indexo.dev

norlha.com

.com crawl

First seen 2026-04-22 · Last seen 2026-05-16 · ok HTTP/1.1 200 7645 ms crawled 2026-05-16

CA · 23.227.38.32 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Luxury Yak Wool, Ethical & Sustainable Fashion, Tibetan Plateau – Norlha
Description
Slow, sustainable and ethical luxury fashion, handwoven from Yak wool by nomads turned artisans on the Tibetan Plateau. Scarves, shawls, clothing and homewares; conscious designs made with intention.
Language
en
Canonical
https://www.norlha.com/

Open Graph

url
https://www.norlha.com/
title
Luxury Yak Wool, Ethical & Sustainable Fashion, Tibetan Plateau
site name
Norlha
description
Slow, sustainable and ethical luxury fashion, handwoven from Yak wool by nomads turned artisans on the Tibetan Plateau. Scarves, shawls, clothing and homewares; conscious designs made with intention.

Technology

CDN
Cloudflare
CMS
Shopify

Third-party hosts loaded (5)

  • cdn.shopify.com×4
  • shop.app×2
  • fonts.shopifycdn.com×1
  • monorail-edge.shopifysvc.com×1
  • static.klaviyo.com×1

Social

Contact

Email
Phone

Registration

Registrar
GoDaddy.com, LLC
Created
2010-03-19
Expires
2027-03-19 302 days left
Updated
2026-03-20
Name servers
  • ns75.domaincontrol.com
  • ns76.domaincontrol.com

DNS records live

NS
  • ns75.domaincontrol.com
  • ns76.domaincontrol.com
MX
  • 0 norlha-com.mail.protection.outlook.com
TXT
  • klaviyo-site-verification=QDnvjr
  • NETORGFT12381209.onmicrosoft.com
Verified for
  • Meta

Email authentication partial

SPF
v=spf1 include:secureserver.net include:mailgun.org ~all
softfail (~all)
DMARC
v=DMARC1; p=none
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

E7
from 2026-03-31 to 2026-06-29
Expires in 40 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.norlha.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • short HSTS max-age
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security
max-age=7889238

Links to (1)

Linked from (1)