rosemaryandco.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-12 · ok HTTP/1.1 200 5439 ms crawled 2026-05-08

US · 104.26.9.82 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

sector other type homepage

HTML metadata

Title: Rosemary and Co Artists
Language: en
Canonical: https://www.rosemaryandco.com/

Technology

CDN: Cloudflare
CMS: Gatsby

Analytics

Cloudflare Insights

Fonts

Google Fonts

Third-party hosts loaded (4)

fonts.googleapis.com×1
platform.enchant.com×1
stackpath.bootstrapcdn.com×1
static.cloudflareinsights.com×1

Social

Contact

Phone

Registration

Registrar

Mesh Digital Limited

Created

2003-12-12

Expires

2027-12-12 570 days left

Updated

2025-12-08

Name servers

jocelyn.ns.cloudflare.com
pablo.ns.cloudflare.com

DNS records live

NS

jocelyn.ns.cloudflare.com
pablo.ns.cloudflare.com

MX

Show 7 MX records

20 aspmx.l.google.com
30 alt1.aspmx.l.google.com
30 alt2.aspmx.l.google.com
40 aspmx2.googlemail.com
40 aspmx3.googlemail.com
40 aspmx4.googlemail.com
40 aspmx5.googlemail.com

Verified for

Google

Email authentication partial

SPF

v=spf1 include:_spf.google.com include:enchanthq.net include:spf.braintreegateway.com include:amazonses.com ip4:51.195.206.97 ip4:5.196.43.70 ip4:5.196.43.71 include:berryitconsulting.co.uk -all

strict (-all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

Show 4 DKIM selectors

default: p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDnbpzC4G7q2oWnhMH8teF/vEN++ko57eu77/xRpgoYt7BDM4L8QKmZd47Xq+aKfF42GhzsDMu6Q34ZgFETxM6pDH4t7iLtgeHqN7…
google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk5I/FTXRwodrG192m8801kMVp6G9Of8La/bqWmT1NHD9Yd/N/pLwYThnKYqj5mwifZQL7Hbw0amtwz…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

WE1

from 2026-03-14 to 2026-06-12

Expires in 23 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.rosemaryandco.com/

present

strict-transport-security
content-security-policy-report-only
x-frame-options
x-content-type-options
referrer-policy

findings

missing Content Security Policy
missing Permissions Policy

Header values

referrer-policy: same-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy-report-only: font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com www.paypalobjects.com *.cloudflare.com *.bootstrapcdn.com *.googleapis.com *.google.com *.google.co.uk 'self' data: *.yotpo.com https://enchantwidgets-1358.kxcdn.com *.fontawesome.com maxcdn.bootstrapcdn.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.twitter.com *.facebook.com *.instagram.com *.braintreegateway.com *.google.com *.googleapis.com *.paypalobjects.com *.yotpo.com *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.