Open
Cached
·
just now
75/100
SECURITY SCORE
Certificate Information
Subject
CN=www.joepena.io
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 28, 2025
Valid Until
January 26, 2026
80 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BD:F0:6A:4E:EA:2C:5B:CF:85:D2:01:FB:E0:53:CB:A4:26:90:D4:D7:C3:95:C1:B5:EA:37:98:56:D7:E3:CB:43
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
tanzraume.de
11xgrowth.com
abt.me
admin.acroworld.de
demo.agoodthing.org.uk
www.appleswithapples.co.za
danyslar.appshare.com.br
project-erp.arrowsoft.in
parisvolley.bfsp.app
admin.brandktm.com
www.brillianttnc.com
api.cardzap.me
casaqeela.com
ahghotels.checkin.website
guatemala.clau.io
waikiki.clau.io
www.cloudlandmusic.com
kptech.co.in
app.petdentity.com.ph
invest.csepel.hu
darkeinu-olimp.org
daxa.uk
brainflix.decursed.com
customer.ovn.devserver.cc
directory.ecfs.org
iestpmarianobonin.edu.pe
ehdokaskartta.fi
www.ep-floriade.nl
ericzcodes.com
link.fahrland.com
www.gallopz.com
garrett-and-claire.com
comeonkitty.goodcirclegames.com
gricey.art
gtminnovations.io
holmanshop.com
app.innate.mx
iseki.pw
itsecurityadvocate.com.au
admin.jaisaijicreditcorp.com
link-hiu-lai.jec-digital.com
www.joepena.io
www.joseyindigo.com
qa.mazars.kudosone.com
peraj.lapieza.io
www.loadout.info
www.lovespeed.app
maintain.me
ppap.maji-ky.work
matthewmorrison.dev
www.translator.metalearnapps.com
michaelgathara.com
www.microinfoit.com
midisetlist.app
moduli-magici.com
msgpstr.com
netreb.be
api.nitte.app
www.oopi.ru
openchoir.com
ozekrasnobrod.pl
pdftools.website
agros.pensioenstartpunt.nl
www.poripority.net
applink.possy.jp
web.postroom.app
auth-operations-staging.quantiful.io
qzz.me
r088.net
go.relaxingworld.org
rekvisisjon.remiks.no
docs.remotivelabs.com
meetwith.rhaouti.me
app.rodio.io
www.rohan328.com
connect-ng-user-profile.rxoconnectint.rxo.com
www.sfbanc.com
shiftogram.com
simontur.com
patient.sniffle.com
squaremobileapp.app
www.srivaristarch.in
demo.stmarknormal.org
design.strangevc.com
sunmoonrising.app
www.tal.is
www.teplickycimes.cz
lyrics.tgesstudio.org
sales.the-vineyards.co.za
thetida.eu
www.toddlerwalks.org
www.unboxedjs.com
viewports.studio
static.virevol.com
kampf.vjorngard.de
wujek.dev
www.xhop.me
app-staging.yachtdrop.com
ziago.co
www.zylmaison.com
Other domains in certificate