:AC:A2:FE:0B:21:CB:29:67
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
Forward Secrecy
Supported
(Modern clients use PFS)
Warnings
- • TLS 1.3 is not supported (recommended)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
stlswingdance.com
lockdownlimit.28east.co.za
bolipuertos.dev.demo.3dlinkweb.com
dev.ih.ia.up.ac.za
revelaw.chcadvocacia.adv.br
app.elaudo.agr.br
www.alterra-fond.ru
ampero.it
rms.amrk.co
aniwave-official.com
www.annahollandsmith.com
anvawedding2026.com
ataspae.org
avgolemono.games
bangladeshhealthservice.com
beta-falcon.bluewhale.kr
www.bumble-bee.ro
shop.cardsearcher.cardbox.sc
client8.citadel.tools
www.clocktime.co.uk
nexusdocs.staging.rancher.cloud-h.net
family.novatec.co.th
www.cocheragratis.com
continuitas.nl
deepen.dance
deonte.in
pro.dhruvkumarjha.com
manager.digme.dk
www.dracarolinaparra.com
flutter-cases.dreamer2q.wang
coordinator.educationawards.ie
www.englebook.com
order.everymobile.jp
gabdacministries.org
beta.ghettonatter.xyz
www.googleformstemplate.com
tst.hasanuzun.com
herumb.ca
www.herumb.ca
hommealpha.fun
sit.ila.me
w38fh.podc.incentable.com
dadacid.indestream.fr
print.inertiaprinters.com
www.iniciativaeleve.com.br
app.inquari.com
iran-kish.de
ezmeet.kingdark.org
www.lifeisagame.one
loveasp.net
www.luxuffeur.com
app.magvia.com.br
www.market-playground.com
payments.mayais.co.za
bot.mechy.org
talk.mkutano.org
lp.mobiform.store
rec.mypracteaz.com
nazarie.tech
ordernftclub.novoos.co
brooks.petlicense.online
staging-admin.playbackapi.com
plgdirectory.com
driver.plusfleet.com
link-dev.pocket-study.com
pratyushrai.com
project-zero.co.jp
www.quickprolaw.com
raxconstructora.com
www.redandoford.com
www.repher.me
app-downloads.rewanow.com
ruggabot.com
www.sanke.si
sara-and-ed.com
serviciostecnicoambato.com
shattawarehouses.com
davidkoloane.standardbank.co.za
dashboard.startezy.com
stychova.cz
order.sushihub.com.au
baby-dumbo.telapps.fr
app.thaliif.com
thefoundd.com
www.thefoundd.com
thetaxbru.co.za
admin.thewrittenrevolutions.com
bayllet.timp.io
www.portfolio.toupawa.com
trimbo.com
envoy.turnout.events
go.url.hr
siraat-ur-rayyan.vizrex.pk
vynex.ar
wake-up-voice.com
cv.yoevi.com
www.yukakobashi.com
app-dev2.zetaone.com.br
zilongl.com
admin.zubti.com
Other domains in certificate