Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=initiative.roadcast.in
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 06, 2025
Valid Until
January 04, 2026
41 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
35:09:38:0F:B7:BE:1F:72:27:B7:8A:B1:6E:10:41:B3:57:D4:B6:12:40:CD:12:FE:B9:C2:80:BB:A9:7B:F8:DC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.app.soco.market
app.aiapinerolo.it
www.altitude-bi.com
www.apolyta.com
ilosttime.appatlab.com
artelocal.eu
www.bidmytires.com
bundle.blurb.fm
pensioenbij.boostgroup.nl
www.bradycarey.com
report.cyberfishing.bycopilot.com
siuh.careinstructions.net
aura.unip.com.bo
develop.community.money
www.coyanservices.online
sofus.curlaid.net
datallurgy.com
anfrage.datenrettung-frankfurt.net
gameframestaging.dev-crazygames.be
energiasonora.xyz
connect.dev.evertransit.com
everydayxray.com
pro.farfel.cx
www.ferolmo.com
home.fitzyy.com
gabbyasuncion.com
www.gabicortes.com
gamebreaker.ai
geteco.app
app.ggcity.org
portaal.gonectar.nl
www.gorillasports.at
gskkumar.online
hashiban.nl
www.heidi.ro
www.heisenbergscomedystop.com
www.honeycombtech.org
supermercado46.hrtech.com.br
welcome.icibot.com
collectionofmaths.indiandevelopers.org
link.jeanninmaintenance.fr
imgcap.jingjietan.com
www.joonasnuutinen.fi
www.jowall.kr
jpetrzilka.eu
ksda.tw
app-dev.le.mu
dev.leasera.com
testdomain-dev.lfv.jp
www.liberty-tips6.com
mannan.is
mathblaster.us
www.mdln.fan
blob.play.medeintegra.app
www.microwavemanifesto.com
www.mitwire.com
motiondesignelements.com
offerwall.mychips.io
admin.myfinancialadvisor.com.au
myta.la
www.newsreports.in
www.niba1122.jp
ksh.nilsbenz.ch
app-vitalii.novaltrade.com
pame.cy
www.panian.net
3dviewer.peartech.in
pg-advertisement.com
play2x.be
www.proangular.com
projectbluff.com
projectcelis.com
www.projectstanley.com
stage.psybitcoin.com
www.qdup.com
tienda.quqo.com
www.rainart.app
panel.vanilla.rephrase.ai
resolvi.cloud
roaak.com
initiative.roadcast.in
sakewave.com
skillism.com
skyquestlabs.com
smdc.sleip.com
smileyisland.com
solcitosaludmental.com
spacerocks.live
speelwhocares.nl
pro.sportip.ai
www.stepupformembership.org
fastai.themobitech.com
www.thinkvote.io
tomwedgeimages.co.uk
trebolsonorense.com
www.unbroken.digital
cliente-dev.viacertabanking.com.br
sp.vinid.net
www.waterstone.app
links.waveshine.com
Other domains in certificate