Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=weeknumbernow.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 28, 2025
Valid Until
February 26, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D8:4E:8C:15:D0:31:65:35:48:69:35:B9:BA:94:78:24:AA:7C:D7:E3:37:FC:A1:A3:01:B1:7B:B3:11:8F:1F:42
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.gogisenyitours.net
11521851.peerly.app
store.stg.act-node.com
www.affirmativetherapyproducts.com
agbosuperheroleague.com
s-dev.airtrip.jp
web.alenares.academy
alicorncloud.io
www.alsharqcalicut.com
anandabhavanuae.com
andrelucio.dev
www.appbebe.com
shell-webapp.applogsoft.net
arche-ch.ch
arizkazani.com
gps.blunomy.app
breakingwaterbassclub.com
www.buildartind.com
demo.c3proservices.com
join.campusshare.de
rfe.cimagrouplatam.com
link.clye.app
codinspec.com.br
hojadevida.com.uy
ustidchecker.comline.app
super.control-de-horario.com
convenio.app
www.cosm.run
app.cosminsavu.ro
diasdemae.com
info.diwima.de
dmitrijrysanow.pro
www.dofusbuilder.com
www.drluizantonio.com
admin.duckytest.no
grq.e2e.agency
ep.kulxtreme.eu.org
emissor.farmcont.com.br
fizzbuzzed.com
freeforfans.org
fronterahacks.com
www.gathara.org
www.globalriskmodeling.com
goodplan.app
app.dev.hagakure-gate.net
hannah-hunter.app
radar.hblan.co
accounts.int.hummingbirdtech.com
i-am-zubzz.space
x74kr.podb.incentable.com
itonchile.com
www.ivycoder.com
www.jason-pi.com
jimenezdaniel.com
jiwa.app
joyafterfear.com
kenshir0f.com
editz.kingsphotography.in
lawstudentslifeline.com
www.levelapp.com.br
gatsby.makroskop.eu
martinandbex.com
mdxltech.com
taxistjerome.megataxi.com
microinfoit.com
dynamic.moonshotsocial.app
www.naturallemed.com
www.nextbilliontasks.com
hippielucas.nilss.dev
world-soccer-highlights.okady.app
www.party-game.app
pehlivandev.nl
phicode.io
planext4u.com
pomodor.app
www.potries2031.com
pricesync.pro
projectnewm.io
www.roofhq.com
rubyengineering.com
fgr.scouthub.app
app.sherryssecurecargo.com
www.sheypineda.com
songtreasures.app
srs-admin-test.statueofequality.org
stirgwoltorders.com
stitchluxenyc.com
www.toiro.com
tonkatsu-tabetai.com
tttok.art
www.ugtravels.com
quiz.vchebotarev.dev
l.vroong.com
weeknumbernow.com
ferg.weluvtrap.com
app.wifime.id
wilsonshealthapps.com
woutverbiest.be
contractor.develop.wowworks.ru
www.zwiloo.com
Other domains in certificate