SSL Verification Bypassed
The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.
Reason:
Expired Certificate - the server's certificate has expired
Open
Cached
·
just now
62/100
SECURITY SCORE
Certificate Information
Subject
CN=as.beldowski.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 28, 2025
Valid Until
July 27, 2025
Expired
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DD:C6:C6:97:C7:AD:18:C8:D3:27:98:0B:92:59:70:64:59:88:51:C4:88:64:F5:8E:59:4B:B9:A9:B7:44:C0:32
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.kairobyte.com
net.123abc.com
2x10nailspa.com
www.a2ktechnologies.com
dashboard.adaptivefitnessmodel.com
www.angulardart.dev
www.avdigitalsolution.in
apg.aventi.no
hack.bayes.org
as.beldowski.fr
boxboxbox.org
ehndbxpagnap.brandbassador.com
braulioherrera.com
laundry.busy-tech.com
tourism-debug.collabo.tech
suprana.com.np
www.commondirt.com
connected-japan.info
auth.zebra.cyberhaven.io
devi-tool.danfoss.ua
www.darlingwebservices.com
qqq.devpixels.xyz
universal-sb.devpixels.xyz
www.dreamlook.ai
cats-playable-ads.html5.emallstudio.com
emorizm.dev
portal.esgt-benin.com
mindset.ety.ai
app.feuerwehr-arbon.ch
app.fitmama.nl
share.floom.io
termos-e-politica.fretec.app
journey.gallichan.app
www.hangargaraj.com
hpacs.co.uk
icezen.id
iffy.page
builder.ilyo.io
www.ironman-experience.com
jellingstone.com
www.jolk.app
www.karriardag.se
kid-t.biz
auth.koncept.com
kooch.co
archive.lifechurchlancaster.org
www.localfox.in
losalebrijesboston.com
www.markcheli.com
mchosts.com.au
med-health-portal-dev.medcury.health
leus.medewerkerstatus.eu
www.mentoro.app
metatech-official.co
misiontov.com
evaluate.walmart.mobilitymojo.com
www.mogflowts.com
movingmonkeys.co.uk
www.mtcharger.hu
www.multitoot.com
notebird.tech
nowch.de
www.onlyszar.com
www.palettebrews.com
www.pasttensedraw.com
live.patriumhealth.com
personivate.com
petipa-alk.fr
math.whiteboard.pirotech.fr
www.portlandcu.com
www.postal.gift
www.prabodh.in
www.qualifast.bg
www.quey.io
r6-stats.com
www.renown.ai
ringfencing.fun
testing.sabaq.io
adminsite.sangeethacrackers.com
sangeethacrackers.com
www.sangeethacrackers.com
securefutureinvestments.com
syd-demo-app.speakylink.com
www.srtacolombia.org
steadyheady.golf
www.stephenm.dev
www.street-defence.info
www.sydneyperio.ca
www.thoots.ca
touch-massagetherapy.com
members-stg.traktrok.com
vanord.com
i.verevio.org
customersupport.wallit.app
admin.wautix.com
www.app.wealthenv.com
lake.webcat.app
dev.ansatt.xl-bygg.no
delta.yesmktg.net
www.youth-economic-society.com
Other domains in certificate