rwkijal.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 2781 ms crawled 2026-05-18

US · 151.101.131.10 · AS54113 Fastly, Inc.

Reputation 75/100 wrong cert

sector travel type homepage

HTML metadata

Title: Resorts World Kijal
Description: Resorts World Kijal is a tropical retreat for all. Head up to the sandy beaches of the East Coast where Resorts World Kijal welcomes you to a stress-free, fun-filled environment. From beachside activities, turtle-watching trips to team-building programmes, there’s more than enough to keep everyone’s interests piqued. Whether you are here for business or leisure, the breathtaking ocean landscape is sure to rejuvenate the soul, mind and body.
Language: en
Canonical: /en.html

Technology

Analytics

Google Tag Manager

Social widgets

YouTube Embed

Third-party hosts loaded (3)

cdnjs.cloudflare.com×1
www.googletagmanager.com×1
www.youtube.com×1

Social

Contact

Email

reservation@rwkijal.com

Phone

198001004236

Registration

Registrar

CSC Corporate Domains, Inc.

Created

2012-06-21

Expires

2026-06-21 32 days left

Updated

2025-06-17

Name servers

egns1.genting.com
egns2.genting.com
egns4.genting.com

DNS records live

NS

egns1.genting.com
egns2.genting.com
egns4.genting.com

MX

0 rwkijal-com.mail.protection.outlook.com

TXT

b42svn06ccjypdh2w73t26t4gxbd9n4c
facebook-domain-verification=mgifws57ycrizgrwv6vnny1na46gtw
MS=ms11697567

Email authentication strong

SPF

v=spf1 mx ip4:182.255.20.6 ip4:182.255.21.6 ip4:203.121.98.144 include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; rua=mailto:re+qnmsdvntqtn@dmarc.postmarkapp.com; sp=reject; fo=1;

policy: reject (enforced) · sp=reject

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAywkczZf4nhIPGqZ7WyP4vbVOuvz+0To2dwSqKPKu3CIqY+yyACilfBNlR8SxwLhX1pn+utGHUf+qeu…

selectors probed

Certificate (current) wrong cert

Sectigo Public Server Authentication CA OV R36

from 2025-12-04 to 2026-12-05

Expires in 199 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://rwkijal.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' https://maps.googleapis.com https://www.youtube.com https://cdnjs.cloudflare.com https://unpkg.com https://cdn.jsdelivr.net https://maxcdn.bootstrapcdn.com https://code.jquery.com tagmanager.google.com analytics.google.com https://www.googletagmanager.com https://fonts.googleapis.com https://www.google-analytics.com https://connect.facebook.net https://fonts.gstatic.com https://6541830.fls.doubleclick.net https://googleads.g.doubleclick.net https://www.facebook.com; frame-src 'self' https://td.doubleclick.net https://www.google.com https://www.youtube.com; connect-src 'self' https://analytics.google.com https://stats.g.doubleclick.net http://cloudapi.rwgenting.com https://book.rwgenting.com https://maps.googleapis.com;font-src 'self' data:;img-src 'self' data: https://maps.gstatic.com https://maps.googleapis.com;
strict-transport-security: max-age=63072000; includeSubdomains;