This report summarizes how well rolex.com is configured for secure web delivery. It covers HTTPS availability, HTTP→HTTPS redirects, TLS/SSL certificate validity, security headers, HTTP/2 and HTTP/3 support, and mixed content. Use it to quickly spot configuration gaps and improve your site's security and trust.
Enabled
Yes
A+ · 1.2, 1.3
6/6
The site is reachable over HTTPS.
Why it matters: HTTPS encrypts traffic and protects user data.
Requests to HTTP are redirected to HTTPS.
| Valid | Yes |
| Issuer | C=US, O=DigiCert Inc, CN=DigiCert Global G3 TLS ECC SHA384 2020 CA1 |
| Expires | 2026-10-19 |
| Days until expiry | 102 days |
Why it matters: A valid, non-expired certificate ensures encryption is trusted by browsers.
No improvements needed — your configuration meets all requirements for A+.
Monitor this domain
We'll check SSL grade, HTTPS, redirects, and security headers automatically. Email only when something changes.
Free: 1 domain, weekly. Plans from €7/mo — daily checks, up to 50 domains, history & white-label PDF.
No improvements needed — your configuration meets all requirements for A+.
Score: 6 of 6 headers present. For the grade factor (5 pts), 4+ headers and Content-Security-Policy (CSP) are both required.
Why it matters: HSTS tells browsers to use only HTTPS for this site. Preload allows inclusion in browsers’ built-in HSTS lists.
We check Chromium’s built-in list. hstspreload.org checks eligibility for submission (HSTS header, redirect chain). Results may differ for domains that are preloaded but no longer meet current eligibility rules.
Negotiated (ALPN h2)
ALPN: h2
Advertised + confirmed
Alt-Svc: h3=":443"; ma=93600
Active QUIC negotiation succeeded (curl --http3).
No HTTPS record. Browsers discover protocols via connection — an HTTPS record speeds this up. Learn more →
No CAA records. Any CA can issue certificates. Consider adding CAA to restrict issuance.
None detected
No HTTP resources were detected on the HTTPS page.
When you visit the site over HTTP, the server may send you through one or more redirects until you land on the final HTTPS URL. Shorter chains are faster and better for SEO.
Based on this scan, here are the 2 next steps that would most improve security and SEO for rolex.com.
HSTS is enabled for rolex.com but the domain is not on the browser preload list, so the very first visit can still go over HTTP. Preloading closes that gap — but read the requirements first, removal is slow.
rolex.com has no CAA record, so any certificate authority can issue certificates for it. A CAA record limits issuance to the CAs you actually use — a cheap defense against mis-issuance.
Let your visitors know your SSL setup is verified. The badge always shows your current grade and links to this report. Paste the snippet into your site footer:
<a href="https://httpsornot.com/report/rolex.com?utm_source=badge" target="_blank" rel="noopener"> <img src="https://httpsornot.com/badge/rolex.com.svg" alt="SSL grade for rolex.com — checked by HTTPS Checker" height="20" loading="lazy" /> </a>
Domain owner? If you want this report removed or made private, contact us.