indexo.dev

railpen.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-19 · ok HTTP/1.1 200 3002 ms crawled 2026-05-08

US · 20.55.103.191 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title
Railpen | Member-first operations and long-term investment to secure our members' future | Railpen
Description
Railpen exists to secure our members’ future. Managing over £34bn for more than 350,000 rail industry members, we combine a disciplined, member‑first operational approach with long‑term investment...
Language
en
Canonical
https://www.railpen.com/
Translations
  • en

Open Graph

url
https://www.railpen.com/
title
Railpen | Member-first operations and long-term investment to secure our members' future | Railpen
site name
Railpen
description
Railpen exists to secure our members’ future. Managing over £34bn for more than 350,000 rail industry members, we combine a disciplined, member‑first operational approach with long‑term investment...

Technology

CDN
Azure Front Door
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • i.ytimg.com×1
  • www.googletagmanager.com×1

Social

Contact

Address
st approachMember-first standardsInsightsInsightsNews & mediaNews & media© Railpen 2026

Registration

Registrar
Easyspace Limited
Created
2005-11-14
Expires
2027-11-14 542 days left
Updated
2025-10-15
Name servers
  • ns1.namecity.com
  • ns2.namecity.com

DNS records live

NS
  • ns1.namecity.com
  • ns2.namecity.com
MX
  • 1 eu-smtp-inbound-1.mimecast.com
  • 2 eu-smtp-inbound-2.mimecast.com
TXT
  • remarkable-domain-verification=afae686d-1e74-44c0-9594-5fd742a9e3e0
  • gitkraken-domain-verification=fbd9211e8809b4db07bd75abed695574ebbcc81dbeb36fa897d866ce11119ab7
Verified for
  • Adobe
  • Apple
  • DocuSign
  • Microsoft
  • Twilio

Email authentication strong

SPF
v=spf1 include:eu._netblocks.mimecast.com include:servers.mcsv.net include:spf.mandrillapp.com include:spf.protection.outlook.com include:everbridge.net ip4:80.168.64.29/32 ip4:31.221.61.206/32 ip4:185.249.37.78/32 -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:kqppc5ym@ag.eu.dmarcadvisor.com;
policy: quarantine
DKIM
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

R13
from 2026-04-09 to 2026-07-08
Expires in 49 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://www.railpen.com/

present
  • strict-transport-security
  • content-security-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
frame-src *.google.com *.gstatic.com *.youtube.com apikeys.civiccomputing.com cc.cdn.civiccomputing.com player.vimeo.com 'self' www.youtube.com;script-src *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.hotjar.com *.youtube.com apikeys.civiccomputing.com cc.cdn.civiccomputing.com cdn-cookieyes.com https://*.infisecure.com https://plausible.io 'self' 'unsafe-inline' vimeo.com;script-src-elem *.google-analytics.com *.googleapis.com *.googletagmanager.com *.hotjar.com cdn-cookieyes.com https://*.infisecure.com https://plausible.io 'self' 'unsafe-inline';img-src *.google-analytics.com *.googleapis.com *.googletagmanager.com *.gstatic.com *.vimeocdn.com *.ytimg.com cdn-cookieyes.com data: https://*.infisecure.com 'self' 'unsafe-inline';connect-src *.google-analytics.com *.googleapis.com *.googletagmanager.com *.hotjar.com *.youtube.com apikeys.civiccomputing.com cc.cdn.civiccomputing.com cdn-cookieyes.com https://log.cookieyes.com https://plausible.io https://vc.hotjar.
strict-transport-security
max-age=31536000

Links to (2)

Linked from (3)