Open
Cached
·
just now
75/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=www.royco.co.id
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 17, 2026
Valid Until
July 16, 2026
50 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
28:02:D7:CF:D7:16:3A:39:8C:7A:35:65:83:A9:38:E5:11:93:AB:49:9A:35:42:69:50:FE:8F:79:9B:60:5E:DF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
97 domains
www.axe.us
www.aim.gr
www.algida-magnum.sk
www.axe.ca
www.axe.com.br
www.baba.hu
qa-brand.benjerry.com
secure.brucoffee.in
www.buavita.co.id
secure.cabukcorba.com
secure.careline.be
www.cif.cz
core.cleanipedia.com
secure.closeup-smile.com
www.closeup.ph
secure.compartefelicidad.es
secure.consumercarecenter.nl
secure.cornetto-lusso.ch
secure.cornetto.be
secure.cornetto.pt
www.degreedeodorant.com
secure.domestos.co.uk
secure.dove.com
secure.dove.com.tr
doveoxygenth.dovethailand.com
www.egoparahombres.com.co
secure.esa-youtube.elidor.com.tr
www.frisko.dk
secure.gabileszekabaratod.hu
www.gamedaydishes.com
www.gustuldeacasa.ro
secure.hellmanns.cl
www.hellmanns.cl
secure.hellmanns.com.br
www.hellmannsindia.in
www.herkessofraya.com
secure.houseoflux.com
www.ilovebakingsa.mobi
secure.knorr.be
www.knorr.in
secure.knorr.it
www.knorrpackguide.com
franchisee.lakmesalon.in
secure.lifebuoy.com
preferences.lifebuoy.com.br
secure.lipton.ch
secure.lipton.cl
www.lipton.co.id
secure.lipton.com.au
www.magnum.com.tr
offers.meleskincare.com
preferences.miraa.me
www.neutral.lv
oralcare-dcp-appshare.pepsodent.com
www.pepsodent.in
www.pepsodent.se
secure.contact.proderm.gr
www.promocjeunilever.pl
www.radox.co.uk
secure.rexona.com.ng
www.royco.co.id
www.seventhgen.es
secure.sunsilk.it
www.surfexcel.lk
www.thevegetarianbutcher.de
www.ufs-loyalty.com.tw
www.ulmysg.com
aatp-dev.unilever.com
aatp-prod.unilever.com
aatp-qa.unilever.com
claimsdigitization-d.unilever.com
claimsdigitization-q.unilever.com
myutip.unilever.com
ppd.helixbr.unilever.com
productivity-on-track.unilever.com
productivity-on-trackppd.unilever.com
productivity-on-trackqa.unilever.com
qa.unilever.com
rndproductanalytics.unilever.com
speeds-qa.unilever.com
zerofill-api.unilever.com
futuromelhor.unilever.com.br
qa.unilever.com.np
stage.unilever.com.np
www.unilever.com.np
www.unilever.ua
www.unileverfoodsolutions.pl
klp.unileverfoodsolutions.tw
www.unileveroleo.com
lqa-tpm-eur032.cd.unileverservices.com
www.unilevershopper.co.za
frenchstudio.unileversolutions.com
www.unileverthcampaign.com
preferences.unox.nl
www.vaseline.dk
secure.vaselinearabia.com
ytgadget.vim.in
Other domains in certificate