Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=sarawaldispuehl.ch
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 15, 2025
Valid Until
February 13, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E8:62:9F:C4:DA:3D:48:C0:2F:AE:3A:82:D2:76:02:A2:3C:15:64:47:BF:D1:01:27:C1:E7:5F:3D:73:E1:40:6C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.harpnote.net
joy-360-spins.3dcloud.io
app.4thcode.io
abhishekanand.live
www.abp-talents.fr
app.accuwriterpro.com
aigirlfriendworld.com
www.ailes-dor.co.jp
www.aise24.com
americanafc.com
www.apsoftsystems.com
www.austta.com
s.b-sw.co
dev.bhencode.com
dev.bitspl.it
www.bpan.digital
auth.breakingequity.com
ota.camping.care
editor-beta.chipatrade.com
tutorbee.co.in
friendsoft.co.kr
www.friendsoft.co.kr
coachtravel.co
www.cocoacomics.com
colinlandry.com
www.ihsanyurekli.com.tr
dateivergleich.comline.app
ramenchino.corntech.com.mx
names.creativeusernames.com
trumpet.davidecampello.app
digitaltwin-summit.com
auth.donemode.com
dracompanha.com.br
www.drimgar.com
egehost.nl
www.elniski.com
emmardeinstitute.com
ethank.tech
www.etherumx.com.br
wp.evajewellery.in
catalog.fandance.ru
www.fastfund.co
www.favcyskillbee.com
web.feedad.com
yellow-cab-chi-traveller-demo1.us1.fleet-dev.com
devfest2023.gdgdouala.org
devfest2024.gdgdouala.org
geochrono.org
development.getevive.app
e.globalmarketingsummit.org
www.gofent.com
highpowerelectric.us
highschoolintern.us
www.hittravel.vn
indexoflife-qa.com
d.jazztv.pk
amethyste.jeux.nc
ecommerceguru.km.ua
name.kmcnellis.com
www.krokis.net
laiglesiafiel.com
lapphund.no
bdash-docs.leach.tokyo
loenluftsportklubb.no
loggyconnect.co.za
shareapp.lycheeapp.org
memoiras.se
mercedespasco.com
mferuscomelo.com
monopolywallet.com
nick.motorcycles
admin.novi.store
www.pdmsoftware.net
juliet.vm.peterjin.org
www.pigmentaarbetsplats.se
praser.cz
oauth.qaburp.one
my.rebalance-center.com
ribbook.nl
www.samy.pw
sarawaldispuehl.ch
www.saucepantv.net
www.shiawan.net
my.showroom.app
sidretmangan.com
www.sidretmangan.com
admissions.sjc.co.za
talnurt.xyz
timebloc.app
totil.it
example.tournament.events
untaggable.info
www.vacuumcenter.com.br
www.vizdgtlmrkt.space
ecommerce.wareclouds.app
forms-webui.labs.websheet.io
sl2025-webui.labs.websheet.io
con4.xarifa.co.uk
yglcs.com
yourbiz-platform.com
Other domains in certificate