Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.voxmedica.it
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 02, 2025
Valid Until
February 01, 2026
80 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E4:F9:27:5B:3C:A2:7B:E6:00:8F:62:4D:F8:37:FB:CE:CF:12:6D:DF:1B:39:0E:8A:36:B6:21:F5:D2:69:CD:66
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.m-pwr.com
sharing.actjust.com
aksharabhog.com
www.alikaradogan.com
new.aminur.dev
www.antitrendlab.com
www.appinaday.com
artistaveio.art.br
www.bitnetservices.com
ib8-stg.bk8.network
bombuwalaconsultants.com
www.bombuwalaconsultants.com
force.bsp.online
www.cantlinphotography.com
wtgconstruction.com.ph
app.cookgui.de
cop30imoveis.com
www.couplecareroutine.com
redirect.credisol.uy
www.deeplatform.rocks
www.desdecasabolivia.com
dictionary-a195e.com
earnr-ai.earnr.co.uk
earthberries.co.jp
eratechlabs.com
www.exura.se
app.finmo.co.uk
fionawlynch.net
souscription.flitter.fr
habbit.geerdink.xyz
havlicekt.cz
hengsiri.com
www.horizon-afalula.com
csi.hublee.io
iadoisirmaos.com.br
www.mist.in.th
itayinbar.com
jellyjam.io
www.jojostad.se
jurassicrevived.com
www.jusmoto.com
auth.kidibook.fr
cv.kossatz.com
kyledev.cc
www.app.troca.med.br
auth.megpt.xyz
www.miamilakespermits.com
album3.kitaro.my.id
myrica.co.za
market.nileag.co.za
njasb.com
notai.no
www.onandoffagency.com
ovavee.com
www.peterline.ru
www.phantomfx.co.uk
pianowithronni.com
app.pickapier.com
poachedmovie.com
www.positief-kwetsbaar.nl
pranj.us
aday.productgenius.io
www.quit.me
rarefind.us
app.recatholic.org
rejul.xyz
www.rematch.cl
rifasportuguesa.com
dev-app.sashwatgreentech.com
scinteiflorina.ro
seguimiento.sebien.mx
shaheer.shera-ai.com
stefanolazzari.com
buddha.steven2k2.dev
m.stirlinghigh.co.uk
swamisamarthschool.com
sybau.art
www.tailgateminis.com
taki-vita.net
tdegruyl.com
life.temera.it
tepeglobalturizm.com
repository6.transitappliance.com
trustumate.com
tuneslines.in
uni-ods.org
upark.info
live.utterlycontent.com
vayuda.net
vdba.lk
vipses.in
panel.volumegroupsfx.com
www.voxmedica.it
watching.plus
wayanadroyalcabs.in
weeeb.com.br
wraffily.com
www.servicool.xittio.store
admin.yathit.com
www.yotta.events
Other domains in certificate