hra-pharma.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-07 · ok HTTP/1.1 200 1412 ms crawled 2026-05-07

GB · 134.213.213.76 · AS15395 Rackspace Ltd.

Reputation 69/100 wrong cert dmarc monitor-only

Classifying

HTML metadata

Title: HRA Pharma | Homepage
Description: A fast-growing consumer healthcare company, building and developing strong OTC and consumer healthcare brands
Language: en

Technology

Fonts

Font Awesome
Google Fonts

Third-party hosts loaded (4)

fonts.googleapis.com×1
fonts.gstatic.com×1
use.fontawesome.com×1
www.google.com×1

Registration

Registrar

CSC Corporate Domains, Inc.

Created

1998-11-20

Expires

2026-11-19 183 days left

Updated

2025-11-16

Name servers

lara.ns.cloudflare.com
olof.ns.cloudflare.com

DNS records live

NS

lara.ns.cloudflare.com
olof.ns.cloudflare.com

MX

10 mx.mailprotect.be
10 mxa-00157e01.gslb.pphosted.com
10 mxb-00157e01.gslb.pphosted.com
50 mx.backup.mailprotect.be

TXT

Show 5 TXT records

0ed1fe018abee899d40bf84478babd435e0c38330b
6LVsDHZ0KLrdyJFWyARKC58WpripQxkzKXFpBJz52gEXEVeusC38LeN/N007r/isyN0UHxR4yZLgPNTbFjCf8Q==
MS=F6B6427BAEDB356E0295CA5E12DAC3FE3A2FD6A9
MS=ms44906954
google-site-verification=18BId0N7xHD__aLSwvBoqA8FCHHKu8yyxjH9OH0dibw

Email authentication partial

SPF

v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com;

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDUr4akt/ml1sfXPyUMUhUVSKo208R4p/pZBRO4MV1SanR+ajksAab/GoZ3h/lBEquLXmztNu2R7rmyCEruY/…
selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCe1LxLsbii02jqUfau4KEDI1B5d8NgwG551hW1L05HGH2ZEiJG4YIZ2F6sYalClwcuR8XWttiX64uhtlju8u…

selectors probed

Certificate (current) wrong cert

R13

from 2026-04-20 to 2026-07-19

Expires in 61 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.hra-pharma.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: same-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(self), ambient-light-sensor=(self), autoplay=(self), battery=(self), camera=(self), cross-origin-isolated=(self), display-capture=(self), document-domain=*, encrypted-media=(self), execution-while-not-rendered=*, execution-while-out-of-viewport=*, fullscreen=(self "https://player.vimeo.com"), geolocation=(self), gyroscope=(self), magnetometer=(self), microphone=(self), midi=(self), navigation-override=(self), payment=(self), picture-in-picture=*, publickey-credentials-get=(self), screen-wake-lock=(self), sync-xhr=*, usb=(self), web-share=(self), xr-spatial-tracking=(self)
x-content-type-options: nosniff
content-security-policy: connect-src 'self' https://vimeo.com *.vimeo.com https://www.google-analytics.com; default-src 'self'; font-src 'self' data: https://fonts.gstatic.com https://use.fontawesome.com; form-action 'self'; frame-src 'self' *.vimeo.com *.google.com https://www.youtube.com/; img-src 'self' data: https://maps.gstatic.com https://maps.googleapis.com https://www.google-analytics.com https://www.hra-pharma.com; manifest-src 'self'; media-src 'self' *.vimeo.com *.akamaized.net *.vimeocdn.com; object-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://google.com https://www.google.com https://www.gstatic.com https://www.googletagmanager.com https://maps.googleapis.com https://www.google-analytics.com https://www.hra-pharma.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.fontawesome.com https://www.hra-pharma.com
strict-transport-security: max-age=31536000; includeSubDomains

Links to (1)

perrigo.com×2

Linked from (1)

ellaone.es×2