roche.ch

.ch crawl

First seen 2026-05-11 · Last seen 2026-05-16 · ok HTTP/1.1 200 5542 ms crawled 2026-05-16

US · 104.17.62.116 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: Roche Schweiz
Description: Heute entwickelt Roche innovative Medikamente und diagnostische Tests, die Millionen von Patientinnen und Patienten weltweit helfen
Language: de
Generator: Gatsby 5.15.0
Canonical: https://www.roche.ch/

Open Graph

url: https://www.roche.ch/home
title: Roche Schweiz
description: Heute entwickelt Roche innovative Medikamente und diagnostische Tests, die Millionen von Patientinnen und Patienten weltweit helfen

Technology

CDN: Cloudflare

Analytics

Google Tag Manager

Cookie consent

OneTrust

Third-party hosts loaded (6)

assets.roche.com×9
component-library.roche.com×4
fonts.roche.com×3
assets.adobedtm.com×1
cdn.cookielaw.org×1
www.googletagmanager.com×1

Social

DNS records live

NS

lewis.ns.cloudflare.com
malavika.ns.cloudflare.com

TXT

Show 5 TXT records

4y020vc0r8xk48q5grrvl25d96d3nrmj
cf7f0pkxmyll27vdlkn500d7l288zrlc
google-site-verification=BX5TV_eg9yMLWsTH1QnEscmnmaY4E2G-9qPwK5qcPlM
google-site-verification=SU8znk3OP52Hyq4_sSPQlu5cX5K7PV6gKoMveQy9HP4
shy0kpb01xh4rk1mh6w6m5y2ndz3j3zn

Email authentication no MX

SPF: v=spf1 mx -all
strict (-all)
DMARC: v=DMARC1; p=quarantine; rua=mailto:dmarc@ayba8dhs.uriports.com; ruf=mailto:dmarc@ayba8dhs.uriports.com; fo=1:d:s
policy: quarantine
DKIM: no key found at common selectors

Certificate (current)

WE1

from 2026-04-04 to 2026-07-03

Expires in 45 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://www.roche.ch/

present

strict-transport-security
content-security-policy
content-security-policy-report-only
x-frame-options
x-content-type-options
referrer-policy

findings

missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' https://app.storyblok.com
strict-transport-security: max-age=31536000
content-security-policy-report-only: default-src 'self' *.roche.com *.roche.net *.gene.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.roche.com *.roche.net *.gene.com snap.licdn.com cdn.walkme.com apis.google.com tpc.googlesyndication.com api.html5media.info workdevapp.com cdn-js.net gdata.youtube.com twitter.com geolocation.onetrust.com api.flickr.com graph.facebook.com sharecdn.social9.com maps.googleapis.com use.typekit.com use.typekit.net munchkin.marketo.net img.en25.com w.likebtn.com cdn.mathjax.org sadmin.brightcove.com cdnjs.cloudflare.com releases.flowplayer.org script.crazyegg.com wi.likebtn.com pepperglobal.com analytics.twitter.com cdn.blueconic.net connect.facebook.net fullstory.com script.hotjar.com gnntch.blueconic.net rules.quantcount.com secure.quantserve.com static.hotjar.com www.youtube.com www.googletagmanager.com www.google-analytics.com google-analytics.com *.gstatic.com static.ads-twitter.com sjs.bizographics.com *.linkedin.com www.google.com w.soundcloud.com s.ytimg.com *.cloudflareaccess.c