alsirhanunited.com

HTML metadata

Title: Alsirhan United Official Rolex & TUDOR Retailer Kuwait
Description: Alsirhan United is proud of be part of the worldwide network of Official Rolex Retailers, allowed to sell and maintain Rolex watches and Tudor watches.
Language: en
Canonical: https://www.alsirhanunited.com/

Open Graph

url: https://www.alsirhanunited.com/
title: Alsirhan United Official Rolex & TUDOR Retailer Kuwait
description: Alsirhan United is proud of be part of the worldwide network of Official Rolex Retailers, allowed to sell and maintain Rolex watches and Tudor watches.

Technology

CMS: Gatsby

Analytics

Google Tag Manager

Third-party hosts loaded (6)

images.hbjo-online.com×11
static.rolex.com×5
clock.rolex.com×2
retailers.rolex.com×2
www.rolex.com×2
www.googletagmanager.com×1

Social

Contact

Phone

+965-1800151

Registration

Registrar

Tucows Domains Inc.

Created

2005-04-25

Expires

2027-04-25 339 days left

Updated

2026-03-26

Name servers

nucum.ns.cloudflare.com
vin.ns.cloudflare.com

DNS records live

NS

nucum.ns.cloudflare.com
vin.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

ca3-42be37b556de43b398ec0dadfd872505

Verified for

Google

Email authentication partial

SPF

v=spf1 include:spf.mailjet.com ?all

neutral (?all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4X+uo0t18stZbVdz3DkmiPzGEIF28JPHCh6Z5ix4H+U+XXXV26G4nHzIlurFRhVb3HPuhEXuxrKRQW3RR…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr392ElSlXsjj9Uay2QMR1E1v6uxF7I1854oHZ/ikLM85vrwqzWTrBopdLUgabL7hmi3DeCrZkkRkowYqMf…

selectors probed

Certificate (current)

R13

from 2026-03-24 to 2026-06-22

Expires in 32 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.alsirhanunited.com/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection

Header values

referrer-policy: strict-origin-when-cross-origin
permissions-policy: accelerometer=(),ambient-light-sensor=(),autoplay=(),battery=(),display-capture=(),document-domain=(),encrypted-media=(),fullscreen=(),gamepad=(),gyroscope=(),layout-animations=(self),legacy-image-formats=(self),magnetometer=(),microphone=(),midi=(),oversized-images=(self),picture-in-picture=(),publickey-credentials-get=(),speaker-selection=(),sync-xhr=(self),unoptimized-images=(self),unsized-media=(self),usb=(),screen-wake-lock=(),web-share=(),xr-spatial-tracking=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' ws: data: blob: *.rolex.com *.youtube.com *.metricool.com *.occtoo.com *.dubail.fr *.bulgari.com *.vimeo.com vimeo.com web.gucci.data-solution.ch 'unsafe-eval' 'unsafe-inline' *.demdex.net *.hbjo-online.com i.ytimg.com *.hbjo-online.net *.googleapis.com *.gstatic.com *.cdninstagram.com *.bootstrapcdn.com *.vimeocdn.com *.google-analytics.com *.payline.com *.paypal.com *.avis-verifies.com cdn.jsdelivr.net *.adobedtm.com *.chopard.com *.richemontpartners.com *.richemont.com *.findologic.com *.google.com *.googletagmanager.com *.facebook.net tracker.metricool.com 4cs.gia.edu *.hotjar.io *.hotjar.com www.societe-des-avis-garantis.fr www.facebook.com *.cloudflareinsights.com cdn.occtoo-media.com *.doubleclick.net www.netreviews.eu *.americanexpress.com *.getalma.eu cdn.almapay.com www.googleadservices.com *.mariages.net *.google.fr *.inspify.io *.vaneste.fr *.skeepers.io *.cloudflare.com googleads.g.doubleclick.net *.cadgl.com my.matterport.com analytics.tiktok.com *.cred
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (2)

hbjo-online.com×2
instagram.com×2

Linked from (1)

hbjo-online.com×2