ruggedroutes.com

.com crawl

First seen 2026-05-09 · Last seen 2026-05-09 · ok HTTP/1.1 200 2820 ms crawled 2026-05-15

US · 172.102.240.38 · AS54623 One Internet America, LLC

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title: Off Road GPS Navigation Systems, Off Road GPS Maps & GPS Integrations
Description: The best off-road GPS navigation with Rugged Routes' top-rated GPS maps from recreation to off-road racing including UTVs, Jeeps, 4x4s, rock buggies, side-by-sides, snowmobiles & more. Shop now for off road GPS units featuring satellite imagery off road GPS maps, vehicle data, and real-time tracking with more integrations to come.
Language: en

Technology

Server: nginx
CMS: Gatsby

Fonts

Google Fonts

Third-party hosts loaded (2)

fonts.googleapis.com×1
verify.authorize.net×1

Social

Registration

Registrar

Tucows Domains Inc.

Created

2013-12-12

Expires

2027-12-12 572 days left

Updated

2023-01-18

Name servers

ns1.safesecureweb.com
ns2.safesecureweb.com
ns3.safesecureweb.com

DNS records live

NS

ns1.safesecureweb.com
ns2.safesecureweb.com
ns3.safesecureweb.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

4ff93ce6-6d2d-492f-b837-7415476c2403
google-site-verification=9j4rF-X5-1CoNMui2k1aQGBMQxe6_FCiRqRz0vtyduE
b7bfa533-d73b-4798-bee4-fc4844fc4ca3

Email authentication partial

SPF

v=spf1 a mx ip4:172.102.240.38 include:_spf.google.com -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc-reports@ruggedroutes.com

policy: none (monitoring only)

DKIM

google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDQKhCQnfvL/esOz6vkLKu+8V+/zR6YDRYHnQslD8ebNDpMbNcz8UZ3OtaHP61r7gPZoZ9P8REvbc7xUQtqaI…

selectors probed

Certificate (current)

SSL.com RSA SSL subCA

from 2026-03-05 to 2027-03-05

Expires in 290 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://ruggedroutes.com/

present

content-security-policy-report-only
x-frame-options
x-content-type-options

findings

missing HSTS
missing Content Security Policy
weak frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff
content-security-policy-report-only: worker-src blob:; font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com *.kxcdn.com *.fontawesome.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.authorize.net *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * 'self' 'unsafe-inline'; frame-ancestors *.authorize.net 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcomme

Links to (2)

archive.org×1
youtube.com×1

Linked from (1)

corva.org×1