Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=winid.me
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026
57 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
58:9C:21:91:60:22:07:53:BC:EC:85:8B:63:6D:3C:98:AF:0D:A6:35:BA:89:85:63:18:4C:C5:C5:5B:D8:97:A6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
Wildcard CAs
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • You have authorized 5 CAs - consider limiting to only the CAs you actively use
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
Subject Alternative Names
100 domains
zerito.in
www.zerito.in
the-clubhouse-dev.1stcutoutings.com
alisdairmills.nl
almalakysoap.com
app.ammeconsultorios.com.br
bolanfaq.se
www.bringtotable.com
app-staging.brookesnow.com
bumblebeecontainers.com
centroterapeuticocubic.com
chinmaysheth.dev
app.cloudbasha.com
cloudroutine.com
guywies.co.il
www.corona-land.org
app.d4uusa.com
netflix.daviduriel.com
dbateknoloji.com
diegolunahot.com
app.dinamarimoveis.com.br
app.staging.dogfydiet.com
www.donate613.com
dropshipr.io
esiha.tn
qa.eureciclo.com.br
www.foxar.education
futuredynamics.dev
generadorenergia.com
www.guillaume-attias.com
www.hoxx.com
core.icampusconnect.com
ridogangra.infinitifood.com.br
thepunchdown.innovint.us
api.instamessage.co.uk
stockset.jeffersonfreitas.dev
www.kasiastaszewska.pl
pdf-viewer.kiite.ai
linkosm.com
www.logitnow.ca
www.lzoog.com
admin.macademy.in
www.marinurias.com
www.mimxr.com
mustafaceylan.dev
myobstetriccare.com.au
pic-ocservice.mentor-stage.neccton.com
brsign.net.br
nomidesign.pl
notforme.org
blog.onlinetestyap.com
ossaplatform.com
plani-concept.com
devmatch.plumcoownership.com
app.polarisoffice.com
qgiv.us
shitajicss.qranoko.jp
realstreet.us
www.replaylistings.com
www.restfulmindmh.com
www.richlira.dev
www.ritualzzz.com
www.rpisoni.dev
www.rssdelsureste.com
dashboard.runwithzeal.com
savoirvivrecosmetics.com
kingslynn.scouthub.app
safe-auth.seakglobal.com
sengsushi.de
www.sisinpos.com
www.sleek.rocks
www.sootsafe.com
materielnet.speakylink.com
usimeca-app.speakylink.com
studiodluxestl.com
studiorobotu.cz
about.swapnilmore.page
staff.tassorbit.com.au
waterheaterquotes.teamenoch.com
dev.campaign.tekutekulife.com
tenkafuma.com
admin.thehawaiitrader.com
who.thiga.co
temp.thinkitsoft.com
sciencepark.ticketbuddy.in
tilak.io
tnns.dev
apps.tonestro.com
notification.traxporta.com
www.tryditor.com
twotalltwins.com
union-bauzentrum.de
urbaniatourstravels.com
www.urbaniatourstravels.com
valk360.com
velvettier.management
beta.mobile.haven.viancorp.net
winid.me
hauler.yourdocket.com
app-dl-redirect.zf-staging.com
Other domains in certificate