Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=animiq.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 26, 2025
Valid Until
December 25, 2025
39 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
21:6D:E7:1F:FF:30:5D:5E:D2:DE:6D:80:EE:2C:18:E6:AE:20:9A:88:0B:DF:12:7E:02:AF:69:ED:80:2C:5F:1B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
topic1.lp.lizard-apps.com
aajtak.link
dev.airmax.ws
animiq.com
numberedheadings.bobswift.appfire.app
app.appfrog.net
auth.google.atelco.com.br
rfh.autolomate.com
barest.app
beachglass.io
blogsmanager.com
www.blugglenxt.com
www.boyvswomen.com
cdigi.fr
play.chesssquad.com
shopbuddy.cleverchuk.com
www.closethedoor.com
codewithshashank.com
www.coresoftdevelopment.com
nimiqvouchers.cryptopayment.link
curiositychocolate.company
bagnolet-noue.desirsgeographes.com
chatdid.didaticovirtual.com.br
www.dmdice.xyz
q1-myreturns.dpdlocal.co.uk
donut.eaglesvr.us
unifast.edunext.technology
www.edwincaspers.com
hd.evbatteryreturns.com
www.f4m0.us
www.fitsooth.com
www.geek-salon-products.com
lab.globopath.com
www.gm6.com.br
www.goagile.co.nz
x.gpnavi.jp
dostavljac.growtovchani.com
app.hivepath.io
dev-coverage.hostabee.com
imvedant.com
ualberta.inviewer.io
auth.google.ismax.com.br
www.jacobereynolds.com
jeterra.io
joaquinmartinez.mx
jonasjetschni.com
www.gif.khaleejtimesevents.com
kasboek.langewapper.be
latinske-kurzy.cz
www.learnwithnextgen.com
www.leo.ovh
www.letspointit.com
demo2.limitly.pl
www.maxiceramicos.com
dev.minsparta.ru
mnmax.fr
mobilepflege-petker.de
my.mobiquite.app
www.opximobiliaria.com.br
orda.works
www.education.uda.org.ua
osom.tools
www.plytas.gr
www.proxy.cards
snippets.publiccloud.group
auth.redcrew.link
baywa-kcs.rgateway.it
blog.richardli.zone
safike.com
saltsoftware.io
serverge.io
servesphere.org
serviceji.in
www.servizio-sinistri.it
www.blog.sprintso.com
www.steelemart.com
stefanxo.com
beta.timer.stiles.dev
www.streamsoda.live
bodamondragonmejia.swanmoments.lat
teletech.se
testeemproducao.com.br
dome.thingsibuilt.com
xr.think.digital
app.tigeraware.com
www.tonysbriggs.uk
www.traidingchem.com
turankerteszet.hu
unfinishedsymphoni.es
www.upmov.com
www.urugi-ic.info
vanessalagopneumologista.com.br
mock.vesto3d.com
www.vezfood.com
staging.vigilus.com
hr.viralfission.com
www.wahajhassan.com
tourcheck.wieprecht.link
cn.shop.yundaorders.com
zaynbhatti.site
Other domains in certificate
