Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.movevirgo.co.uk
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 08, 2025
Valid Until
March 08, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
42:6B:AC:4E:02:BB:7C:9E:C7:9E:ED:75:E9:FE:69:39:C5:85:8A:D4:16:B1:24:13:DC:8E:4B:87:77:F0:74:34
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.8th.com.br
dyn.100sjump.co
api.delivery-class.28east.co.za
acaciainvestments.com
adansihealthtourism.com
link.adventistchurchfinder.com
altitudesmma.com
www.amipissed.com.au
andracar.com.br
mta-sts.artmann-holding.com
www.artmann-holding.com
mta-sts.artmann.tech
astranovauy.com
www.beerawardsplatform.com
casaldeluca.com
chiragvaghasiya.dev
www.ciarapost.com
authuat.cityon.gr
laworatory.cloudframework.app
coronadeal.studiorami.co.il
cogni-dev-appoc.cogniapp.com
www.2doit.com.ua
crefund.ai
www.crumplepaper.com
cybintcentre.com
dbrief.ai
test.dezandvisjes.nl
dizzyduo.com
transcribe.djnews.tools
interview.edzumo.com
mystic-square15.emad-abdelmaksoud.com
emrekaya.dev
onelink.agent.enucta.com
www.ericjoseph.net
user.esch2022.lu
admin.eyepafood.com
info.fatexfi.io
fatihdogan.dev
gdlu.foodle.su
app.form-publisher.com
www.gamusha.jp
modelos.gestionayudas.es
getavocado.com
www.heircut.ca
app.hommax.com.br
writeflow.inspedium.net
interviewsandbox.com
kbblink.kbbconnect.com
www.ksmutny.com
luhanh.net
lukesorensen.dev
cms.lwuga.org
www.app.markably.io
certificates.masteryacademy.uk
meikyokan-muenchen.de
www.melissawadsworth.co.uk
www.miriams.us
monftersanimated.com
www.movevirgo.co.uk
www.signup.myndlift.com
chatblog.nabettu.com
staging.nival.me
www.nworx.app
nurse.oakwoodfriends.org
console.opencoupon.jp
olympus.internal.paperbox.ai
piccadilly.paviado.com
pilatesbodyondemand.com
ponnarsankartractors.com
www.prolifeatlanta.com
www.propeller.ba
www.qadkorea.com
quote-machine.com
rensvis.dev
www.richardlsieong.com
riverlex.com
rosemontremote.com
rowanathleticscamps.com
admin.saidai-jumin.com
carlisle.scouthub.app
sentai.be
web.sepapka.pl
shinnelbrown.com
shrigoda.com
simonesestito.com
www.sirspiro.com
transkrypcje.speechzap.com
spgplatform.com
www.tampere-pirkkalaairport.fi
villa.tenxor.sh
www.thomatos.co
todayescape.com
gen-zero.tuematocky.com
uncommon.day
electrofishing-query.dev.utah.gov
vertimucentras.eu
www.waafi.ca
www.we-ms.com
blog.worapob.dev
yarcoo.com
Other domains in certificate