Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.jstinii.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 04, 2025
Valid Until
January 02, 2026
32 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E6:4B:80:C3:99:0E:2E:C8:57:8E:8B:39:7B:44:E3:7D:8D:86:62:97:0E:D9:C3:C6:9A:3A:55:74:39:A8:48:F1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
unicornsnow.com
360tourviews.com
resources.4chakka.in
appmaker.live
www.aradhyamultispecialityhospital.com
gini.arghyac35.dev
kredent.arghyac35.dev
my-aura.aurasuisse.ch
autoescuelagiachello.com.ar
www.awsavailability.com
daftar.bangkit.academy
bimel.eu
colorswitch.brayancevallos.dev
deeplink.chattylingo.app
www.check-emails.com
ssl.chowari.jp
app-staging.clear4u.co
farajapest.co.ke
test-admin-app.daikin.com.vn
creativewonder.studio
mtg.danielhannih.com
www.destaqueosalinstante.com
hero-routes-purocuento.devbeebit.com
www.diplodoco.com.br
familyfeud.dmzapps.com
www.domdemon.com
signup.donorflow.net
www.dualwieldent.com
ejo.ngo
em88play.net
app.fello.dev
www.findallmyaccounts.com
appleid.freeje.org
www.fypmatch.com
www.goldvintage.net
www.green-zone-turf.com
www.grupotranscer.com
guardo.app
hainguyen.dev
helenvanzwetselaar.nl
admin.homefoodplus.app
www.huayyakyai.com
huckle.link
image-compress.org
www.instechsolution.in
acfun.io-ft.com
moto.iwarranty.co
www.jaycode.in
jesperspexet.org
image-finder.jiricech2059.com
www.jstinii.com
inventory.kaleplus.com
kiithub.in
kincasasbuenas.dev
lebounce.org
www.lebounce.org
liff.listnow.app
www.liu.center
www.lixiviume.com
asinflow.masonlab.cc
widget.mayamd.ai
www.myfunily.com
www.mythicmattress.com
www.nathano.dev
www.navainnovation.com
site.nogiro.net
optimodo.co.uk
dev-ilsc.pacificricecompany.com
pflegebildungsinstitut.com
prochazka.app
pqueiroz.proexata.com
www.pugpocket.com
qubitalchemist.com
test.risticlabs.com
robinjeljoe.info
robstar.org
sabooezone.com
www.sageaaa.com
cms.ship2cu.com
staging-app.ship2cu.com
shophy.in
www.skm.vn
admin.sonamachinery.com
www.sougile.com
wheresthebox.sqkii.land
startopx.com
texly.app
thinkintellagent.com
ibafnd.ticketing.center
toztoplamamakineleri.com
www.transworldiq.com
www.truckerstars.com
www.tsswira.com
www.unikhire.in
vinterestapp.com
www.vinterestapp.com
wudzup.com
play1.x09play.com
yinzer.net
jotion.zackhu.com
Other domains in certificate