railwaychildren.org.uk

.uk crawl

First seen 2026-05-30 · Last seen 2026-06-01 · ok HTTP/1.1 200 1676 ms crawled 2026-05-31

IE · 52.48.157.84 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: Railway Children | Protecting Vulnerable Children Worldwide
Description: Railway Children fights to protect children alone and at risk on the streets and transport networks in the UK, India, and Tanzania.
Language: en-GB
Canonical: https://www.railwaychildren.org.uk/

Open Graph

url: https://www.railwaychildren.org.uk/
title: Railway Children | Protecting Vulnerable Children Worldwide
locale: en_GB
site name: Railway Children
description: Railway Children fights to protect children alone and at risk on the streets and transport networks in the UK, India, and Tanzania.

Technology

Server: nginx
CMS: WordPress
jQuery: 3.5.1

Fonts

Adobe Fonts

Third-party hosts loaded (3)

translate.google.com×2
use.typekit.net×2
www.google.com×2

Social

Contact

Email

hello@railwaychildren.org.uk

Phone

01270757596

Address

Railway Children, Unit 1, Unipart Rail, Gresty Rd, Crewe CW2 6EH, United Kingdom

DNS records live

NS

ns1.livedns.co.uk
ns2.livedns.co.uk
ns3.livedns.co.uk

MX

0 railwaychildren-org-uk.mail.protection.outlook.com

Verified for

Microsoft 365

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com include:shops.shopify.com include:_spf.rsmsecure.com ip4:45.131.138.126 ip4:193.39.254.56 ip4:3.9.122.145 ip4:84.18.230.24 -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; pct=100; adkim=s; aspf=s

policy: quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCpvukBKN4uwl1dB0LPBJGREcCNH191Zi28jamA9KL7hy3d7wKNl13We04rHzIzk34GqzHwN6r4DK9lSWtLIx…

selectors probed

Certificate (current)

R12

from 2026-04-17 to 2026-07-16

Expires in 42 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.railwaychildren.org.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' https: wss: data: blob: 'unsafe-inline' 'unsafe-eval';
strict-transport-security: max-age=15552000; preload

Links to (6)

Linked from (2)

page2go2.com×1
bracedigital.com×1