Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=catalog.wrapigo.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
December 09, 2025
Valid Until
March 09, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9A:64:7D:8D:92:AE:D7:46:7A:2F:F3:CB:56:DC:B8:AB:BC:4A:4D:8B:14:71:CA:47:30:13:C9:CC:82:C1:EF:AD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
zerta.org
www.aestheticsbyabha.co.uk
www.akhilnambiar.me
anrfranquia.com.br
www.aprenda.app
go.auk.eco
baira.in
bardeko.in
www.byfu.cl
justyuenme.carlinyuen.com
www.caseorcontroversy.com
cesarcruz.es
cicl.studio
kibana-circuscode-all.circuscode.com
cited.app
getgoing.co.id
storyket.co.kr
commently.net
foodtogo.creasaur.net
cryingrockpress.com
danielhalasz.net
ec.dev.orilabo.dataequinox.com
classic.date-fns.org
www.derivit.io
dividendnow.app
evexpo.info
salesforcerkofy23.framez.sg
atf.staging.hcn.ac
admin.holistify.mx
holistify.mx
hongiranaclk.in
neihkhuat.id.vn
indentstudio.io
ordernow.inhouseorders.io
jordinebot.me
kaewsamui.com
krijst.nl
getset.learna.ac.uk
faq.lessondepict.com
lp.liveparty.jp
lkdin.io
www.malberger-kickers.de
staging-kepler.mersive.com
misboletas.pe
www.mistertee.de
hartrevisora.mitraecp.com
pro.multivers.dev
mybreathingpath.co.uk
form.mymoons.mx
natala.cl
nmcodecraft.com
www.noneonly.com
bak-engineering.noorsphere.com
nya.live
oap-deepdive.oceansai.tech
www.okaygallerydesign.com
serviceagreement.omnicar.io
ordinarydev.in
beta.orendafinserv.com
progressbar.pampolini.com
productiebiotel.ro
portal.professordeengenharia.com.br
staging.randomnamegenerators.com
rehfram2025.org
riquelmekids.com.br
rohan-phadnis.com
rompn.com
rufl.in
runbook.works
widget-latest.runllm.com
trailer.scritturedilago.it
secndchance.us
sfhomeopath.com
link.sicoobnet.com.br
z6e0hs4htajx7ljsmc6m.smartimob.io
join.sportening.com
studiohitsuji.games
syaau.com
link.sybel.co
e-commerce.taliferro.com
www.tdd.sh
techzoneapps.com
qr.th7.org
gpt.thangved.com
www.tilman.com
trumpinvestigation.timestriper.com
tritun.net
www.true-visitor.com
uappe.com
wisperworx-dev.wisperisp.com
www.workoutfromhome.app
www.workscapeoftomorrow.com
catalog.wrapigo.com
xauri.com
login.yaqeeninstitute.org
book.staging.yourpets.link
kabuboni.zaoshinani.com
debate.ziicon.com
zummarize.com
www.zygohealth.com
Other domains in certificate