Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=prinslinus.be
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 20, 2025
Valid Until
February 18, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7F:C4:6C:02:C6:C5:6C:F6:BD:66:AF:C6:3B:A1:75:0B:4D:47:34:61:68:F7:A1:27:7E:54:79:19:DC:8A:EC:5B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.georgasheritage.com
88payments.com
ajmalchangi.a2000ekitchen.com
isign-app.a4b.vn
www.adamdetrick.com
www.admin.adventureholidays.dk
agilistic.ai
ajplumbingllc.com
fca-stage.alternexus.com
andreamarinconsultora.com.ar
www.appconcordia.com
arieazland.com
arqtechs.com
barsentech.com
bntech.dev
bookdatasolutions.com
www.boothpilot.com
www.burglarsnightmarelocksmith.com
cainpestcontrol.ca
admin.chamcong.app
link.coftenerife.org
comanox.com
storybook.cpit.app
www.crystalline-it.com
signup.curiositychangedrives.com
dariuspepo.dev
www.depara.com.mx
links-stage.deskhunters.com
dhammah.com
doitforthehood.com
drinkmy.app
gs.drums.education
links.endeken.com
cdn.escuelard.com
fabrigram.com
dev-izy.factorygroup.fr
fakgun.com
links.fanamp.co
6th.fcis2023.me
feeps.com.br
acecatanduva.g2canal.com.br
imics.gen11project.com
getbrevo.com
links.gilded.app
kuni.ginnypix.com
www.go-schwerin.de
hashitosystem.com
headlineguesser.com
humane-it.com
share.iamhere.app
www.iedycorp.com
dashboard.igive2.org
your.karma.life
kevcoder.co
kimandkeni.com
www.koonerlaw.ca
kosblox.com
www.kreativedesignsblr.com
lagustosa.com.br
lasciaunabozza.it
app.lingaros.com
admin.londr.com
markgoodwin.dev
virtualtour.marymountrome.com
locations.medicalid.info
meraya.co
bo.merchantgamewallet.com
buy.modulusseventeen.com
msafi.com
myofficestatus.com
account-qa.myvaillant.com
newagelidia.com
notedpp.com
app.onlybackpackers.es
os-form.fr
paralleltraders.com
www.policymarts.com
reporting.preview-solutions.com
prinslinus.be
promptsss.com
prowashlaundry.com
quynh.dev
collaborator.researchout.com
www.rudrashah.in
www.sakura.domains
serfutbol.com.ar
url.speedfusion.ph
dashboard-pro.sportip.ai
stickypix.co
stupin.fr
www.superfit.ai
go.tag.express
game.tannercottle.com
development2.tradewatch.in
lan.trgrally.dev
www.voxabox.in
admin.waching.store
portfolio.watertechstudio.com
www.yahdig.com
yrsa.dev
Other domains in certificate