openbanking.org.uk

.uk crawl

First seen 2026-04-14 · Last seen 2026-05-07 · ok HTTP/1.1 200 1175 ms crawled 2026-05-07

US · 13.33.235.21 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

sector finance type homepage

HTML metadata

Title

Home - Open Banking

Description

The trusted financial innovation that connects banks and fintechs to help the UK's consumers and businesses take control of their finances.

Language

en-GB

Canonical

https://www.openbanking.org.uk/

Feeds

Open Banking » Feed RSS
Open Banking » Comments Feed RSS

Open Graph

url: https://www.openbanking.org.uk/
title: Home - Open Banking
locale: en_GB
site name: Open Banking
description: The trusted financial innovation that connects banks and fintechs to help the UK's consumers and businesses take control of their finances.

Technology

CDN: Amazon CloudFront
Server: nginx
CMS: WordPress

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (4)

fonts.googleapis.com×1
fonts.gstatic.com×1
gmpg.org×1
www.googletagmanager.com×1

Social

Registration

Registrar

Gandi

Created

2016-09-27

Expires

2026-09-27 130 days left

Updated

2025-08-23

Name servers

ns-1022.awsdns-63.net.
ns-1383.awsdns-44.org.
ns-1726.awsdns-23.co.uk.
ns-416.awsdns-52.com.

DNS records live

NS

ns-1022.awsdns-63.net
ns-1383.awsdns-44.org
ns-1726.awsdns-23.co.uk
ns-416.awsdns-52.com

MX

0 openbanking-org-uk.mail.protection.outlook.com

TXT

Show 5 TXT records

pardot840283=0a6e4f8f6639903862e0a2f7ea6e22e59ce5584fb60642762021a896b3ea1d00
00DVd000002Iuc5=1TBVd000000015l;00D580000011YyY=1TBPx00000000JN
atlassian-domain-verification=SA1dWkP44mmv+5UC4lMfsC9FvzgFXHW8stWTE1C2XeeRR2xJksUzhzNoWipaUQIr
google-site-verification=O_g4dWB_wUV0urTutdvh-2X2GE3GmI5mkLQu_BINmmo
miro-verification=eba59b784e6c120dfc9bf2e4566ec510613f3ec6

Email authentication strong

SPF

v=spf1 redirect=_sri6o7riu.sdmarc.net

no all qualifier

DMARC

v=DMARC1; p=none; pct=100; rua=mailto:a.ri6o7riu@sdmarc.net

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsREVUECOtZm7BXei2S1INhSom8jUeKIfhC1b7ViZ7/0Hsd4w+gmJO01kclhN7v4Owb5sNBtXBCh1qD…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4R0UOywINED+w0JhlYx85W69X+i/9vmPb8xE/+5MCleA6u0x8kcdE961mgMZGvkAt/aSRrJWLkqUd…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

Amazon RSA 2048 M01

from 2025-10-27 to 2026-11-25

Expires in 189 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.openbanking.org.uk/

present

strict-transport-security
content-security-policy
x-frame-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing content type protection
missing Permissions Policy

Header values

referrer-policy: same-origin
x-frame-options: SAMEORIGIN
content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' *.google.com *.doubleclick.net *.googleadservices.net stats.g.doubleclick.net *.pardot.com content.openbanking.org.uk wss://*.hotjar.com *.hotjar.com *.hotjar.io s.w.org cdnjs.cloudflare.com *.googletagmanager.com *.google-analytics.com *.analytics.google.com *.googleapis.com googleapis.com *.vimeo.com vimeo.com *.youtube.com youtube.com *.gravatar.com *.gstatic.com *.plyr.io *.vimeocdn.com *.tiki-toki.com *.workable.com *.google.co.uk dcvxs6ggqztsa.cloudfront.net data:;
strict-transport-security: max-age=63072000; includeSubdomains; preload

Links to (10)

Linked from (1)

zimpler-kasinot.com×2