cfna.com
HTML metadata
Technology
- CDN
- Amazon CloudFront
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (2)
- 173c77035918.edge.sdk.awswaf.com×1
- www.googletagmanager.com×1
Social
Contact
- Phone
- Address
- st National Association. All Rights Reserved.800.321.3950
Registration
- Registrar
- 1API GmbH
- Created
- 1996-11-27
- Expires
- 2026-11-26 191 days left
- Updated
- 2025-11-21
- Name servers
-
- ns-1108.awsdns-10.org
- ns-1919.awsdns-47.co.uk
- ns-219.awsdns-27.com
- ns-637.awsdns-15.net
DNS records live
- NS
-
- ns-1108.awsdns-10.org
- ns-1919.awsdns-47.co.uk
- ns-219.awsdns-27.com
- ns-637.awsdns-15.net
- MX
-
- 10 cfna-com.mail.protection.outlook.com
- TXT
-
Show 8 TXT records
MS=ms56442674atlassian-domain-verification=AQOH81v1DW7y2iAxHtwdOaVzCkS3C0OjPbfgcgHpib9CsMu4iwdA3RpcNxRihIt5e2ma-verification=ywlfbgoogle-site-verification=wG30Ka6PfMkzq4g60lDG7jRtm4kOemglO4CIxAQvckkk=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDGoQCNwAQdJBy23MrShs1EuHqK/dtDC33QrTqgWd9CJmtM3CK2ZiTYugkhcxnkEtGbzg+IJqcDRNkZHyoRezTf6QbinBB2dbyANEuwKI5DVRBFowQOj9zvM3IvxAEboMlb0szUjAoML94HOkKuGuCkdZ1gbVEi3GcVwrIQphal1QIDAQAB;t=y; o=~;00DDp0000018Ne0=1TBUh0000000BZlKd8Xmh9PDm0/8Vw+s1/T76dSptaUXM2cHJzLgAFwIQD/Fi7mhxVOJijeNA8StEFd2OAOI/52U473UDc4HEaaig==
Email authentication strong
- SPF
-
v=spf1 ip4:199.48.24.27/24 ip4:199.48.24.28/24 ip4:199.48.24.126/24 ip4:64.14.245.159 ip4:64.14.245.80 ip4:142.169.113.161 ip4:136.147.176.13 ip4:167.89.6.122 ip4:199.244.12.55 ip4:167.89.11.211 ip4:134.128.124.192 include:spf.protection.outlook.com include:gateways.firstdata.com include:e2ma.net include:_spf.salesforce.com -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; rua=mailto:ra6tzf4g@ag.us.dmarcian.com;policy: reject (enforced) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQf7TyUoT5o/woYeQaRoiVU08Vx5OITx1sH6nCvXXTa61aMn9GlJiArjNkFLnmCOqqewJ+9W6eD4Z8… - k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxZV2GUJDo8W1Q38gTMh0REGXbWwnf44DsX5eJ5+CSO+3nU2r0PcCeWMErMLOCCv1GKWgUnNzI9xT5F/ngs… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsI7LUjFuekgJV+XQVn6kfUdjYIP45KHOROKlOzhokgxHHgc0d+cBxTl8RRXHwuXcP/mpq6KezkFFRCLP/C…
selectors probed - selector1:
Certificate (current)
Sectigo Public Server Authentication CA EV R36
Expires in 116 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'nonce-e0a7026a-93a8-4728-8289-27c721996760' 'strict-dynamic' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com/ https://www.googletagmanager.com/ https://www.gstatic.com/ https://*.hotjar.com/; frame-src 'self' https://td.doubleclick.net/ https://player.vimeo.com/ https://bridgestone.demdex.net/ https://cdn.trustev.com/ https://media.thesocialpresskit.com/ https://www.googletagmanager.com/; connect-src 'self' https://www.google-analytics.com/ https://maps.googleapis.com/ https://dpm.demdex.net/ https://hub.firestonecompleteautocare.com/ https://app.trustev.com/ https://analytics.google.com/ wss://mpsnare.iesnare.com/ https://stats.g.doubleclick.net/ https://adservice.google.com/ https://www.google.com/ https://www.googletagmanager.com/ http://*.tt.omtrdc.net/ https://region1.analytics.google.com/ https://translate.googleapis.com/ https://*.awswaf.com/ https://www.googleadservices.com/ https://*.hotjar.com/ https:/- strict-transport-security
max-age=31536000 ; includeSubDomains