Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=auth.licitapyme.cl
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 06, 2025
Valid Until
March 06, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
30:C7:1F:F9:0A:F7:34:38:B9:E7:3D:61:85:50:AE:36:DA:7D:FC:20:E2:CB:84:FC:69:E7:52:68:C1:12:A7:2F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
vetlogic.com.au
10inning.com
ashley-sectional-config-cert.3dcloud.io
kululm.adeva.io
web.alice.style
www.archeosit.com
atacana.it
www.bityl.co
nail.bonbongame.com
www.boryagi.com
admin.brasilamericano.com
bumbleb.co
www.carnecchia.com
www.celikjantfiyatlari.com
cgmanasmitra.in
chris-harvey.co.uk
cineragastudios.com
testlinks.claz.org
clickboomsite.com
admin.cmartshipping.com
www.ratoon.co.in
firsteven.co.kr
www.codeonpetra.com
coiado.com.br
app.integral.com.py
csonah.com
web.cyberia.company
admin.deciml.in
notion.echelon.xyz
dashboard.elevatedbaking.biz
elvio.in
englandnetball.tv
epiqueue.com
fivemp.equiem.mobi
sbc.equiem.mobi
exporthealth.app
dynamiclinksapp.filmbox.com
netcabs.fleet.com.au
www.frammento.co
booking.fronterasky.com
portal-360.gemssa.co
haneyandsonpainting.com
heisenbergscomedystop.com
hygienecockpit.de
fdc.imalia.com.au
manage.mc.jayw.app
link.jooli.in
tickerize.keigo.io
stretch-app.kyle-kurtenbach.website
www.landlorde.dev
lastikasistani.com
auth.licitapyme.cl
cloud.magicqr.io
savegdrive.makeminespicy.com
showcase.mdra.world
www.measuremap.online
hangoutcall.mmcallsapp.com
mobileservicecentre.in
receta.myrealfood.app
nerd.games
www.nertzscoreboard.com
www.nickhowes.co.uk
www.nicolasong.com
nordsound.jp
app.officewall.tv
outofpovertythrueducation.org
ownbrands.app
participedaconversa.com
party-game.app
www.payswish.in
personcentred.care
audicenterbh.pessego.com
www.phaztec.com
stg.pagamento.portosegurofaz.com.br
brand.stg.promoboxx.com
app.qyobo.com
www.resizerecipe.com
www.rolo.family
www.scormhero.com
serenefire.com
sidedooraccess.com
singularitysociety.org
sintoniapet.com.br
soundtable.app
cisssgaspesie.spaq.com
stagecop.com
subconchess.com
test.sway.surf
swifty.link
todo.sz.sa
app-staging.teamflow.com
techlogix.be
tonsoffuntravel.net
tulipcreationsindia.com
links.uefa.tv
ukrainawpotrzebie.pl
jesusterres.velada.app
www.visvine.com
westminsterrecoverycenter.net
zantoen.com
Other domains in certificate