Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=forrosailingweek.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 22, 2025
Valid Until
February 20, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CB:D5:42:7A:CA:9E:57:1E:FB:50:8D:03:16:40:4E:F1:DC:50:EE:46:15:E1:9C:3F:24:E2:49:54:FD:E4:24:E8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.subwayphotobook.com
2022.forter.com
aitms.in
fire.allbrightinformation.com
apphouse.co.uk
diary.axsar.com
events.banjoandfiddle.com
www.barest.app
beecuick.com
beercules.app
bilverkstadskovde.se
sandbox.briklin.com
buddyhomeworkout.app
www.byebyecellulite.co.za
www.cascades-pi.com
www.celineinsuline.com
chezatrivia.com
opusindia.co.in
forme-admin.haiidev.co.kr
www.bikeclub.com.tr
qaonboarding.cultup.com
painel.dailysubsecao.com.br
www.dangolban.com
www.denyscodes.com
dflowautomation.site
dinero-full.com
discussio.space
donkeystereotype.com
www.dynshopee.com
exams.dssc.edu.lk
www.efreela.app
rp.html5.emallstudio.com
emelhora.com
admin.foreverxapp.com
forrosailingweek.com
gairo.ai
www.gairo.ai
gauranshsharma.com
www.go-rewind.com
gr-alimentaire.fr
www.groupngs.com
manage.growflow.com
hashbash.io
annatobywest.hitchd.com
holsain.ch
app.hybridextensions.com
app.ifyunoai.com
inovox.pl
www.isthisplacegood.com
editor.jeanphilippebaillargeon.com
jldcounseling.com
www.joyd.co.uk
jurislab.dev
kdventures.in
kivatechnologies.com
larosca.es
lavieinnove.fr
mavirtual.org
modeltimer.com
api.mydigitalpayment.com
n3tgeek.com
oeirasemprega.com.br
c2.parallax.red
petnoter.com
www.phpremedy.com
www.pixalya.com
powerbi.page
prana-focus.com
www.prana-focus.com
pranafocus.com
www.pranafocus.com
rami.fun
re3.space
richardlovesabigail.com
royaltoncreative.ai
sarahreimann.com
app.schadminplatform.com
electronicscalculator.schlez.page
seft.tech
seo-page.com
simpletechcare.net
starsmobility.com
statesmenclub.com
code.sylvainyabre.com
tailormetrics.com
tanvirrobin.dev
taximet.com
app.sandbox.toihr.com
tr24.eu
www.travelquest.xyz
app.tryaireau.com
www.uneer.sa
upontherooftoplighting.com
nextgen.us.kg
wine.vinit.io
app.engage.chicagoridgeparks.voyagernetz.us
way2learndrivingschool.com
development.erp.wedevelop.me
workflicks.in
zoublix.com
Other domains in certificate