indexo.dev

caferouge.com

.com crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 1066 ms crawled 2026-05-30

US · 104.26.2.147 · AS13335 Cloudflare, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Parisian-inspired Restaurants & French Dishes | Café Rouge
Description
Café Rouge serves French cuisine at Parisian-style restaurants across the UK. Book a table at your local restaurant for delicious food & a warm welcome.
Language
en
Canonical
https://www.caferouge.com

Open Graph

title
Parisian-inspired Restaurants & French Dishes | Café Rouge
site name
Café Rouge
description
Café Rouge serves French cuisine at Parisian-style restaurants across the UK. Book a table at your local restaurant for delicious food & a warm welcome.

Technology

CDN
Cloudflare
CMS
Nuxt
Analytics
  • Google Tag Manager

Third-party hosts loaded (5)

  • api.bigtablegroup.com×1
  • cdnjs.cloudflare.com×1
  • images.ctfassets.net×1
  • videos.ctfassets.net×1
  • www.googletagmanager.com×1

Registration

Registrar
123-Reg Limited
Created
2007-05-10
Expires
2027-05-10 343 days left
Updated
2026-05-11
Name servers
  • nadia.ns.cloudflare.com
  • sam.ns.cloudflare.com

DNS records live

NS
  • nadia.ns.cloudflare.com
  • sam.ns.cloudflare.com
MX
  • 0 caferouge-com.mail.protection.outlook.com
TXT
  • 62nlmuifnsrnlls9ppougl1pn3
  • ca3-bbeeafd95aed455eaeffb53bbfedb2ef
  • pjeu17qndrt6ngqen7k9amhs5m
Verified for
  • Meta
  • Microsoft 365

Email authentication weak

SPF
v=spf1 a:hybrid.casualdininggroup.com include:spf.protection.outlook.com include:txdlimited.co.uk ip4:74.121.49.157 -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

E7
from 2026-05-01 to 2026-07-30
Expires in 60 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.caferouge.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
camera=(), microphone=(), geolocation=(self)
x-content-type-options
nosniff
content-security-policy
style-src 'self' 'unsafe-inline' *.googleapis.com *.google-analytics.com *.gstatic.com *.tenkites.com tkmenus.com atlas.microsoft.com *.cdn-cookieyes.com *.liveres.co.uk *.braintreegateway.com *.googleads cdn.co-buying.com https://cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.13/css/intlTelInput.css https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/css/all.min.css *.designmynight.com *.instagram.com; font-src 'self' data: *.googleapis.com *.google-analytics.com *.gstatic.com *.tenkites.com tkmenus.com atlas.microsoft.com *.liveres.co.uk *.braintreegateway.com *.googleads cdn.co-buying.com *.instagram.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/webfonts/; script-src 'self' 'self' data: 'unsafe-inline' 'unsafe-eval' *.googletagmanager.com *.googleapis.com *.hotjar.com cdn-cookieyes.com *.tiktok.com *.licdn.com *.ads-twitter.com *.twitter.com *.bing.com *.facebook.net *.google.com *.gstatic.com *.google-analytics.com *.exponea.com *.tenkites.com tkmenus.com
strict-transport-security
max-age=31536000; preload

Links to (1)

Linked from (1)