Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=realitycalc.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 23, 2025
Valid Until
December 23, 2025
33 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7F:0A:69:4C:84:6D:5F:43:61:3C:A3:0B:B1:9C:DA:54:09:12:78:4F:89:11:0E:1C:68:9D:79:2F:5F:2B:F7:EC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
xlock.app
www.aaronguzman.com
www.adigify.com
agileninjanerd.com
appnity.ch
ashtonmaze.com
athlitria.com
www.audiosavers.store
www.bengalexpress.co.uk
blades.bookshelf.press
dl.cardbyte.ai
caseycrawford.com
www.cat-finder.com
www.chatsby.app
chemisnottry.com
www.cocometic.com
codefigure.co.uk
www.codefruits.com
jk-dyn.compas.ru
mobile.countryglen.org
www.curiositychocolate.company
dapic.eu
delcomlabs.com
drzisserman-chirurgien-dentiste.fr
www.elcajonhistory.org
elranchowine.com
www.endershane.com
app.energybeeper.com
www.enigmata.co.uk
developer.staging.entur.org
announce.eqo-inc.com
www.ereseta.ph
estamoscerca.uy
firebase-web.fline.ai
app-dev.fremby.no
getdatadoxa2.com
staging-authors.getgalatea.com
www.gmsoftwareconsultants.com
www.haidangnguyen.de
hal-cg.com
heartworktherapy.ca
www.hinmantechnology.com
hiyawu.com
infernoguard.co
mozaikplay-advisors-stage-6.ischoolconnect.com
islandismusic.com
javainone.com
jodifranklin.com
justinkannft.com
www.surveys.k-9apps.com
portal.key2access.com
kolakow.ski
www.lalatoys.dk
www.leonbioingenieria.com.ar
admin.logisticshield.com
www.lundberg.guru
magnetboard.app
app.marahplus.com
sofa.mobilenxt.app
mybestcryptos.com
neckerbauder.de
neuerechte.org
pot.nibblesnacks.com
notas.niedermayr.tech
nrsmagic.com
hoya.onlypromo.com.br
www.paintbusters.nl
aluno.pilotar.app
sweetdecember.piticommerce.com
www.pollen-map.com
www.practicepal.app
www.prashanthkotianphotography.com
printkart.store
beta.profylecard.com
rbshoa.com
realitycalc.com
scenes.app
app.schluessfach.com
shinfire.com
shitloadofdimes.org
ht.sigmajove.com
simplyplay.app
skyeharper.com
snapauto.ro
specialbody.net
www.technebula.dev
www.texcloud.app
therisecollection.co
piyushgoyani.thesourcepedia.org
ttm-mep-cloud-stg.firebase.trimblemobile.com
uchirepi.com
unisofts.app
www.valorihomes.com
watame.fans
contents.utsubo.telema.whitecloud.jp
apostaonline.xptoconsig.com.br
yamaneko-takuhai.com
yanhooligan.com
schedulerapp.ytinc.net
www.ziofood.co.za
Other domains in certificate