SSL Certificate Analysis for www.medicalbillcalculator.com - Security Grade & TLS Configuration

Open Cached · just now

77/100 SECURITY SCORE

Certificate Information

Subject

CN=oscarsitompul.my.id

Issuer

C=US, O=Google Trust Services, CN=WR3

Valid From

November 24, 2025

Valid Until

February 22, 2026 85 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

F2:F5:67:56:88:C1:3C:20:EE:26:B0:FD:C9:A8:C6:3A:B8:11:7C:7B:F8:0B:C7:D9:E6:15:0D:E0:54:DF:0C:18

Alternative Names

100 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31556926

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains

www.medicalbillcalculator.com

Other domains in certificate

1doma.in

www.catalogo.adamafashion.com.br

demo.mint.amalfianalytics.com

transmark.anekonnect.io

chinaimports.arapua.co

artejanis.org

arthousebhadohi.com

www.atah.dk

back2b.cz

dev-in.beerealit.com

beflux.jp

ssc.cherify.org

dev.closethedoor.com

cp.com.pk

dl.gap.com.tr

estudiolivera.com.uy

contandocomigo.org

cuadd.org

dbps.info

def24.pl

web.diretrixapp.com.br

beneficiario.doctorclin.com.br

elsolutionsgh.com

elylucas.net

evangels.ca

evfinancehub.co.uk

www.evodentia.com

docs.dev.evofit.org

farmball.io

www.fofcw.org

gasmate.mx

www.gracetory.co.jp

kakidashi.hauer.jp

www.heronislandoysters.com

dev-bswarm.hostabee.com

lionsden.impactwrap.com

ir0nic.com

www.khomiki.com

www.kickasscoding.com

kirubakaran.me

www.lab-dev.net

learnixit.com

www.megami.moe

algata.mirano.fr

moxieman.fi www.moxieman.fi

oscarsitompul.my.id

project.mymondo.yoga

timeline.net.in

nmcardle.com

nymph.quest

www.onlinejudge.net

www.oyfora.io

palavrinhas.com

admin.percap.se

pigmentaarbetsplats.se

pro.piinkme.fr

playdezoito.online

playoneupgames.com

www.polymorph.hk

powdermotionlabs.com www.powdermotionlabs.com

psvbadmintonbrugge.com

www.recipebrigade.com

pos.qa3.restoplus.com

www.rivervalley.company

roymelzer.nl

www.shenkconsulting.com

sismorehealthcare.in

workspace-comparative.soltecsa.com

www.babedoo.starlard.dev

elearning.stepinsight.com.au

www.studentnote.xyz

drinks.swindrinks.com

www.tabletop-friends.com

taisy.tech

taxiridepondy.in www.taxiridepondy.in

techlabbrasil.com.br

hills4me-dev.thepetdoor.asia

share.tif.ly

uri.ton.surf

portal.tonalida.com.br

www.tourdefrancedesseewinkels.at

admin.vv.toysfilms-interactive.com

info.trader.inc

transposelearning.com

zk.admin.tropykus.com

unhurried.live

www.vectrum.io

inbrief.vedicavinya.in

vkamula.com

myrecmovie.wahyudiaditya.com

www.wasalakecabin.ca

www.welcome.fm

line.yacht-hakobuyo.com

yanek-k.com

www.youthrushadmin.org

staging.zeugnis.codes

Free Cloud Credits

Get free credits to test cloud platforms