Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=segmently.net
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 07, 2025
Valid Until
March 07, 2026
71 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
53:43:C1:4E:E5:24:B0:DB:E8:F5:BF:C7:D4:B6:29:C5:05:EA:F5:18:B3:94:73:9B:CB:9B:4A:93:93:FF:6B:E8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
thelyzt.com
portal.3dabb.com
adamduston.com
www.adeptconcretechicago.com
agricolainfinix.com
www.alexmorrisseysmith.com
ibs.links.appabrik.jp
aquiles.store
arcotxcomercial.com
auth.aziel.com.br
ballroomsocial.app
www.bavasacademy.org
bemidjicamps.com
banana-dev.brookie.win
www.order.btpshop.ca
businessmanager.space
busyworks.co.uk
app.cargomate.co
carlostierrez.com
operator.check-up.biz
drayush.co.in
shivampack.co.in
www.digitley.co.in
soybliss.dailycoffee.com.my
www.custompants.com
d7ventures.ca
dentx.ca
www.echo.lu
nga.f360.link
next.fashionsupplier.nl
www.firstcarsegham.com
flowlytics.org
gazingpensive.club
godsown.net
gottliebplumbing.com
www.gottliebplumbing.com
grooved.in
sassom.hml.guiasaudemais.com
demo.gunasolutions.com
gigafitforms.gymkee.io
hammerproof.com
hilaryandshane.com
www.hilaryandshane.com
imgoing.app
av-wedding.invito.link
johnchristophersantos.com
www.joshuacoquia.com
www.kreditkort.com
lakeai.com
www.lakeai.com
www.lambaba.com
www.landingmu.com
lelachocolateshop.com
dev.levelup.dental
lushistore.shop
www.marinavillage.app
mateega.com
mydesk.chat
dynamiclinks.myfoodlife.com
notiqoapp.com
prod.novorpm.com
omnigpt.store
online-islemler.orhanarslan.com
orlyreznik.com
panalfresh.com
panelminer.com
paquetteaudio.com
www.patina-45.de
playhenry.net
propertymanagerdb.com
purewaterhub.com
t15.rio15.org
roundrobin.pro
rutsal.com
firebase.saltsoft.pl
saudeemplanos.com.br
sawyerwealth.com
www.scratchtrack.co
segmently.net
www.shapehouse.cc
app.sieuve.com
skhonamathebula.dev
www.smartat.dev
smoothcomp.tv
monarch-ira.solerabank.com
stalcure.in
www.stalcure.in
demo.tebi.link
www.thefarmstandcookbook.org
theindianotakusummit.in
backend.theweddingstudiohub.com
www.thrifts.app
www.tobitobertson.com
tradegrid.club
test-havas.valentin.consulting
visafactory.co.nz
www.webnow.company
bsbpay-antigo.xptoconsig.com.br
yellownotes.app
yomefoods.in
Other domains in certificate