Open
Cached
·
just now
75/100
SECURITY SCORE
Certificate Information
Subject
CN=dev.yoga
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 07, 2025
Valid Until
February 05, 2026
83 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BB:CD:2B:31:05:6A:8A:EE:77:0C:D9:0A:C5:5C:29:16:23:A4:DB:E2:1D:66:85:F7:E7:C3:18:C6:F9:4F:38:5B
Alternative Names
Security Configuration
TLS Protocols
Forward Secrecy
Limited
(Check cipher configuration)
Warnings
- • TLS 1.3 is not supported (recommended)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.spacemages.com
www.jalisoncarvalho.adv.br
intelligence.ai-marketer.xyz
www.ai-query.live
aichat.works
alfahelsinki.fi
allvulvasarebeautiful.org
flashcards.athenas.dev
auth.caloriecompass.io
camerondebruyn.art
cassiopeiahorizon.com
www.castellar-esteveabogados.com
www.ccautoworld.com
partner.tlchealthcare.co.kr
culture2nature.co.tz
www.compilelatex.com
www.cpsautomation.net
dev.yoga
drkyawzayatun.com
easterntalentawards18.com
eatstracker.nl
ekal.ai
elevatevitality.org
tallerdechapa.fanairsl.com
forester.radio
ginekologpoznanlekarz.pl
checkout.glomopay.com
gogodashboard.com
goldiees.de
gonexy.vip
gotchamore.be
gw3guide.com
helihero.co.uk
heliport.management
www.hustory.space
illuminator.jp
chart.tunghr.io.vn
doccv.tunghr.io.vn
ipsvg.education
www.iqgstc.in
iservice-esbjerg.dk
developers.iwayplus.in
jeremyobando.art
joneslab.app
esg.juuripartners.fi
www.katainformation.com
kimkaye.life
hchat.kro.kr
seguimiento.lacajagourmet.com.ar
lamaggie.com.br
auth.lamaquinamarketing.com
old.learn-anything.xyz
tv.linkbong66.org
manage.linksy.fun
www.makemoretubes.com
mariocarolus.online
www.mariocarolus.online
iadmin.meducation.pk
h1kitchen.megapos.store
www.mgias.me
app.miclass.co.za
micocopilots.xyz
xxx.mobopro.site
bpi.monacofoundry.com
moneywise.pl
muus.life
nemus-group.de
nkpag.hr
app.nowcawild.co.uk
profile.omnevu.com
college.pannaedu.org
food.pannaedu.org
tmf.pannaedu.org
peony.site
e-dealer.phoenixia.digital
www.platonicstructures.com
qpy.kr
qrena.de
qrlapenyamarketplace.com
re-doneplumbing.co.za
dev.ca.revolutiones.org
task.jamp.run.place
hooray.sendmepack.de
www.senoeuf.com
skilllinkacademy.org
erp.spancomgroup.com
office.spont.cash
swingduetgolf.com
www.thisaitech.com
tpl.tranzita.com
www.tryhud.ai
tu-idziemy.pl
cursodebonsai.valeoclique.com
console.whizyapp.tech
tv.xembong22.org
tv.xembong66.me
www.yoursoulkit.com
ytshelter.com
www.zat.com.ar
zolights.com
Other domains in certificate