spidi.com

.com crawl dns

First seen 2026-04-15 · Last seen 2026-05-14 · ok HTTP/1.1 200 2522 ms crawled 2026-05-11

US · 87.76.21.64 · AS202521 Liquid Web B.V.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title

SPIDI: Premium Motorcycle Gear for Performance, Adventure & Urban Riders

Description

Since 1977, SPIDI creates premium motorcycle gear for performance, adventure, and urban riders. Discover the new collection.

Language

Translations

de
en
en-au
en-us
es-es
es-mx
es-us
fr-ca
fr-fr
fr-us
it

Open Graph

site name: SPIDI

Technology

Server: nginx
CMS: Gatsby

Analytics

Google Tag Manager

Third-party hosts loaded (3)

cdn.knightlab.com×1
www.google.com×1
www.googletagmanager.com×1

Social

Contact

Phone

00871480240

Registration

Registrar

EPAG Domainservices GmbH

Created

2003-09-24

Expires

2026-09-24 127 days left

Updated

2025-09-25

Name servers

ns.egontek.net
ns2.egontek.net

DNS records live

NS

ns.egontek.net
ns2.egontek.net

MX

10 mail.spidi.com
100 mail2.egontek.net
20 wimax.spidi.com

TXT

Show 4 TXT records

MS=7ADF46A9BBDE3E8C25B845AECBEEF299BB2D018B
ZA=0DaFmoB2Fu6LC3BpQzmb1g==
google-site-verification=92TeQBtcapIhcLvQbWaLt3cJ-6AcmfO8q3y8wQW-h68
1jsnh8cavrim30df3jjgvp0bld

Email authentication strong

SPF

v=spf1 mx a ip4:31.194.69.194/32 ip4:185.171.37.186/32 a:mail.spidi.com a:wimax.spidi.com include:spf.mandrillapp.com include:spf.braintreegateway.com include:musvc.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:it@spidi.com,mailto:alessandro.sandri@horsa.it; aspf=s;

policy: quarantine

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

Go Daddy Secure Certificate Authority - G2

from 2025-06-05 to 2026-07-07

Expires in 48 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.spidi.com/eu_en/

present

content-security-policy-report-only
x-frame-options
x-content-type-options

findings

missing HSTS
missing Content Security Policy
weak frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff
content-security-policy-report-only: font-src www.paypalobjects.com fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com *.googleapis.com *.fontawesome.com https://fonts.bunny.net cdn.knightlab.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * https://plumrocket.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.card

Links to (6)

Linked from (1)

anthonysleatherworks.com×2