Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=rixdorfer.de
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 21, 2025
Valid Until
February 19, 2026
84 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
31:03:6D:25:D0:2D:7F:E1:7D:45:09:8D:44:A3:EB:21:CD:AB:EC:AA:C7:3D:35:80:0B:AF:24:25:28:C1:1D:16
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
theagendaapp.com
www.22dconsulting.de
abcdireito.com.br
www.abidjanan.com
airflyff.fr
salon.almazajgroup.com
andrii.us
starmate.appsfy.net
www.atl-gs.com
ayazbaig.com
www.banya.ai
beimnetzewdu.com
biharf.app
binsard-martine.com
blackholeinfiverse.com
admin-dev.blackuptech.com
burnhive.help
caioandrade.dev
callers360.com
carolinawallace.com
cfep.com.au
cidevelop.com
rpdavshahabad.co.in
akama.co.ke
completelyhappyspirit.com
cwuilleumier.me
www.debtcloud.es
drprabhasdentistry.com
dwsi.in
e-igjs.com
www.eamona.com
easyticket.ai
etfn.io
invite.eventfour.com
www.five28hertz.com
explorer.forgetfulsoulapps.com
app.foyerapp.co.uk
frucun.com
order.fyre.app
gabrielbarreto.dev
www.getcontainiq.com
www.happy-broker.com
iamkushagra.com
iansvg.io
inifresi.com
prodlinks.alispa.interacta.space
qa.inventoc.app
www.izabia.com
julianaugustus.com
www.kanishinfotech.in
kasgai.com
www.klimentowicz.com
lanareiknivel.is
undertrees.langhoangal.dev
stetson.leaguesquare.com
liftset.com
littleshrub.com.au
www.luxuryspainproperties.com
manhammer.ca
www.markriggan.com
quizzes.mattchaffe.uk
www.mbkbrows.com
mirotsanev.tech
monotrail.in
montoys.pl
www.newpaper.app
karadpatan-agm.newsbharati.com
nfhhc.studio
dev.onespacesecurity.com
www.othellonia.com
oziomaogbe.com
stage.piscinapp.com.br
www.protophaze.com
www.puntuz.com
checkout.staging.quickcheckoutpage.com
rahulg.dev
ramin-asadi.com
tools.rayoapp.com
www.recur-game.com
richardperkins.net
rixdorfer.de
rocketmeme.live
wishlist.rohitkaushal.dev
telemeddemo.sevaro.com
shalalasha.com
simon-says.fun
spinningtop.it
link.spladunk.com
www.srilakshmidevihomecare.com
standardestimation.com
strapero.app
bodalorenayarman.swanmoments.net
connect.theismaili.app
top10coupon.com
www.trailprep.com
urbanwindhk.com
vitasapp-qa.vitas.com
go.wheremightilive.com
demo-golden-plains.wiselysoftware.com
yantra-mech.com
Other domains in certificate