Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=actonmrf.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 06, 2025
Valid Until
March 06, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
56:5F:B4:F4:93:6B:62:C8:8E:E3:32:AB:50:ED:E0:9A:5C:07:46:62:C4:95:21:FA:46:85:13:3F:F3:B7:90:EF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
soleydemo.dyn.co.il
www.solvi.co.il
actonmrf.com
www.alexbainbridge.co.uk
www.alexyule.co.uk
development.amilkhael.com
atuk.cloud
testreg.avigenics.uk
www.bakhtlogistics.com
bayareatechjobs.net
kiosk.blendid.com
live.bymaluna.dk
admin.cadlox.com
train.ceske-skoly.info
midias.cliqueretire.com.br
judge.constructionawards.ie
www.crowdprobe.com
cafe.cupperapp.com
deephabits.com
routeman.dibarto.nl
digitaljoyride.com
swiffi.eddress.co
edyhwang.com
www.elimhk.com
broker-onboarding.equix.app
connect.staging.evenito.dev
docs.ezturns.com
it.felegyhazibalazs.hu
parceirosincomerciocatanduva.g2canal.com.br
www.gadeos.top
www.galadiaz.com
blog.garethlucas.me
www.garygrossgarten.de
www.gyronetics.be
www.healthywings.me
www.cdn.iarahealth.com
folusooluleye.jciibadan.com
staging.uitspraken.jwbaart.dev
kymsote.kesselrun.dev
development-ad-adminwebapp.knolskape.io
homework.bb.knotta.ru
triplewhale.kompsos.uk
corrector.app.konch.ai
connect.lazico.com
sponsor.lifesciencesawards.ie
luckytreemanilva.com
app.jobs.makesense.org
maranchello.com
www.maxangelonihairgroup.it
licensing.megapixelvr.com
mkare.com
www.modernfret.com
card.mpla.io
swapit.netomos.com
test-apps.ninoxnet.com.ar
niramoyhealth.in
www.onframe.photos
alt.pantes.no
www.phiresky.com
v2.pickpackquick.com
popmove.com.br
video.portfoliolink.co.za
ems.votereportph.pwapilipinas.org
www.rainbowtechsol.com
service.rameshelectricals.com
www.renley.uk
www.rimdian.com
rishiholidays.in
rotobot.com.mx
sarentu.com
scsports.fr
fho-test.seinmaungengineering.com
www.shreeshanmugacrackers.com
feedback.skilio.co
www.somebodyyoushouldmeet.com
subroutine.ai
app.tennis1app.com
ternstartech.com
tesla-intelligence.ai
thearenax.com
thebeancow.com
theovasi.dev
thesimplephysics.de
invite-zarget.tips.sg
www.traincycle.org
trevorselby.info
test-admin.ulsemo.com
findlay-buickgmc.vinsyt.com
virbnb.com
api-staging.vis-its.com
www.vrinco.com
connect.wavebit.io
rwl.weatherlogics.com
www.blog.wedevelop.me
www.weelerp.com
www.whatwayto.com
www.wheelofnames.website
natal.wink.pt
yoyoyogame.com
zeninteraction.com
Other domains in certificate