Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=clotetnico.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 16, 2025
Valid Until
March 16, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C3:18:BD:65:12:7C:AB:7A:32:33:49:D1:8B:C0:8E:31:95:05:FF:4E:82:0D:AC:E6:20:57:18:B2:2A:4B:84:56
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.mznm-studio.ru
tecnos.app2.1on1navi.com
agascba.com
dev.ayun.ph
badwear.store
fclausannesport.deeplinks.bfansports.com
payment.bgbg5678.com
biggerwebapp.com
bushrastudio.com
buyfisher.in
obd.carcardiac.com
dev-signup.cbreenergy.com
tetris.celtian.eu
app.cetiuc.com
cindyhu.dev
www.clitson.nl
clotetnico.fr
link.rentalk.co.kr
www.convertmyclicks.com
copacaucachampions.com
cs-ops.xyz
cyber3d.uk
dimasfamily.com
dirzaaulia.com
dotachieve.com
www.dotsilver.ch
console.ebusaka.com
app.ecotank-pro.com
admin.elitemaacademy.com
www.emilijastojanovic.com
empyrealperfection.com
www.envizeconsultancy.in
explore-animals.com
fedjalusa.com
rsg.partner.felporgetve.hu
fishermanangles.com
gofastcargo.shop
greysonsawyer.com
www.gunfist.com
admin.harghartiranga.com
www.hedgehogroast.com
hujihara-kanri.com
www.i4technology.net
ihe.cl
opentts.inditech.in
q8-indexation-testing02.input4you.be
customer.jarveat.com
web.jevitty.com
planets.joeshort.net
jsquestion.in
justoneshot.pro
www.klopworld.dk
www.lammpee.de
sellgpt.letsaspiro.com
logicsyner.com
luckisses.com
luxurycarevent.com
app.lyceum.so
mafiadealer.com
matlab.lk
miguel-vargas.com
mlkquoteslotr.com
app.monetaa.com
auth.movienonogram.com
mrtstayr16home.com
shares.musicdatalabs.com
myfinancialtool.com
koss.nocorp.me
numerat.de
onoffatt.site
www.pbjapps.com
pierrethary.com
plotment.com
puckconnections.com
qualitytiling.org
www.quiosquesirioalmoco.com.br
stg-ads-banner.pay.rakuten.co.jp
reliablebiy.com
retinedirecte.com
dev-mentor-praxis.rhodium.ooo
cellmachine.ricoapon.nl
saaketh.me
sainiproperties.com
shushi.in
m.simkada.id
www.studiojatayu.com
tarunchauhan.in
www.theeggwhite.com
thelesbianproject.net
thestoryteller.app
todotijuana.com
www.turkiyejava.community
vauxhealthcare.com
vinaydhomne.in
vipgsmstore.com
app.wastehunters.com
www.websitedocaralho.com.br
wedreel.in
app.youpace.co.jp
staging-kitchen.yumitos.com
Other domains in certificate