Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.digitechapex.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 12, 2025
Valid Until
March 12, 2026
76 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5B:36:C7:2E:DE:C5:27:1F:0C:2E:F1:56:8E:DE:5C:7D:EC:55:98:45:B7:91:73:DD:77:40:B5:E7:D9:E1:97:02
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
voltechqatar.com
link.adya.care
www.stream.aegpresents.com
alice-lim.com
www.aniwatching.com
asinus.hr
www.asorasset.com
bhushankoli.in
billett.no
brickchecklist.com
digitalinvitation.byvide.com
cadastrobrnapp.com.br
sapthaham25.chinnajeeyar.org
creamhub.co.in
www.coreputters.com
cb.cslifestyle.app
davidsurprenant.com
devfestbh.com
www.digitechapex.com
donnijssen.com
brochure.e-cclim.net
www.eduplanllc.com
elpeon.com
www.essensone.com
gestionale.esteticacruciani.it
fictionbasic.com
fyzo.link
dashboard.ghlf.org
goliveja.com
hcfbiz.com
hiveup.club
www.indianoilretiredofficersassociation.com
hpe-fs.intrinsicskyline.com
www.itointl.com
clementine.itsltd.online
ivelinakr.com
jabezsamson.in
www.jitpapneja.com
www.johnlarsendesign.com
www.jreznik.com
justdoingthedishes.com
report.kerzz.com
kozzet.com
lambasic.com
larskuijpers.com
testlinkedin.leahjia.com
lmtnextgen.net
madarsaislamiabaitululoom.in
margaretleecoaching.com
play.mastermus.es
mdp.click
ezydolem.melodyze.ai
metbrains.com
www.mig-radio.com
modrsy.com
muazara.com
mpp.dev.commercial-marketing.testapps.mymorri.com
admin.myworkshops.live
www.namehatcher.com
token.nerochain.io
cms.ohiocitizens.org
ib.onefx.in
operationsavelives.org
admin.bio.pmuc.or.th
mobile.pagerduty.com
pangramble.com
pet-mind-ai.com
admin.philanthrosphere.com
placepy.com
projectfix2025.com
quoori.eu
org.rayzeapp.com
login.reachmobile.com
fleury-wise.redfox.dev
redpoint-app.com
app.rezphereai.com
sandbox.rpc.sauvara.com
savina.net
biz.shroomcatcher.com
silentcents.com
www.smartcart.me
snyffr.io
storytimewithfriends.com
www.survivablemistakes.com
www.tableaurestaurant.com
rewards.tarapools.com
thetardyfuturist.com
babuino.thetislive.com
www.todotijuana.com
test.tostaduriacorcolen.cl
trumpisantiamerica.com
trumpisarussianpatsy.com
tryshiftt.com
www.uglygotchi.at
usefabula.com
usomagic.com
vivekchandra.in
waivethewait.com
zephyrusdigital.com
zimmysigns.com
Other domains in certificate