journal-officiel.gouv.fr

.fr crawl

First seen 2026-04-11 · Last seen 2026-05-20 · ok HTTP/1.1 200 1052 ms crawled 2026-05-19

FR · 109.232.232.161 · AS50624 Outscale SASU

Reputation 100/100

Classifying

HTML metadata

Title: Accueil — Journal Officiel
Language: fr-FR
Canonical: https://www.journal-officiel.gouv.fr/pages/accueil/

Technology

Server: openresty
CMS: Gatsby

Social

Registration

Registrar

NAMESHIELD

Created

1997-07-14

Expires

2026-07-04 44 days left

Updated

2025-07-07

Name servers

ns1.dila.fr
ns2.dila.fr
ns3.dila.fr
ns4.dila.fr

DNS records live

NS

ns1.dila.fr
ns2.dila.fr
ns3.dila.fr
ns4.dila.fr

Email authentication no MX

SPF: not published
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

Sectigo Qualified Website Authentication CA R35

from 2026-02-23 to 2027-02-24

Expires in 279 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.journal-officiel.gouv.fr/pages/accueil/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection

Header values

referrer-policy: strict-origin-when-cross-origin
permissions-policy: midi=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=()
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests; default-src 'self' https://*.screeb.app; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com https://*.googletagmanager.com/ disqus.com *.disqus.com *.disquscdn.com https://js.hs-scripts.com platform.twitter.com syndication.twitter.com cdn.syndication.twimg.com https://gist.github.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://js.hsforms.net https://forms.hsforms.com/ https://js.hs-analytics.net https://app.getbeamer.com/js/ https://realtime.getbeamer.com/ https://apis.google.com https://*.screeb.app nominatim.openstreetmap.org http://cdn.matomo.cloud/opendatasoft.matomo.cloud/matomo.js http://cdn.mxpnl.com/ ; style-src 'self' 'unsafe-inline' https://platform.twitter.com https://ton.twimg.com https://github.githubassets.com/ *.disquscdn.com https://fonts.googleapis.com https://app.getbeamer.com/styles/ ; img-src * data: blob:; font-src * data:; media-src 'self' https://eu.ftp.huwise.com/odsacademy
strict-transport-security: max-age=31536000;includeSubdomains