Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=posada.icentral.net
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 20, 2025
Valid Until
March 20, 2026
59 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
49:27:7B:FF:37:A6:A5:AC:61:89:39:6B:A2:8C:48:43:FD:90:2F:0E:5C:5F:F5:D7:14:6D:B3:2C:B7:9C:D5:8E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.mabase.app
office.1sttimesom.co.uk
gen.3d-glass-ui.com
abdullahtahir.site
absoluteomega.com
navigos.acuizen.com
ahbadvisory.co.uk
app.ajedrezformativo.online
alexandersullivan.com
www.alexandersullivan.com
alldone.team
altitudeteams.com
rowing.altitudeteams.com
wms.americantiledepot.com
aroniksolutions.com
pomodoro.atrand.org
staging.basketballireland.tv
benjnz.com
blackpanda.tech
www.blackpanda.tech
bossigaretta.com
www.bossigaretta.com
businesshappenshere.com
firebase.cacauchaua.com.br
cathys-way.gr
discipulo.clau.io
holisq.clau.io
www.jicomz.co.kr
codetogether.dev
mirageiot.com.tr
www.sozcuk.com.tr
creperie-moon.fr
staging.app.cumlaude.travel
www.cygan.io
pilot.devpit.store
drhmediator.com
www.drhmediator.com
dyrmalabs.com
oee.effimetrics.com
www.emptyidea.in
efiles.enscygen.com
nantimeter.ernandes.dev
registration.fitoutawards.ie
inventory.fnfapp.com
www.gdpr.direct
www.address.gitdata.ru
halam.cloud
hidden-layers.org
mission.hiddengrind.com
hkintercity.org
hpauctions.com
hustlegpt.co.uk
metodo.iafacil.io
posada.icentral.net
www.indicompass.com
plimpton322.influential.digital
ioskonf.mk
www.jicomz.net
cyclone.jumps.ch
lea.com.co
www.lifeissimple.xyz
texno-mayster.lutsk.ua
mariyanlambov.dev
www.mediatorsr.sk
www.minasnovasmadeiras.com.br
tyler.nexclair.io
www.paisleyandjoy.store
pasteswift.com
pawlo.ai
www.pawlo.ai
console.peerpay.cash
app-test.pileczka.pro
www.plyend.eu
urbai-model.dev.presoft.com.br
www.pretell-morency.ca
vip-cards.proespx.com
www.profesyonelcemuhendislik.com
survey.quangph.asia
realm-arts.net
realtimeprogetti.it
comunicacao.reinaldoalguz.com.br
rhythmboduberu.com
react.samuelcaetite.dev
satoshistacker.xyz
sidneinardini.com.br
auth.simplestandup.com
stormylakemusic.ca
www.stuccoplus.co.jp
www.sulvikstugby.se
auth.summi.win
aeon.t-alchemist.com
links.tabl.page
www.taxhub.ai
www.tcfcad.com
strippenkaart.teammoody.nl
tendalsud.it
www.tendalsud.it
theaixplanation.com
hr.usdocai.org
www.deepakkishore.work.gd
Other domains in certificate