Open
Cached
·
just now
91/100
SECURITY SCORE
Certificate Information
Subject
CN=blog.sujayhg.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 28, 2025
Valid Until
February 26, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FE:45:71:24:C0:CF:4D:3D:B8:B7:F9:41:A6:4B:B1:00:5A:39:E6:31:4A:B2:2F:F2:26:C7:DE:01:1A:29:A5:DD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Basic
frame-ancestors; script-src
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer-when-downgrade
Permissions-Policy
Present
camera=(), microphone=()
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
webcontrol.es
a-sites.ch
customers.accomiio.com
o2.adv.br
www.akeera.co
alephantgroup.com
www.app.allergoapp.it
voicemint.alphaaiservice.com
andromedac.com
www.artlevinacademy.pl
www.arvoan.com
www.astroanekant.com
www.autocoding.me
biznezstack.com
www.bsanju.in
email-sig.buildwithstudio.com
bukakfestival.info
klurigt.bulbsort.com
chiaki-ito.chance-store.jp
chavesyasociados.com
login.chikitaverse.com
cloud-mind.eu
recommendation.aksel.co.id
admin.zdamwu.co.zw
seedreams.com.tw
juice-docs.creatorflow.io
sesja.dastudnia.pl
datarhythmacademy.in
www.datarhythmacademy.in
www.dentalmap.jp
auth-dev.doctransgpt.com
retail.dotapparel.io
loophole.doxle.net
drcynthiamc.org
easyhomeimoveis.com.br
tomasherrera.edu.co
www.tomasherrera.edu.co
rishikulworldacademy.edu.in
emanuelecaloisi.it
eriksvenssongrape.com
www.freshprojects.com
pwa.garnisoft.nl
kawagoeshi-1034443.ndljp.grikk.co.jp
app.hallotara.de
www.heckenmanager.de
hercampus.hirescholars.com
honketech.cz
tankgame.huseyinsamisari.com
imagecoder.site
mandataire.monjuridique.infogreffe.fr
pasha-margo.invito.link
www.jurcevichealth.com
www.kaamos.ai
pbe.keenerocketeers.org
www.kkstadionpraha.cz
www.knowtheirname.com
koreanacorn.com
lorenzogrobier.cl
madduds.in
melka-consulting.com
dons.meurope.org
miski.studio
mnkcare-service.com
moneysignal.jp
mvhospital.in
mydropy.com
nexoratriasentenergy.com
nichebuddy.app
www.order-hub.de
osd-consult.com
www.page64.press
progressocapital.com
www.publimusica.cl
www.rafflers.co.za
www.recrutamento-onlinejp.com
api2.rendr.delivery
revizeostravsko.cz
riichi.app
admin-mph.salesserver.net
savepromptonline.com
cdn.scicom.io
admin.sel.vn
www.sentryspotlight.com
www.solandra.pe
blog.sujayhg.com
sushi.partners
www.tb.international
testalents.com
theappsops.com
www.thestyl.us
tingxi.li
aphp-saed.toysfilms-interactive.com
marketplace.ulsemo.com
www.voleijam.com
app.econ.dev.int.weeswares.com
wendydecoraciones.com
www.wombatsoftware.com
admin.sharingenergy.wowdesk.jp
airyoriiicofe.yoroff.com
management.zencillo.com
Other domains in certificate