Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=optimumdelivers.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 27, 2025
Valid Until
December 26, 2025
34 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1E:5A:36:47:F8:A8:EB:F8:64:AF:1E:13:34:2A:31:85:CA:18:CD:B3:2A:DF:2C:66:D6:CA:DE:C7:04:7F:D8:C4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.adobeanalyticsfordummies.com
convert.00e1.io
app.12weekbattleplanner.com
arhaus-roomplanner-test.3dcloud.io
aaitcs.com
integrations.aldridge.app
alfredospedidos.com
dev.shiso.ambii.com
andreiweber.com.br
athenyx.online
audit.auctusiq.com
balidexone.io
bariselcisi.org
www.benjamincoutts.com
bills-manager.app
walkthru.bldghealth.net
www.blueenergia.com
photo-dev.bus20.com
app.buson.com.br
caddenewsletter.com
sl.cardbyte.ai
caseysinger.com
app.coriti.com
dataurl.app
www.dodovideochat.com
drwong-joseph.com
cerebro.eatmatch.app
first-year.euanfitzpatrick.com
floridademolitionservices.com
milestone.engage2021.framez.sg
libertycoin.freerfuturefest.com
fullstackservicesllc.com
goflysail.ai
gopalasvegkitchen.com
grandrailtour.com
www.gs-immoservice.com
i.hints.so
hirokuma.jp
iaappcontabil.com.br
donate.japancpo.org
www.kgp2ssindia.in
lang.blue
beta.likejesus.church
link-staging.lisnclips.app
api.staging.mailclerk.app
mandelid.com
www.marcmatvienko.com
mcdqr.app
memegram.space
miguelzurita.com
invite.moby.app
mridulbansal.com
www.multivento.com
create.mymealplanner.app
www.myreflection.ai
ie.nativeforms.com
type.normalize.asia
medlab.nt-me.link
officinawedding.com
optimumdelivers.com
optifleet.optimusride.com
client.otimizadordeforcadevendas.com
outofbodyinc.com
loroffgmbh.pacta-cloud.app
paketa.partenero.com
hosyu.pasokon.club
quantitydiscounts.payplaxe.com
jevitty.pieoneers.com
pitchbookerpro.com
pages.pitchfade.com
pixartplay.com
hachimaki.re2fe.com
recorra.online
port-forwarder.rhems-japan.com
ryerson.ai
saapsidi.com
covid-tracker.sauldesigns.me
seventechnologies.com.br
dev.shesafe.org
peppie.simonton.app
sistersuzie.ca
skyviewtickets.com
beta.southernsupermarket.com
www.splittaxpens.app
dev.synkro.co
techi.fyi
thedowlinglife.com
thefloridaindependent.com
sandbox.thepaymentbutton.com
link.timelesstoday.tv
uttaraconsultants.com
vasusen.com
www.vivefacil.app
wasakorn.com
itakeskus.weup.city
api-staging.xpersity.co
www.yidahaguirre.co.uk
yopxue.cn
m.yumealz.com
connect.vrqa.tevira.zymbeyond.com
Other domains in certificate