Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=my-shop-project.pp.ua
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 01, 2025
Valid Until
March 01, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C7:D0:B0:64:7A:E6:15:84:A6:F7:72:5D:0B:B5:FC:6F:93:34:4F:74:46:BA:FA:07:F2:8D:D7:37:38:84:13:34
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.mypunchclock.com
www.1ludo.in
admin.abhishekcodes.com
app.aibi.ac.jp
portal.accountbooks.in
maydayufo.aozwithphil.com
arekcichocki.dev
docs.axino.nl
white.badshark.io
www.bauworkpy.com
www.bazdara.com
streaming-ip.begmedia.com
bensjones.me
bio-fluids.org
castalianspring.de
www.catfishy.io
app.checc.io
app.cipres-prestamos.com
giftcards.cloud-terminals.com
aisbusers.tst.acceso.com.bo
old-portal.sengliy.com.my
creatividadconectada.com
app.curowebs.com
www.deikabogados.cl
distrimedicaskaizer.com
link.ebay-kleinanzeigen.de
app.ecc.to
ekuitycapital.net
excymedia.com
nycard.famm.us
docs.fancraft.com
fillthesong.com
www.fordshawconsulting.com
developers.geniee.co.jp
gess-il.com
grandlay.in
gruber.md
egemen.gulkilik.com
gaia.app.hark.eco
char-sheet.hlnr.de
houseofpeaceministries.org
www.importexperts.com
innostaysis.com
www.jaswanth.co.uk
sites.kwallcompany.com
carboneng.lfv.jp
app.lucronaconfeitaria.com
lumifish.com.br
app.machank.site
app-preprod.market10.com
mediacly.com
www.michaeldle.com
www.mistrasportal.com
staging.ttrebates.mssdev.works
mydigitalgoodies.com
nabad.net
nazarioglobalholdings.com
ninjasheepproductions.com
www.nookdb.io
eventful.nwbbc.com
onsail.io
lane.oresundsbron.com
english-improve.outboundly.io
penaltybox3.com
friends.pepsapp.com
performancetracka.com
perlfitness.com
www.pholacorp.com
pinwout.com
pizzasfornalle.com.br
app.planetprotectoracademy.com
www.platfrm.us
www.platypus.land
my-shop-project.pp.ua
app.preciografico.com
www.rawlk.com
www.renneshd.fr
roomspanorama.com
rudigualter.com
www.rumairaerodesign.com
erp.staging.uzazi-salama.savannahghi.org
www.saylynconsulting.com
shotlytics.io
siennarosemusic.com
dashboard.signerz.com
sistemainterno.com.br
www.skillrazr.com
skyview.group
www.snowshop4.com
www.sppetroleum.com
backend.tendercuts.in
www.tesla-tec.in
thesowetobarbershop.co.za
tonyvitro.com
twimble.com
www.vecinos360.com
www.vusono.org
premium.wagon-nurse.com
whatshouldidesign.space
xapps.com.br
Other domains in certificate