blme.com

HTML metadata

Title: BLME - Bank on our Principles

Technology

Fonts

Google Fonts

Third-party hosts loaded (1)

fonts.googleapis.com×1

Social

Contact

Email

Address

st plc is a company registered in England & Wales. Its registered company number is 05897

Registration

Registrar

Amazon Registrar, Inc.

Created

2000-04-02

Expires

2028-04-06 688 days left

Updated

2025-11-14

Name servers

ns-1496.awsdns-59.org
ns-1776.awsdns-30.co.uk
ns-433.awsdns-54.com
ns-910.awsdns-49.net

DNS records live

NS

ns-1496.awsdns-59.org
ns-1776.awsdns-30.co.uk
ns-433.awsdns-54.com
ns-910.awsdns-49.net

MX

0 eu-smtp-inbound-1.mimecast.com
0 eu-smtp-inbound-2.mimecast.com

TXT

Show 13 TXT records

miro-verification=71d0e99a11d8bdcb356e686b4beb6570d44b19eb
slack-domain-verification=8H3AKNfcE5DSQUApijfsvILrGDFmxJXg45UsBF6i
1password-site-verification=IRYQKPEKN5D23I6XCYM5SKOPGY
MS=4EBFCCA74E9405B3AFB33798429580566C68F9FB
ZA=o6kUgvnB6igcJYL/qbfCWw==
access-domain-verification=ab6483c03cc63538f9f450b925e42157ee9019d6b7dd9feeb6880f920b111826
anthropic-domain-verification-wjk5tq=cLC6ThTyPUOQY6ea44FpuuKRO
apple-domain-verification=OD1WhEB9BgEX73f9
atlassian-domain-verification=hzdanTOv3OUapmurAwtv41NkiOfmh3aliYOb9asLOeyx28zHFgtmjeqoJIziPXkm
blme-app-prod.azurewebsites.net
docusign=15d8f54e-d57b-4b7d-abbe-9524b10d3ab7
figma-domain-verification=f6dfa48f19b08b1171dc1ec29e79a5747304b2d5e25481453e3dd7a324facd01-1767696555
google-site-verification=hpum8MaDlfKrKvspnccxD25w30kEs09VA9E-UzLTo8Q

Email authentication strong

SPF

v=spf1 include:eu._netblocks.mimecast.com include:_spf.salesforce.com ip4:83.244.246.130 -all

strict (-all)

DMARC

v=DMARC1;p=quarantine;sp=quarantine;adkim=r;aspf=r;rua=mailto:dmarc.rua@blme.com;fo=1

policy: quarantine · sp=quarantine

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0X5ZglLbKSQk0O4XVYCXHwZKV/YYRkizzRbfQNVduoj3k4MUjvWswqVCvLGIlwC2nrmug5IvfrrCtroEuF…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArE+IXgKYKY99GLS5qVi+CztJIbO1ILtH8tfUBbt2uN5Ue+YAMCXJb9WiItK2jEoV4zkmjYLJlsXv2x/Fpb…

selectors probed

Certificate (current)

Go Daddy Secure Certificate Authority - G2

from 2025-06-27 to 2026-07-03

Expires in 45 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.blme.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles

Header values

referrer-policy: no-referrer
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src https://az416426.vo.msecnd.net/scripts/b/ai.2.min.js https://www.google-analytics.com https://maps.google.com/maps/api/js https://www.google.com/recaptcha/ https://api.addressnow.co.uk/js/addressnow-2.20.min.js 'self' 'nonce-tRF+PbjzmmPbiiA3TTtjf/mHiqifeTS4fO+QsWUp/lQ='; style-src https://fonts.googleapis.com https://api.addressnow.co.uk/css/addressnow-2.20.min.css 'self' 'unsafe-inline'; img-src data: https://maps.gstatic.com/ https://api.addressnow.co.uk/ 'self'; font-src https://fonts.googleapis.com/ https://fonts.gstatic.com 'self'; connect-src https://dc.services.visualstudio.com/v2/track https://www.google-analytics.com https://maps.googleapis.com/maps/api/mapsjs/gen_204 http://api.addressnow.co.uk/CapturePlus/Interactive/Find/v2.00/json3ex.ws http://api.addressnow.co.uk/CapturePlus/Interactive/RetrieveFormatted/v2.00/json3ex.ws 'self'; frame-src https://www.google.com/ https://clients.prepaidfinancialservices.com/ 'self'; frame-ancestors 'self'; up
strict-transport-security: max-age=2592000

Links to (7)

Linked from (2)

blmecapital.com×1
nomobank.com×1