indexo.dev

raa.se

.se crawl

First seen 2026-05-23 · Last seen 2026-05-31 · ok HTTP/1.1 200 705 ms crawled 2026-05-28

SE · 193.10.40.14 · AS1653 Vetenskapsradet / SUNET

Reputation 92/100 weak subdomain policy

Classifying

HTML metadata

Title
Startsida | Riksantikvarieämbetet
Language
sv-SE
Generator
Elementor 3.24.5; features: e_font_icon_svg, additional_custom_breakpoints; settings: css_print_method-external, google_font-enabled, font_display-swap
Canonical
https://www.raa.se/

Open Graph

title
Riksantikvarieämbetet
description
Riksantikvarieämbetet är den myndighet som gör så att kulturarvet bevaras, används och utvecklas. Vi har ansvar för frågor om kulturmiljön och kulturarvet.

Technology

CMS
WordPress
jQuery
3.7.1
Fonts
  • Adobe Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • fonts.googleapis.com×3
  • fonts.gstatic.com×2
  • use.typekit.net×2
  • gmpg.org×1

Social

Contact

Email
Phone

DNS records live

NS
  • ns1.raa.se
  • ns2.raa.se
  • ns3.raa.se
MX
  • 10 raa-se.mail.protection.outlook.com
TXT
  • eU2E4vsGHzXjrgeoSCravGLjYvoU1q5h6j4hyvkSTpXQTpZgQz7R+hDjObiXzxm1CagjLi6ZUXusRyAar6qIHg==
Verified for
  • Apple

Email authentication strong

SPF
v=spf1 ip4:193.10.40.49 ip4:193.11.31.222 include:spf-eu.exlibrisgroup.com a:smtp.tripnet.se include:spf.topdesk.net include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; sp=none; rua=mailto:pm@raa.se; ruf=mailto:pm@raa.se; rf=afrf; pct=100; ri=86400
policy: quarantine · sp=none
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDUhKW8Lxpl1QT9j3/PwpBLO2kzKw5anvYZqtk79syryYzUnlwn05LRAXPdEYQTZ1EdwwASZh6/Gm2ORIR9ea…
selectors probed

Certificate (current)

GEANT TLS RSA 1
from 2025-11-07 to 2026-11-07
Expires in 160 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.raa.se/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
Header values
referrer-policy
no-referrer-when-downgrade
permissions-policy
geolocation=(), midi=(), microphone=(), camera=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' www.raa.se http://www.raa.se press.newsmachine.com *.raa.se http://*.raa.se raa.diva-portal.org https://unpkg.com https://cdn.jsdelivr.net www.anpdm.com *.vimeo.com *.bokinfo.se *.cloudfront.net *.tile.openstreetmap.org sketchfab.com cloudfront.net feeds.feedburner.com k-blogg.se *.flickr.com *.staticflickr.com *.elementor.com *.typekit.net *.google.com *.gravatar.com *.youtube.com https://yoast.com code.jquery.com libguides proc-eu.springyaws.com lgapi-eu.libapps.com libapps-eu.s3.amazonaws.com *.youtu.be *.youtube-nocookie.com webshop.publit.com *.infra.entryscape.com webstats.sgit.se webbanalys.sgit.se widget.publit.com https://nominatim.openstreetmap.org https://code.jquery.com https://sourcemap.devowl.io *.hotjar.io ws: ws.hotjar.com *.anpdm.com data:; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.typekit.net code.jquery.com *.google.com *.gstatic.com cdn.jsdelivr.net unpkg.com *.hotjar.com catalog.raa.se static.entryscape.com webstats.sgit.se *.publit
strict-transport-security
max-age=31536000; includeSubDomains

Links to (6)

Linked from (9)