Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=pianolessonsaberdeen.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 12, 2025
Valid Until
January 11, 2026
54 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BF:77:B8:A7:80:22:79:48:AF:4C:3C:4E:05:32:62:93:8B:E3:48:0B:FD:F6:8D:A1:AD:9E:14:13:10:BF:AA:B8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
bangalore.dropstaxi.in
dharmapuri.dropstaxi.in
dindigul.dropstaxi.in
kallakurichi.dropstaxi.in
madurai.dropstaxi.in
nilgiris.dropstaxi.in
thiruvallur.dropstaxi.in
tirunelveli.dropstaxi.in
tirupati.dropstaxi.in
tiruvallur.dropstaxi.in
tiruvarur.dropstaxi.in
white-label-account.3dcloud.io
cpid-lips-fe.aisuperior.com
www.alchimiagelateria.com.br
alex-rubio.dev
rental.appac.us
qapagarme.appshare.com.br
onetouch-link-stg.astropay.com
checkin.eco.atomx.asia
mis.eco.atomx.asia
byebyeq.com
chaieb.fr
jacem.chaieb.fr
app-staging.deckd.io
dynamicbineuro.com
eliconley.net
epicycle.media
links.furryflirt.co
gabrielefranchitto.xyz
gamic.io
www.glisspass.fr
riseandrace.grigco.com
www.hikepreneur.com
dynamic-notch.iamzachmoore.com
acceptance-de-nnl.input4you.be
canvas.intuitiva.cl
isitwimdy.com
testing.ivlivs.dev
dotshub.jincongho.com
discover.jumpseatmedia.com
l-store.pl
lamfoods.vn
www.lasallecamps.com
www.leopainters.com
staging.app.loiale.com
www.malkahtani.com
www.mariselacastro.com
nexusaistudio.com
blog.nouvellelune.com
act.nuzzlet.com
ozkansari.com
auth.petmeetly.com
pianolessonsaberdeen.com
www.pieterjanderidder.be
wir-sagen-danke.pixelgenau.com
covid.preversalud.com
community.projectrotini.com
promptvisor.net
punkillegal.com
asa.qitech.digital
auth.quix-vpn.com
link.railboard.com
app.rdclservices.com
redcandle.in
test.regenhive.com
rkptravels.com
www.rowanathleticscamps.com
portal.s3ntin3l.com
www.sahemaldajani.com
www.savocoffee.com
install.self.plus
www.sesattest.com
distribution.shortedfilms.com
webadmin.shreeshanmugacrackers.com
simplywayfoods.com
www.smimportdiesel.com
softnative.dev
brazil.solomonschariot.com
votacion.sosadiazeventos.com
www.speakeasy.fan
www.stepoffaith.church
stowblockchain.com
thegaggies.com
tinyview.com
transitions.work
dev-1.trutopia.com
pesquisa.uiclap.com
www.vararuchiartgallery.com
vaxyvax.com
blog.verbatic.io
mobileapp.volotea.com
www.vyaslife.com
webuyanyvillas.com
www.westernslopesoaring.com
wildlifetraxx.com
wishcompta.com
x-squad.io
app.zakovat-savollari.com
zaywindiy.com
zwiloo.com
Other domains in certificate