alpina-sports.com

.com crawl

First seen 2026-04-12 · Last seen 2026-05-20 · ok HTTP/1.1 200 4971 ms crawled 2026-05-05

DE · 213.95.157.170 · AS12337 noris network AG

Reputation 100/100

sector sports type ecommerce

HTML metadata

Title: ALPINA Sports | Offizieller Webshop
Description: Der offizielle ALPINA Onlineshop - Entdecke unser hochwertiges Sortiment ✓Fahrradhelme ✓Fahrradhelme für Kinder ✓Sportbrillen ✓Skihelme ✓Skibrillen
Language: de

Open Graph

url: https://www.alpina-sports.com/de
title: ALPINA Sports | Offizieller Webshop
site name: Alpina
description: Der offizielle ALPINA Onlineshop - Entdecke unser hochwertiges Sortiment ✓Fahrradhelme ✓Fahrradhelme für Kinder ✓Sportbrillen ✓Skihelme ✓Skibrillen

Technology

Server: nginx
CMS: Gatsby

Cookie consent

Usercentrics

Third-party hosts loaded (5)

app-alpina-factfinder-microfrontend-prd.azurewebsites.net×8
a.storyblok.com×2
t.uvex.de×2
rum.hlx.page×1
web.cmp.usercentrics.eu×1

Social

Registration

Registrar

RegistryGate GmbH

Created

2009-06-27

Expires

2026-06-27 37 days left

Updated

2026-04-15

Name servers

dns.noris.ch
dns.noris.de
dns.noris.net

DNS records live

NS

dns.noris.ch
dns.noris.de
dns.noris.net

MX

10 alpinasports-com01e.mail.protection.outlook.com

TXT

_6euac9l2tf6tvv30hooujyior2yg8q6
v=spf1 include:spf.protection.outlook.com include:spf.nl2go.com include:spf.EU.exclaimer.net -all
_90td9nhtg6uyhyjzvl0wrei96n4hnze

Verified for

Google
Microsoft 365

Certificate (current)

GeoTrust TLS RSA CA G1

from 2026-03-06 to 2026-09-21

Expires in 123 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.alpina-sports.com/de/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak frame protection
weak content type protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff, nosniff
content-security-policy: font-src www.paypalobjects.com fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com *.fontawesome.com https://fonts.bunny.net https://api.openai.com assets-tiger-runner.zoovu.com tiger-cdn.zoovu.com https://*.hotjar.com https://*.zoovu.com https://*.cloudinary.com uvex-vite:5173 app-factfinder-microfrontend-prd.azurewebsites.net app-factfinder-microfrontend-stage.azurewebsites.net app-factfinder-microfrontend-dev.azurewebsites.net app-alpina-factfinder-microfrontend-prd.azurewebsites.net app-alpina-factfinder-microfrontend-stage.azurewebsites.net app-alpina-factfinder-microfrontend-dev.azurewebsites.net data: 'self' data: data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com 'self' 'unsafe-inline'; frame-ancestors www.gstatic.com *.s
strict-transport-security: max-age=31536000, max-age=31536000;