Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=samur-ai.jp
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 12, 2025
Valid Until
February 10, 2026
81 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
98:92:04:C0:EE:6A:8D:82:F4:CD:D7:26:67:FD:C5:BD:26:30:66:24:24:4D:2E:6B:B5:24:E0:77:D5:81:F0:43
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.hatch.digital
300.io
www.hgcsonepat.ac.in
links-tootor.acty.com
aig-demo.affinity.do
www.anyflow.dev
app.audmate.com
bartzatelier.com.br
vattna.bbe.nu
begrakija.com
bitcoinwalletcomparison.com
www.blarecommerce.com
www.buildfinancegoals.com
www.casav4c.org
go.casenotesonline.com
anesonic.ottimosystems.co.th
www.codeheroes.cz
qa.edubot123.xbot.com.vn
contributor.pw
bleeding-edge.clue.manage.cuona.io
web-sporter-frontend.development.delcom.nl
app.digibooking.at
www.e-office-online.com
help.eceos.app
lockers.edgeofthewedge.com
edraprasetio.com
www.etheoncollective.org
florcastromanimpresiones.com.ar
a0ef.foodle.su
jp.fotobots.com
www.ginraku.jp
www.gradstay.com
hakol.site
healthfrequencies.org
homecanvas.store
horsecareapp.com
howtocancelfubotv.com
hyeji.dev
url.hyp.pt
press-pets.hypervr.games
scan.ignw.io
immedicure.com
paranaclube.ingresso.center
www.interactivators.com
iot-wias.com
devapp.istiqlalhouston.org
jacosanctuaryspa.com
tunglan.redemption.juicysuite.app
admin.keymarket.ma
preprod.latourneedesproducteurs.com
wedding.macki.me
www.mamtachauhan.com
mascotaya.lat
millidadlavash.com
www.misaunde.com
kalkulatorlistrik.kuntoaji.my.id
product.informacion.my.id
mystorymap.com
www.namopackaging.com
nettex.com.au
newgenai.io
front.nightzookeeper.com
nourykhayatcs.com
app.ocaimobiliaria.com.br
www.pangeapickup.com
varnavn43e.parkalot.io
parkmybike.app
partidostudio.co.uk
patrickandersen.dk
www.phondini.com
game.poven.ie
protradingskill.com
admin.pspkdevtest.net.au
telemedicina.redsalud.cl
app2-sempresoft.refiltek.com.br
graficos.reinaldoalguz.com.br
sales.revolutiones.org
www.roadhero.com
webapp.rockshop.ie
samur-ai.jp
scoremate.online
pedidos.sigfood.com.br
admin.siriusplataforma.com
lib.speakylink.com
ssddroptaxi.in
www.stefanxo.com
www.tabl.ist
shop.tangermarkt.nl
tecnopaycr.com
termaspacu.com.br
www.thetaxchecklist.com
shinehill.thousandfootmile.com
core.tpf.be
tribeskart.com
trinance.pro
dev.upnotch.com
voicevault.in
app.engage.ffswrcuatwrkekznmzjt.voyagernetz.us
wesleymb.com
yarapay.lk
Other domains in certificate