critt-mi.com

HTML metadata

Title

CRITT-MI | Laboratoire d'Analyses & Essais Matériaux Certifié

Description

Laboratoire d'analyses matériaux et essais certifiés · COFRAC 17025 · NADCAP · ISO 9001 · ISO 45001 · Qualifié SAFRAN, AIRBUS & RENAULT · Label CRT (CIR/CII)

Language

fr

Canonical

https://critt-mi.com

Translations

en
fr

Open Graph

url: https://critt-mi.com
title: CRITT-MI | Laboratoire d'Analyses & Essais Matériaux Certifié
locale: fr
site name: CRITT-MI
description: Laboratoire d'analyses matériaux et essais certifiés · COFRAC 17025 · NADCAP · ISO 9001 · ISO 45001 · Qualifié SAFRAN, AIRBUS & RENAULT · Label CRT (CIR/CII)

Technology

Server: nginx

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (4)

cdn.jsdelivr.net×2
fonts.googleapis.com×2
fonts.gstatic.com×1
www.googletagmanager.com×1

Social

Contact

Email

Phone

+33324378989

Address

3 Boulevard Jean Delautre, 08000, Charleville-Mézières, FR

Registration

Registrar

IONOS SE

Created

2021-06-28

Expires

2027-06-28 404 days left

Updated

2025-12-11

Name servers

ns1049.ui-dns.org
ns1068.ui-dns.de
ns1097.ui-dns.biz
ns1117.ui-dns.com

DNS records live

NS

ns1049.ui-dns.org
ns1068.ui-dns.de
ns1097.ui-dns.biz
ns1117.ui-dns.com

MX

1 crittmi-com01c.mail.protection.outlook.com

TXT

google-site-verification=ntUbmpuZrhdNb2woUjEOQSumORv3Qiad4_DYy0jJQxU

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; pct=100; adkim=s; aspf=s

policy: quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApD4w8awKTijt4nmyVIev9Ji5cdyyraDmtZ0al8GkWHkS2sAY9W0BihTS4fSrDgi0h9HNdIsOOO4A6T…

selectors probed

Certificate (current)

R13

from 2026-03-12 to 2026-06-10

Expires in 22 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://critt-mi.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), usb=(), magnetometer=(), gyroscope=(), accelerometer=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'nonce-uiX7Yt72aiKbLahuvwdaBZHL7l1YWKPS' 'strict-dynamic' https://cdn.jsdelivr.net https://unpkg.com https://www.google.com https://www.gstatic.com https://www.googletagmanager.com 'unsafe-inline'; style-src 'self' https://cdn.jsdelivr.net https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: blob: https://cdn.jsdelivr.net https://www.googletagmanager.com https://www.google.com https://*.google-analytics.com; font-src 'self' data: https://fonts.gstatic.com https://cdn.jsdelivr.net; connect-src 'self' https://www.google.com https://www.gstatic.com https://www.googletagmanager.com https://analytics.google.com https://*.google-analytics.com; worker-src 'self'; media-src 'self'; object-src 'none'; frame-src 'self' https://maps.google.com https://www.google.com https://www.gstatic.com https://consent.google.com https://*.google.com https://www.youtube.com https://www.youtube-nocookie.com https://player.vimeo.com; frame-ancestors 'self'; bas
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin

Links to (1)

linkedin.com×2

Linked from (1)

afcrt.com×2