Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=alexandrerelvas.com.br
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 24, 2025
Valid Until
February 22, 2026
82 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4A:7C:F5:6A:08:2D:BA:DA:EB:4F:E7:0C:EE:13:D9:A2:F6:D5:9A:0C:F5:60:0A:90:05:80:5B:64:6A:2E:9C:8A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.we-tirol.at
2022.cruzhacks.com
360otg.com
abishekk.com
link.abrahome.com
auth.acrossasiaassist.com
nicolasbonillo.admi.com.ar
www.aibada.com
alexandrerelvas.com.br
aminehambaba.com
anchalagarwal.com
apalala.party
www.apolloplanning.com
www.artcoligo.com
www.bg-decider.com
ops.blastfronttech.com
www.budejovanky.cz
hyperway.c4cdn.com
portfolio.cadencesdesign.com
cast365.it
rendement-immobilier.catlabs.eu
www.cieloforce.com
cirjunior.com
clearfitech.com
app.cnvs.online
theupdates.akshaypipre.co.in
www.nesolutions.co.in
firebase.sigl.com.cn
www.cp.com.pk
startart.com.ua
tech.confidato.com
mta-sts.crateinfotech.in
www.dadjokesare.cool
staging.dashocontent.com
deserticaprinting.com
donesky.io
duxbyte.es
dzz.me
noel.eauxvives.shop
www.edgefor.com
www.emaile2e.com
www.emilianutritionist.com
intake.fetchfunding.org
www.fisicolega.es
gdgwarsaw.pl
hub-staging.greenfins.net
bestellen.grillmeistergestringen.de
auth.haystackpro.com
hellourent.fi
www.humantatcat.com
cdnstatic.innominepatris.it
innoventur.com
isancosmed.com
www.jaidenpearce.com
co.jp.net
kamoy4.com
luckyme.kennethhau.com
www.kerativ.al
kootumb.com
grupoburgos-performance.lernit.app
yanick.lueem.dev
setup-plus.memorycube.dk
www.muanhanh.store
uepm.mybookplus.net
www.myderbigum.com
mycall.mymoons.mx
docs.myol.xyz
code.njrafi.info
facilities.ntri.tech
stag.opencasting.jp
www.portal.ouvidordigital.com.br
planeutral.uk
www.pmlegal.cl
app.prizminsurance.io
analysis.proformer.ai
www.recorra.online
002mng.removis.jp
revx.llc
lanna-skincare-studio.salonxpress.me
ombeautysalon.salonxpress.me
app.stipendly.se
studius.ai
bodasantosyaldrey.swanmoments.net
www.tebahchurch.org
www.techvault.info
open.textwith.us
www.tidytuff.co.uk
app.tipshere.com
toba.solutions
www.note.tollfreetc.com
web.trdistributor.com
admin.uout.io
bo.uthere.eu
my.verttice.co.uk
shop.vhk.hu
viewjs.io
www.webgazer.org
woda.be
link.yevry.com
l.youtravel.me
Other domains in certificate