Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=todo.sagaraga.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 06, 2025
Valid Until
March 06, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
28:B2:F1:85:22:59:8D:7D:91:37:BA:98:11:BA:F8:14:87:DF:3C:68:EB:96:DB:47:D8:0C:29:5D:4D:AB:EF:1B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.motoplaner.kurviger.de
m.devapp.360tf.trade
stage.7founders.com
automarsh-dev.affinity.do
www.alerteverte.info
www.alexabree.com
www.am-proprete-services.fr
anishmukherjee.info
aquarenda.com
www.arcinteractive.studio
awfamilymed.ca
assets.bamideas.com
playcharts.barenboim.org
www.bc-app.nl
borneostarauto.com
www.brp-solutions.com
www.brvma.net
time.bscox.com
go.buzztime.com
chalkview.app
www.chymcakmilan.com
kawari.iamconsulting.co.th
codecraftersolution.com
cosmolith.tech
cyrenaeus.com
dainoratamohair.co.uk
delveswood.com
demo.trainings.digitalnerds.io
dundeeargentinetango.co.uk
v1.edanra.com
www.eficiente.co
eh-optum-widget.ellipsishealth.net
www.emergencydentaldirect.com
engagenx.com
www.engagenx.com
www.akal.essaouira.eco
www.alaska.essaouira.eco
www.corner.essaouira.eco
www.khawa.essaouira.eco
www.tichka.essaouira.eco
aug2004.euro2006.net
exammafia.com
web.factura.green
demo-widget.fix4.com
www.floke.no
forerolandscaping.com
www.gtcgroup.ma
guide.es
hexordle.com
www.hfg.design
www.hyperfaze.com
ideahatchery.app
imofficiallyjack.com
stage.corporate.incc.com.au
www.innoxapps.com
www.kasia-fraser.love
lesadorables.fr
www.longo.africa
www.lorenzobertazzoni.it
www.m-pfeiffer.at
main.m2worlds.io
admin.maeglerventures.com
www.matiasvergara.dev
test.swaps.meteopress.cz
midi.link
muskegon.energy
themorrisapp.indra-is.my.id
minnow-staging.nextinline.io
col-med.noovo.cl
admin-dev.omnicar.io
onkeypress.io
pondicherry.onlydroptaxi.com
www.thequeen.monarchy.org.nz
www.pensioenbijtan.nl
www.planish.co.uk
poisys.cloud
ppregus.store
prints-by-jeroen.nl
px12.app
todo.sagaraga.com
app-dev.shuttlepay.jp
tests.slz.lol
piano.smoouly.smoulasoutez.cz
booking.sssdivyasmrti.org
steeltech.io
www.stipo-consulting.be
www.tbpoweron.com
sam-customer.techroh.com
ds.stag.tevotec.de
play.thelastwordgame.com
dashboard-dev.tourgrid.io
pro.truckrs.co
staging.cbm.uhda.health
dashboard.vibrosight.ch
www.villanicolai.nl
tiruvarur.vishnutaxi.com
www.vtrakit.com
whereami.io
wyniessie.pl
gestor.zak.app
Other domains in certificate