Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=sigma7e.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 01, 2025
Valid Until
March 01, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
03:10:68:8D:AA:FC:54:93:83:A7:92:EF:2B:38:5B:D6:90:13:FC:26:81:40:FA:CD:FB:91:93:18:72:53:A0:0D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.rootsjordan.com
www.aadyaventurespune.in
abcarbon.org
adanekretnine.store
firebase.agora-ed.app
app.aimagination.uk
alliancesoccer.club
www.amplicomagency.com
my.anyplans.app
appcompadre.com
bark-at-the-park.com
www.bd-bibliociencia.com
europe2019.beamsummit.org
store-admin.bookinggood.bg
brasafgcu.com
vi-ability.cafetextual.com
stats.cannockchasecan.co.uk
www.carbex.earth
castleplayer.com
www.chriswolfdesign.com
demo.coachway.app
dev.coachway.app
staging.coachway.app
sanjayasubedi.com.np
creativetech.agency
dev.creativewiz.nl
csalex.org
nibako-stg.daihatsu.co.jp
store2.dercocenterx.cl
www.dharmadreams.app
app.diploma-sante.fr
line.djjam.app
test.e-parkovani.cz
eatups.org
onthitienganh.edu.vn
dziennik.elfedu.pl
stage.endangered.live
esthernoordergraaffotografie.nl
w3.sweetzxc.eu.org
shared.ezclo.net
aquastat.review.fao.org
www.fartrater.app
fotocoke.com
gurpstools.com
www.hamza-hussain.com
www.hkqueen.com
hodl.green
admin-staging.jodacare.com
www.jorgeportfolio.app
kalisi.dev
www.kiruthayafoundation.org
www.kunkhmer.site
lagarra.mx
laocjoshua.com
www.leadsowl.net
sintetizador.lenarge.com.br
www.lend-rxtech.com
leobulhoes.com
lumiset.se
www.massivepeach.com
trials.mdbiowellness.com
meetinggo.kr
get.mydailyhealth.news
virida.mymirakey.com
app.natureperspectives.earth
nirvanajewels.org
bonfire.note15.jp
www.truelight.org.sg
pintify.app
attorneyhamilton.redacted.ai
robology.ai
www.sarc.si
developer.sepush.co.za
www.sgcardbros.com
sigma7e.com
dev.csv.sokuyaku.jp
team.solarsales-pro.com
mobile.stoick.io
www.stomate.shop
stormbase.co
n.suhail.ai
superiore.mx
zawidow.talpasmart.com
link.tcgcompanion.com
www.techpac.lk
web-portal.tetherre.com
thebbfafrica.co.za
tobiasgutmann.de
www.trevsbargainemporium.com.au
uthere.eu
veloxsim.com
www.vibharambha.com
www.virkin.me
www.vitaljobs.in
vividclm.app
voucherly.uz
wakanayamauchi.com
wellbie.co
www.wingerclub.at
xerp.app
Other domains in certificate