Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=frantisek.slivko.net
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 14, 2026
Valid Until
April 14, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D3:6B:1F:F8:6E:38:3A:7E:A7:13:17:7A:8F:79:5D:B4:BF:A9:83:35:1D:E4:B5:8C:3C:45:A4:55:D9:61:52:B3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
vwpnt.com
rastreo.99minutos.com
firebase.agaton.ai
lms3.alkhalejiah.com
amritjeet.in
angularadvisors.com
threegardens.io.animaetech.com
www.apogya.fr
1pix.app.br
gptdocs.axioma-in.com
benjaminiannetta.ca
ussd-kcbgroup.bluerobot.com
cabanalabs.com
carnvixclicks.com
lumen.ai.lmn.co.ke
iot.vipagri.co.th
www.stoneartpeyzaj.com.tr
copyflow.io
fel.ct.gt
daling.xyz
ddodg.com
www.deadbeatjudge.com
delphineicart.com
www.digitalfrete.com.br
www.displayflex.dev
www.dramarielrivera.com
www.edgaralcolea.com
eenotes.net
www.elartedemivejez.com
w247.fndrsng.com
cc.gameolive.com
www.garcezmoveisplanejados.com
admin.touhou-flea.ggtk.dev
globalinvestmenthub.com
grosshanten.com
hestrohospitality.eu
pharmacy.hippocrades.com
ideagraph.ai
www.innoanime.com
app.joinjobox.com
products.jungroo.com
kiddosjrz.com
kingshotcompanion.com
www.kritinjoshi.in
kronfelt.com
lendtel.co.za
www.linda-lmft.com
www.maheshwarischoolilkal.com
www.mandrassociates.co
mariospizzaworld.megapos.store
monhanquoc.kr
ar-sample.msoler.dev
www.myticketprice.com
mzscorporatespark.store
personeel-test.neerlandia.com
nirvaanservices.in
omnispace.design
zoom.onscreeninc.com
www.derechocorporativo.idem.org.pe
www.osteopathiepraxis-otto.de
oxustour.com
sandbox.payforme.io
pfzombie.com
phoelyx.com
kalinga-exhibit.phonfo.dev
planr.pw
plantguard.online
auth.promptee.app
auth.wireless.raza.com
auth.readifa.com
reprar.in
rileycorzine.com
rubyansh.com
samithemepark.com
www.schmittstudios.co
sezgi.co
llnadmin.sgfv.be
sharptools.io
siwa.io
frantisek.slivko.net
stg-scb.strategyconsultant-bank.com
forms.synx.space
taisonpl.com
www.techshelter.africa
admin-beta.themediaant.com
transcendentreason.com
udayahillscottages.com
vanguardindustrial.org
swarigama.vidyagiri.com
academicorigin.vifytech.com
www.vitaljobs.ae
vuequant.com
www.vuglar.com
www.wantrobapps.com.br
wataash.com
vyapakdashboard.wavepredict.com
client.webmuds.net
jpn.workspace.training
youlikecoinz.com
yraheem.dev
Other domains in certificate