Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=innispirituali.it
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 23, 2025
Valid Until
February 21, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
58:5B:9A:46:6F:37:23:D3:68:30:F5:F9:F2:7A:81:FE:71:AE:EF:F4:5B:03:9C:A3:E2:CC:C7:50:51:3F:C5:80
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.mobeegadgets.my
www.12seats.com
280777.exactas.uba.ar
stage.referrals.5f.app
admin.agzgroupe.com
www.airvapps.com
amioboli.com
www.cloud.ampersand-it.com
www.angelhealthcare.co.nz
freshcut.appsaucy.com
www.arrow-wealth.com
ashiina.com
autoplied.com
www.autoplied.com
axs.network
api-docs.b2bninja.com
benleedesigns.com
betatreecorp.com
betquitycapital.com
links.biketag.com
sensor.bilimkamyonu.com
www.bizcardmaker.app
www.bluestackav.com
praxmap.borklab.com
app.bottlezoo.com
bruhmcp.com
bubala.fr
cbpos1989.com
live.cienciasemfim.com.br
zettel.cybershit.de
www.cyberspacesolarium.com
dapalms.com
dclgenerator.com
deadbydaylight.group
jackoblast.designbridge.com
dhruvikacreation.com
dirtoutductcleaning.co
www.djanbee.com
firebase-test.doomcalc.com
drambedkarvicharmanch.com
www.drmsmanna.com
dubet.fr
management.dukatrack.com
retailx.eatlab.ai
dev.elitoptimum.com
evidencering.com
luxurytravel.example90.com
www.fantasylodge.ph
www.feedflex.app
fooncash.com
fdx-qa-ideacloud.forgedx.com
francescopiazzimusic.com
groplanners.com
www.hmzones.com
book.hopencarehomeopathy.com
horrortropebingo.com
staging.hydrorebates.com
imagembaby.com
beta.immwx.com
innispirituali.it
inosyt.com
internal-compiler-error.com
incredible.invue-live.com
joeycaughey.com
jordanburnes.com
ehs.kbi.works
toplink.kmplayer.com
www.lalajikazaika.com
hey.lekeodewuyi.com
lpcenterprises.com
demo.manutrack.com
www.marek.ltd
dev.matossers.cat
partygame.mattpeskett.com
mbdharandsonjewellers.com
app-d.mipariente.com
mygiftmovie.com
mytbrite-lights.com
web.mythinkers.app
nicocalvelo.com
www.office110.info
www.oscarthebus.com
www.padelplanner.app
inscricao.pertalks.com.br
quash.ai
returngame.site
www.roboralab.com
www.rybarska-basta.cz
www.sololo.app
sheets.songtreasures.app
staninik.com
nft.thai.run
thelearnx.co
www.typeforce.app
link.vbarde.ru
www.vespery.com.br
app.wayservice.site
wctradesai.com
service.ru.wow-dev.org
yuyu-dictionary.com
Other domains in certificate