Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=cargodrones.aero
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 04, 2025
Valid Until
March 04, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1A:9E:98:3E:99:8F:9A:DB:C4:E4:00:F0:82:E7:2C:23:19:4A:DD:9F:A7:CE:1E:52:99:52:2A:5C:F4:05:2D:42
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
switch.businesses.ly
dd.010pixel.com
www.4am.jp
aaronwolf.dev
accessinternationalwork.com
menorah.aiira.co
backoffice.allesopzeggen.nl
www.amayapainting.ca
teleconf.astronautlabs.com
static.atomist.com
aumthenticus.com
axel-order.com
www.azutaku.tech
admin-staging.be-hookd.com
www.brokerfixer.com
payment.carcash.live
cargodrones.aero
sites.ceosconnect.com.br
web.charitysuite.uk
christo-photography.com
cliffw.com
demo.column.us
consoleone.ai
app.qa1.contingenton.com
coolplay.io
myshop.daily2you.nl
dimileeh.com
diwaskc.com
bingo.ebombo.io
www.emlynclay.co.uk
lch.evilmartians.io
www.fexap.com.br
flukejs.com
v3.getdex.com
admin.getpowerlink.com
www.getroadie.app
giobs.app
harimauabroad.com
healthbeyondborder.com
hegemony.jp
honyaku.ai
ians.it
live.icreatorconference.com
www.initthoughts.com
cloud.insightech.com
www.jhrtech.uk
studitemps-app.jobkantine.de
juguemosbingo.com
login.l-customer.com
linkpad.bio
lnr.com.ar
app.lumix.ai
www.marcreichelt.de
metachroma.co.uk
app.mikan.com
milkcoolers.com
zak-gestor.stg.mimic.com.br
motocarguero.com
www.myfarmisi.com
app.mylegaleinstein.com
elt.cns.net.tw
oboereeds.sydney
demo.oliveplus.cl
advisor247.parkalot.io
parliamentstmedprac.ie
dashboard.peakprofile.org
burgerbuilder.phunh.com
turn-life-on-form.piaget.com
discover.pieces.app
app.plai.io
play2x.so
qnape.com
www.quarantinedreams.app
recordx.co
www.rehabengineering.com
web.repairnote.es
www.sakinaskitchen.com
dev.scams.tips
shootzup.com
fatale-by-philipp-plein.sky-boy.com
www.smartaplearning.com
triviawinterhawks.sqwadhq.com
www.sskies.co
stleam.com
insight.synergy.net.au
www.synkronik.com
www.tamergabr.com
www.tamplin.net
cc-oncall-info.api4.thorbooking.com
exhart.tradedash.app
turkstartup.com
www.ueicube.com
robinai.uppatop.com
portal-staging.vagalumewifi.com.br
dev.visitame.pro
wanderingwithwattle.com
weibarlab.com
app.wellnest.co
www.wharft.app
verwalter.woonig.app
Other domains in certificate