Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=app.downloadrave.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 24, 2025
Valid Until
December 23, 2025
39 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CD:E3:7D:0A:24:56:79:84:15:53:75:78:AE:09:20:64:F8:08:FA:90:39:17:F5:99:76:BA:AD:3E:67:FA:A4:70
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.mothership.cx
akkadai.2nd.gdn
www.doctor.aganhealthcare.com
arcondrilling.com.au
assura.in
test.coleta.biome-hub.com
fincorpora.bist.mx
devjharokha.bmspune.org
bouvardia.salon
chatsupport2.brinias.eu
bspk.design
www.callusat.in
www.clean-concept-group.com
app.cloud-sms.us
www.clubtennisatpitt.org
intisolusi.co.id
wordhurdle.co.in
yz.sscoaching.co.kr
coffeevibes.app
hoopvote.gethyred.com.my
nani-gke-dev.oneclass.com.tw
consulatenepal.pl
www.contactusnow.in
medbook-dev.cortex.ph
d-wilkinson.uk
www.darrelllove.com
devaegistech.com
dexterasoftware.com
app.downloadrave.com
www.eaglepointmutual.com
duration.earth.haus
www.easytaxconsultancy.com
euronprojuego.com
auth.feehla.com
pcfl.filipvlcek.com
foodevents.in
try.gatheround.com
grupofebesa.com
hitechno.lk
hizbullah.xyz
home-blend.com
www.humbleit.com.br
www.ichinarecruiter.com
www.indiemap.org
www.intrainz.com
pokeplanner.jesseramey.ca
www.joelaforgia.com
football.jonathanlouisng.com
josiannelaflamme.ca
meet.intg.keap.page
klare.com
kuroro.blog
lambertseterrevyen.no
cms.karlo.lauc.org
flash.learntypescript.online
page.medispec-int.com
app.meetsalty.com
mgfer.link
www.michaelharrison.dev
www.micronetech.com
mobilesoft.co
emos.mudupay.com
docs.odinprotocol.io
stories.oloflindh.com
api.opsie.app
dashboard.opsie.app
www.opsie.app
nft.pechi.at
phieudexuat.online
phonerepairmedics.com
protalk.game
raulmoya.es
realmstats.gg
recargatulinea.mx
renegadecomics.xyz
www.mensd3.rowanhockey.com
www.rumvalley.com
shaftmotors.co.uk
onboard.signos.com
app.simulateur-locatif.fr
skite.co
www.smilzz.com
www.splixon.com
portal.squidloyalty.ie
app1.stageshipra.com
steptastic.app
ipp.gov.taxscribe.app
thestarsleaguefantasy.com
pilatessalud.timp.io
udrugalogoton.hr
uksponsorlist.co.uk
vbdesigns.net
www.viabrad.co
www.vidmeet.co
koit.vilbas.ee
visilaw.com
playgo-stg.vonder.io
weprint.cloud
www.zerahtech.com
landing.zonaagraria.com
Other domains in certificate