goya.com
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- WordPress
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (7)
- cdn-ilddihb.nitrocdn.com×8
- img.youtube.com×2
- cdn.jsdelivr.net×1
- gmpg.org×1
- static.addtoany.com×1
- unpkg.com×1
- www.googletagmanager.com×1
Social
Registration
- Registrar
- Network Solutions, LLC
- Created
- 1995-09-14
- Expires
- 2030-09-13 1577 days left
- Updated
- 2025-07-15
- Name servers
-
- a1-9.akam.net
- a14-67.akam.net
- a20-66.akam.net
- a24-65.akam.net
- a3-65.akam.net
- a5-67.akam.net
DNS records live
- NS
-
- a1-9.akam.net
- a14-67.akam.net
- a20-66.akam.net
- a24-65.akam.net
- a3-65.akam.net
- a5-67.akam.net
- MX
-
- 5 goya-com.mail.protection.outlook.com
- TXT
-
Show 11 TXT records
apple-domain-verification=5ibhNACpl7OBT15ccitrix-verification=hr-_l1AN1ToxpDY4IqUi3n1stgh364v5ea2qqhfb95l93gv=spf1 include:spf.protection.outlook.com include:mail.zendesk.com include:authsmtp.com -allcisco-ci-domain-verification=336e1b59661fb5851a55d9e4cf99bc14be8a4338ba297cc453a979b7686d255drp41r1ekcceugk229043hlqisgMS=ms25828890duo_sso_verification=yClYMCFDtFbtz8tVcVPLSC6ZByp8t6YIRDlKf05H8gGXHOFqwD1tzWHrvQ8bWdqklk4aaesotbrq1m5vjocvqhb75ssophos-domain-verification=d265b44dcef40247e7ce74bb852541467624a2d1atlassian-sending-domain-verification=ac615867-ba32-4273-a1ad-988016835470
Certificate (current)
WE1
Expires in 65 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
autoplay=(self "https://www.youtube.com" "https://www.youtube-nocookie.com"), encrypted-media=(self "https://www.youtube.com" "https://www.youtube-nocookie.com")- x-content-type-options
nosniff- content-security-policy
upgrade-insecure-requests; default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: blob:; style-src 'self' 'unsafe-inline' https: blob: 'unsafe-eval'; font-src 'self' https: data:; img-src 'self' https: data:; frame-src 'self' https: data:; connect-src 'self' https:; media-src 'self' https: data:; worker-src 'self' blob: https://cdn-ilddihb.nitrocdn.com/; child-src 'self' blob:- strict-transport-security
max-age=63072000