Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.focopyme.info
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 15, 2025
Valid Until
January 13, 2026
60 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
99:A7:50:CC:66:FE:0C:3C:7D:D8:44:73:B5:0B:64:F0:B2:CF:A0:56:B7:8B:D0:43:46:67:EC:BB:F4:BF:7F:3E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
tusitioenmerlo.com
ai-mapper.com
www.akokomarket.com
tms.amavatech.com
anaakun.com
40th.andreatondelli.it
atulyabhinav.com
www.autopaquete.com.mx
www.avangards.io
www.baacinnova2.com
sharinguat.balloonair.tech
um.baronet.me
brfitnessdev.biharcoder.com
www.bobcampbellpainting.com
sven.budak.info
www.budgepro.com
embed.campuspano.io
lithium.chotikarn.me
clauxchavarro.com
covid19.codebanana.io
coinlivescan.io
coa-dapp.cointools.me
vzpdev.com.es
dashboard.cornercart.io
www.cryptoqo.io
dev.cuddle.me
stg.cuddle.me
app-stage.daetama.io
daniciti.com
dantiapp.com
mobile.debateit.io
www.edpal.app
integra.usal.edu.ar
eduvident.com
exeno.elxa.io
equinoxartgallery.com
smart.fashionsuite.com
www.focopyme.info
www.foxfox.io
beta.getmubarak.com
gokulraja.com
console.golioth.io
projects.golioth.io
zephyr-sdk-docs.golioth.io
www.hifitness.app
iidokoro.com
app.indomela.com
www.internetobject.io
slp.intrinsicskyline.com
invoize.me
jackpooley.io
juliataranti.me
kosme.app
lady-fitness.cz
literarymap.app
www.maxmartynov.com
test.meger.io
mentalizate.com.mx
pre-alpha.misolla.app
saohai.misschool.net
mjcal.app
mjkwak.me
dashboard.mother.life
mundosirrus.app
www.mvhs.io
catacademy.naeron.com
narongsak.me
app.nlnk.in
noda.law
greenbuttoncsrqa.nspower.ca
www.orton.io
api-beta.pharox.io
smarti-development.pharox.io
smartmove.pharox.io
demo.pinlabs.io
budget-fence-company.preview.prosmeethomes.com
www.puunkaatopalveluttomiriihimaki.fi
www.questdot.io
www.ravichaudhary.ca
v5.rnfirebase.io
app.see6.io
business.sellox.app
simplassur.app
rmdh-dev.sipora.io
wych-dev.sipora.io
www.solo.md
www.sonimathsclasses.com
sowetostyleclothingstore.co.za
dash.swarmrewards.io
app-staging.swiftio.io
solardemo-staging.swiftio.io
theslip.io
www.torneionapraia.com.br
jumble.trainiapp.io
appstorereview.app.wakuas.com
sp01.connect.whyper.tech
youdex.io
www.zone-ai.org
www.zor.lu
zukai.io
Other domains in certificate