Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=polit.ivan.digital
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 24, 2025
Valid Until
March 24, 2026
80 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EE:14:DD:73:74:0D:8D:8E:7D:A7:F3:B3:71:22:6F:AC:76:C6:54:34:E3:2B:12:2B:7B:0A:C0:C4:4E:9E:DC:77
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.element-e.com.ar
ovr.1nga.com
wavoir.1nga.com
aantharik.com
app.aitoma.id
www.akbucek.cz
shop.alxios.com
www.animesoc.com
aqcparts.com
tetris.bbangdarr.com
been-here.com
insights.bestcitycard.com
bitsbee.net
www.bizmarketplace.co.uk
www.bytewise.hr
cauldron.news
chatteriedelaroseecartlate.fr
deeplink.chommade.com
civoys.com
applelink.co.kr
hearingaidfit.audiso.co.kr
www.stayvote.co.kr
codeexpress.tech
stopcovid19.codeforshinjuku.org
www.operations.cogniteapp.com
playground.baget-ramka.com.ua
mkt.roboworld.com.vn
www.cyberguid.com
htmltools.dailytools24.top
demo.dashrecon.com
deepworktrack.com
app.digitalaligner.com.br
ai.abcdev.dpdns.org
s.ealingmom.net
simulador-v5.educampo.cloud
eevn.band
www.elsrwifi.com
www.eluaproject.net
nerf-ultra-challenge-2020.html5.emallstudio.com
everyday-fortunes.com
app.fitvew.com
customer.fitvew.com
www.app.fitvew.com
www.customer.fitvew.com
golftracker.flodataanalytics.com
dev.ftrustee.com.br
gowestconf.com
budget.greenetx.net
greenootech.com
gttciassetmgt.com
cryptrac.h-it.tirol
writerforge.holdenclark.com
hoobukuro.com
www.hootlboop.com
instrutorgo.com.br
monetary.ivan.digital
polit.ivan.digital
jamesx.co
www.jamesx.co
ads-txt.kika-backend.com
app.lajaraba.com
landon-miller.com
libertytips8.com
loexe.com
lista.gpcargo.log.br
luxedrivecars.com
login.magiko.ai
manna-fs.com
marshal-ai.com
www.megagaming.co.za
www.momile.lt
maliedu.mongcoaching.online
mthree.app
www.myhospitul.com
nemoboat.app
www.neurozen.ai
odioloscarros.net
orkiv.com
www.ourashevilleescape.com
admin.placemeet.fr
auth-homey.plantwithwillow.com.au
app.predadoresufrb.com.br
cl-sv-quiz.randy-classroom.com
br7implements.refierelo.app
www.sagf.co.za
app.salamlanterns.com
www.sempta.com.br
demo.smartschooladmin.com
www.storyable.de
www.swiftflutter.com
syteoslabs.com
results.teamracing.com.au
www.thedeck.poker
www.tryfitch.com
www.unilevbrasil.com.br
app.vasware.fi
visaflightthai.com
wantage-markets.com
www.zaaplex.com
zertify.app
Other domains in certificate