stlouisunionstation.com

.com crawl

First seen 2026-04-21 · Last seen 2026-05-19 · ok HTTP/1.1 200 5252 ms crawled 2026-05-15

US · 40.119.1.254 · AS8075 Microsoft Corporation

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: St. Louis Union Station | Home
Description: Discover St. Louis Union Station — a historic destination with world-class attractions, dining, entertainment and family fun. Plan your visit and book tickets today!
Language: en-us

Technology

Analytics

Google Tag Manager

Fonts

Adobe Fonts
Google Fonts

Social widgets

Vimeo Embed

Third-party hosts loaded (11)

prod.speakcdn.com×31
fonts.googleapis.com×3
cdn.bc0a.com×2
getabetterbrowser.com×2
player.vimeo.com×2
use.typekit.net×2
www.googletagmanager.com×2
fonts.gstatic.com×1
lhm.hatchbuck.com×1
static.speakcdn.com×1
www.facebook.com×1

Social

Contact

Email

Phone

314923-3900

Address

St. Louis, MO 63103

Registration

Registrar

GoDaddy.com, LLC

Created

1997-10-21

Expires

2027-06-17 392 days left

Updated

2025-06-18

Name servers

ns39.domaincontrol.com
ns40.domaincontrol.com

DNS records live

NS

ns39.domaincontrol.com
ns40.domaincontrol.com

MX

10 mx1.lhmc.iphmx.com

TXT

d796sq61mm3t8loqdqhts72g3c

Email authentication weak

SPF

v=spf1 mx ip4:68.232.147.197/32 ip4:68.232.149.36/32 ip4:68.114.190.26/32 ip4:68.114.190.27/32 ip4:68.114.190.28/32 ip4:68.114.190.29/32 ip4:68.114.190.30/32 ip4:68.114.190.31/32 ip4:216.33.127.81/32 ip4:216.33.127.87/32 ip4:68.114.188.100/32 include:spf.protection.outlook.com include:sendgrid.net ~all

softfail (~all)

DMARC

not published

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2NxqInYPbQd8+T1zaOb+n3oAT+yxUbr/pBE3PGGZWWzJqWGaXIGwP4W/kHHPpp6iRdcKgZbMBUc+KpZOyN…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDtBTfA+C5xoFlkc8I0h2r0IiH1JZ9PIG519ZOSvuGehOaDppBGbVNVOy0ZwJOLC03DSoSMKqAHxm5r3S1yBWfEXR…

selectors probed

Certificate (current)

R12

from 2026-04-19 to 2026-07-18

Expires in 59 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.stlouisunionstation.com/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
content-security-policy: default-src https:; object-src 'none'; script-src https: 'unsafe-inline' 'unsafe-eval'; style-src https: 'unsafe-inline'; connect-src https: wss: data: blob:; img-src 'self' https: data: blob:; font-src 'self' https: data: blob:; worker-src 'self' https: blob:; frame-ancestors 'self' *.sitewrench.com *.speakcreative.com
strict-transport-security: max-age=31536000; includeSubDomains