Open
Cached
·
just now
78/100
SECURITY SCORE
Certificate Information
Subject
CN=rgstonecraft.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 13, 2025
Valid Until
January 11, 2026
46 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
76:78:B6:BE:70:3B:98:5D:07:3B:F4:BA:3F:2B:77:48:DB:EC:B5:5E:F1:6B:62:40:43:54:15:1C:4A:56:FB:F1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Weak
require-trusted-types-for; report-uri; object-src; +3 more
require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport,script-src 'report-sample' 'nonce-TJAOWspMQwCbd6Xe2911wg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self'
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Significantly strengthen CSP directives
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
verve.money
2024worlds.com
ace-app.io
appointments.ajyadclinics.com
staging.api.appjusto.com.br
aromatherapymatters.com
www.beachavenuestudio.com
dev.partner.controladoria.beehus.com.br
www.bestsite.app
auth.bostani.com
jerezdigital2024.bracelit.es
www.c-e-s.co.za
link.cartoes.digital
cdi-hvac.com
api.click-defeat.com
staging.cloudmessage.io
l.kartukreditbri.co.id
www.wealthtick.co.in
app.connected-citizen.com
neuroscience-resources.crg.eu
www.daedalus-cnc.com
coexlit.dejavuengenharia.com
eaglebox.studio
www.ehitcs.com
www.eightpixelssquare.com
accounts1.esarwa.com
eurovision.esony.net
www.fulfillmenthero.co
pagos.futuralabs.mx
globaltouch.icu
glow-beauty.uk
saygoixe.gocheap.vn
harshtonde.com
i-am-in.org
www.integritykerala.com
www.inventariopia.com
www.jardovamapa.cz
www.jasonharthun.com
kaji.joey.town
www.kelvys.com.br
kensingtonregeneration.org
www.kido-freiburg.de
kiga.kitanga.dev
koshkadom.ru
leosias.com
www.letztok.com
chase.manning.dev
panel.mentatickets.com
www.michaelblonsky.com
mmaxence.me
notification.mournary.com
www.nonzerosumsolutions.com
nrubio.fr
www.onitfashion.com.br
ordereasy.onroad.app
www.oxpure.tech
pasaportedigitalperegrino.com
event.pathway.vn
app.zucchetti.preprod.paymytable.com
order-at-table.zucchetti.preprod.paymytable.com
prontotv.pronto.es
propadda.in
qaradar.com
rgstonecraft.com
www.rgstonecraft.com
russellyazbeck.com
sandbox.rpcadmin.sauvara.com
beta.sgsposts.com
seller.shipxanh.com
shreeshanmugacrackers.com
skensaku.com
souvenir24.eu
loki.superea.sv
share.taipeigirl.com
tecxick.com
www.the-thompsons.com
viewer.the3dapp.com
dev-interface.theos.fi
www.thepropour.com
tickloop.co.za
tinderbanned.com
dash.tooq.me
torialwines.com
www.torialwines.com
tuliwines.com
www.tuliwines.com
uas.usp.center
vapidfire.com
verenigdamsterdam.nl
www.verenigdamsterdam.nl
votedemil.com
admin.walliance.eu
checklist.waylogtech.com.br
econ-app-dev.int.weeswares.com
wikimedianet.com
werewolf.wildotto.ca
woodlanddb.com
www.workingfox.com
webinator.xelbera.com
zeal.de
Other domains in certificate