Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=ouranos.gaiainternational.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 03, 2025
Valid Until
March 03, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
06:05:E5:6B:E7:0A:FD:5F:3C:C2:FD:6D:37:FC:A9:68:00:E5:E6:B5:0C:FA:84:DD:3A:FE:AD:2E:01:00:EA:3C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.quicktourney.xyz
meusnidus.appchoose.io
vts.arcmos.in
yalim.aytul.org
www.batonrougeoffice.com
tp.bigjonan.com.ar
consultation.biosoft.gr
mijn.boekverzenden.nl
broad.com.br
cispm.cityimagesigns.com
admin.clearitbh.com
law-society-dev.clia.ca
yeogiseo.co.kr
coap.cloud
staging.coding.space
roas.overtop.com.pk
order-uat.oneclass.com.tw
www.cydoss.com
dugershaw-kurzer.de
forex.earningsahead.com
app.echarity.online
egiapha.com
www.ekvilibria.lv
portal.expressmlslistings.com
www.fersasys.com
www.footdocbox.com
ouranos.gaiainternational.fr
gourinin.work
app.guauventura.co
halaszadam.sk
healthymedia.llc
blog.hhg-exe.jp
app.hirasmus.com
www.illenialsfamily.com
www.inspectordetector.com.au
test.request.intechvalue.com
www.ioma.ai
www.iteatechnologies.com
auth.dev.iticket.co.nz
jcg.golf
www.kfzbook.eu
test-a.kurly.it
www.l-a-s.be
ma.li.it
web360-gemma.lienzo3d.com
limitless-driving.com
console.luke-roberts.com
pretty-dictionary.marco.plus
dev-beta.megu.green
metabeacon.win
networkdoc.most.org
mrgrayda.games
mutsen.nl
myadaptivemind.com
myenglishprep.com
mygrublr.com
www.nampil.dev
nangolijude.com
www.nealcloud.com
pic-greatcanadiangaming.mentor.neccton.com
samples.neoplumes.com
bcc.netlogia.com
widget-dev.newzip.com
staging.njvisa.com
nonparallel.io
nssml.com
app-vitalii.obrinvest.com
old.ohanaisfamily.com
online-pdf-tools.com
partner.orderlock.com.au
admin-uat.originsme.com
www.pagexray.com
palisutra.com
playersrecleague.com
www.plusthat.com
app.poetscorner.com
streetbangkokpigalle.order.pulp.eu
www.regeneracionoceanos.org
app.rentalpropertycloud.com
www.rizianneveluz.com
int-portal.rxcap.dev
www.sandhillsartisan.com
newapp.shipgrande.com
simmiverma.com
southeastmutual.com
portal.stalwart.app
www.starhometutors.com
staycleanmasters.com
bodamolinamiranda.swanmoments.net
cove.tamiolaf.com
templekaratekai.org
waleg-2023.teodorapopescu.com
thejmdw.com
www.towa-kyoto.jp
www.tuqirism.com
uleancer.com
apps.bn.w2news.net
wearewine.com
www.worldclockmeetingplanner.com
yustinabouls.com
Other domains in certificate