indexo.dev

jflalc.org

.org crawl

First seen 2026-05-09 · Last seen 2026-05-15 · ok HTTP/1.1 200 3963 ms crawled 2026-05-15

CA · 208.79.218.244 · AS40092 HostPapa

Reputation 100/100

Classifying

HTML metadata

Title
Japan Foundation Los Angeles |
Language
en

Technology

Server
Apache
Analytics
  • Google Tag Manager

Third-party hosts loaded (4)

  • www.googletagmanager.com×2
  • cdn.jsdelivr.net×1
  • cdnjs.cloudflare.com×1
  • stackpath.bootstrapcdn.com×1

Social

Contact

Phone

Registration

Registrar
Network Solutions, LLC
Created
1996-05-09
Expires
2027-05-10 354 days left
Updated
2026-05-10
Name servers
  • ns1.kwxbv694.hostpapavps.net
  • ns2.kwxbv694.hostpapavps.net

DNS records live

NS
  • ns1.kwxbv694.hostpapavps.net
  • ns2.kwxbv694.hostpapavps.net
MX
  • 0 mail.jflalc.org
Verified for
  • GlobalSign

Email authentication strong

SPF
v=spf1 ip4:208.79.218.72 ip4:208.79.218.244 +a +mx +ip4:204.44.192.12 +ip4:204.44.205.25 ~all
softfail (~all)
DMARC
v=DMARC1;p=quarantine;sp=none;adkim=r;aspf=r;pct=100;fo=0;rf=afrf;ri=86400
policy: quarantine · sp=none
DKIM
  • default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumtfN9W+5Spwd+trAQN/Ns14lAIe8uzaD6WjK3PE74HfBIds24cBkwicdcRrO/xEzhyS40Fxs4xzdM…
selectors probed

Certificate (current)

R13
from 2026-03-20 to 2026-06-18
Expires in 28 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.jflalc.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' https://static.ctctcdn.com https://cdnjs.cloudflare.com https://www.googletagmanager.com https://www.google-analytics.com https://www.google.com https://www.gstatic.com; style-src 'self' 'unsafe-inline' https://static.ctctcdn.com https://cdn.jsdelivr.net https://stackpath.bootstrapcdn.com https://cdnjs.cloudflare.com; img-src 'self' data: https://www.paypalobjects.com https://www.google-analytics.com https://www.googletagmanager.com;font-src 'self' cdnjs.cloudflare.com https://stackpath.bootstrapcdn.com https://www.jflalc.org https://www.google-analytics.com;child-src *;connect-src *;
strict-transport-security
max-age=31536000;

Links to (4)

Linked from (1)