stat.fi

HTML metadata

Title: Tilastokeskus
Description: Tilastokeskus tuottaa luotettavia ja puolueettomia virallisia tilastoja suomalaisesta yhteiskunnasta sekä johtaa ja kehittää valtion tilastotoimea.
Language: fi

Open Graph

title: Tilastokeskus
description: Tilastokeskus tuottaa luotettavia ja puolueettomia virallisia tilastoja suomalaisesta yhteiskunnasta sekä johtaa ja kehittää valtion tilastotoimea.

Technology

CMS: Next.js

Third-party hosts loaded (1)

tkcdn.azureedge.net×8

Social

Contact

Email

info@stat.fi

Phone

Registration

Created

1990-12-31

Name servers

ns1-fin.global.sonera.fi [193.210.18.31] [2001:2060:ffdd:a01::53] [ok]
ns2-fin.global.sonera.fi [195.156.148.158] [2001:2060:ffdd:a02::53] [ok]
ns2-usa.global.sonera.net [ok]
ns1-swe.global.sonera.se [ok]

DNS records live

NS

ns1-fin.global.sonera.fi
ns1-swe.global.sonera.se
ns2-fin.global.sonera.fi
ns2-usa.global.sonera.net

MX

0 stat-fi.mail.protection.outlook.com

TXT

Show 8 TXT records

MS=ms52196033
FD7CC7628950AD79B5FA841246C7CE78AAD632DCE6E1CA0E01C3602BB565943E
google-site-verification=7N3bEmMBp_MkzrawDdRBa2jrdPTWkLrWbE4FBkT2yeo
ibmid=19c0c218-00c6-4042-a576-eb87809224f7
adobe-idp-site-verification=3a2c67b5fbcee801f2008e0d6ef819d35bdbf2c1470d319a62b0f2ff4bd14cb7
MS=ms45123649
google-site-verification=SrTk4E7fRleCnUVz_cRlzzRnqhl01Yuu_Gvx52px0kg
DirectFedAuthUrl=https://tvoj-stat-saml-proxy.azurewebsites.net/saml/proxy/sso

Email authentication partial

SPF

v=spf1 ip4:212.20.196.35 include:_spf.vy-verkko.fi include:sendgrid.net include:hosted-at.csc.fi include:spf.protection.outlook.com include:spf.flowmailer.net include:spf.mailjet.com +mx ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc@tilastokeskus.fi; ruf=mailto:dmarc@tilastokeskus.fi; sp=none; fo=1;

policy: none (monitoring only) · sp=none

DKIM

Show 4 DKIM selectors

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCL72YhPoI12ZLD6dctcG8OEJDQFY6hzN2eEvciHnicbtee3ji8VVDdn/LkD3IXDMUkOziJeWdinsorpX2XUp…
mail: v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqod/1RT+rELQBPKyufeYm/ozgiYyBMpUzNrYd2SvGaA+lJ+nuGn3P9VkJeApdDx9hhPulDufpQ5QdLt6dXin…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8w+gTjo3Tar6TGSSt6ckfDGyRevLTJrqGg9A9uef8J0GIilNIZDqYUyDc+bWONE3dKbKbROo4SAtX9TUKQ…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDELkdCTbFy9EgiQgaRKZw23xzLnVdLyH1pO03MyKnz0P4vcxEOU/Mx7Yz9L3mh54r0TnixcpTyRY/Id1jbH8ehBR…

selectors probed

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1

from 2025-10-02 to 2026-10-03

Expires in 136 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://stat.fi/fi

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'none'; manifest-src https://tkcdnd.azureedge.net https://tkcdnt.azureedge.net https://tkcdn.azureedge.net; connect-src 'self' https://data.stat.fi https://stat.matomo.cloud https://tkcdnd.azureedge.net https://tkcdnt.azureedge.net https://tkcdn.azureedge.net https://cdn.reactandshare.com https://data.reactandshare.com https://api.stat.fi/content/search https://stat.fi https://api.stat.fi https://stat.fi; script-src 'self'; script-src-elem 'self' 'unsafe-inline' https://cdn.matomo.cloud https://cdn.reactandshare.com https://data.reactandshare.com https://stat.matomo.cloud https://public.flourish.studio; style-src 'self' 'unsafe-inline' https://tkcdnd.azureedge.net https://tkcdnt.azureedge.net https://tkcdn.azureedge.net https://cdn.reactandshare.com; style-src-elem 'self' 'unsafe-inline' https://tkcdnd.azureedge.net https://tkcdnt.azureedge.net https://tkcdn.azureedge.net https://cdn.reactandshare.com; img-src 'self' https://media.stat.fi https://media.
strict-transport-security: max-age=0;includeSubDomains

Links to (6)

Linked from (1)

json-stat.org×1