indexo.dev

subway.com

.com toplist crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 7483 ms crawled 2026-05-18

US · 20.49.104.50 · AS8075 Microsoft Corporation

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Subway Order
Description
Subway® -ravintolat tarjoavat herkullisia Subi® -leipiä, wrapejä ja salaatteja valitsemillasi täytteillä ja kasviksilla. Tervetuloa herkuttelemaan!
Language
fi-FI
Canonical
https://www.subway.com/fi-fi
Translations
  • en-fi
  • fi-fi

Technology

CDN
Akamai
Server
Microsoft-IIS
Cookie consent
  • OneTrust
Third-party hosts loaded (8)
  • ajax.googleapis.com×2
  • assets.adobedtm.com×2
  • cdn.cookielaw.org×2
  • cdn.jsdelivr.net×2
  • cdnjs.cloudflare.com×2
  • sdk.apptentive.com×2
  • app.launchdarkly.com×1
  • cdn.branch.io×1

Registration

Registrar
CSC Corporate Domains, Inc.
Created
1996-01-17
Expires
2027-01-18 244 days left
Updated
2026-01-14
Name servers
  • a1-109.akam.net
  • a11-65.akam.net
  • a13-65.akam.net
  • a16-66.akam.net
  • a6-64.akam.net
  • a8-66.akam.net

DNS records live

NS
  • a1-109.akam.net
  • a11-65.akam.net
  • a13-65.akam.net
  • a16-66.akam.net
  • a6-64.akam.net
  • a8-66.akam.net
MX
  • 10 fwh-mail-onmicrosoft-com.mail.protection.outlook.com
TXT
Show 37 TXT records
  • ecostruxure-it-verification=650a765a-c7dc-49a6-85ef-63d7ae790f21
  • onetrust-domain-verification=e353972587624065aec066201135b725
  • anthropic-domain-verification-111pyz=1nPjXqAfargZnEgGLARKRSDUr
  • GtuUJJbOSsufY0shVDZxs5FXpBrxJCCVyF/V3rBqKtzqdGEdfAfFd/cx8n7J71VUE1GGoDLjFYW44q5uEmZ0UQ==
  • docusign=5d070834-6746-415f-8a1c-48a729c4928e
  • apple-domain-verification=oeE28ZHe_eQoKq4vPnj1g-ZEqQBgf55X9GyfpeOh5qs
  • _rrkgo7ymt9tvgtbyc18htgca1uymclb
  • facebook-domain-verification=9411x4korp3etqeg7zd5ihfmhimgbz
  • amazonses:WouvrcaLNwm9MeOA8mPHl3iSO4PJt4GRJpbhFF3crDw=
  • amazonses:IVt2mlynAK3WsbvNCsXkHJ/Jwoec4Vn7PuhiYJpSGt8=
  • _wfmjcqncwns5kjc701z1274fe51b4p9
  • MS=ms45332749
  • flfivcv809cpb8tv46a1ims5pa
  • postman-domain-verification=5e170be124ac49506592a4877255b533a56f7ed12bd9259f527d78c5695bca99401d8fef051f767bb7bd04e7f228acd25151145fb954cecb801f09372715b1f6
  • amazonses:lQ7e4of+cGMztoZEmpEpxOv439FwHEC4BXhcspQhdY4=
  • apple-domain-verification=ZePlie9LX2l3lM7J
  • apple-domain-verification=b5CpkBhV8vIzZtP8
  • v7cehmoklrdicplaf13ac8k2ua
  • _qqdjbhl6yfl1s6qu8m3rbju0h907lny
  • CpWwpQX5DV75F+ZKWAyCyNDUxbYo4InxXeA0PTtdjTCuoo1nm1F6BnEU/LMCxoQsHSQEcffbI4tufAWu8lwICw==
  • tlJrgGGNYW1T6TOpf3LBRcwsOaS3gelSZgfy60SdzvpTW5WpiAHY4v/hdv/R7WxtcYJ7HF1bBKjSFk7iX6T2tA==
  • amazonses:rfeDc6IPwWwqIeXxLTkMIFIehh1+o5FR+AEIBPo+aDM=
  • adobe-idp-site-verification=c780fdf0a32f6f8ca3d2aed6a01d69016c27b9182374f34214ba80e9ea81f931
  • _m9mz38zyi79jntjchyy474p39sqhp2k
  • smartsheet-site-validation=WtEHNAAL4WG877SNeundsGrK2ks3oevQ
  • Dynatrace-site-verification=37764e30-4ee4-403b-a66b-f2dacc3a7734__6vthkjdn478aftj5kmo2ghajeo
  • Dynatrace-site-verification=da9ae839-07f7-479f-a048-f3c40b64337c__ovr7cl3o83h6v8k6sgf7qac8nt
  • d365mktkey=27h4szq8axqtjclmkrdhoydvx
  • 2paqitupt4v2gfj371i85act53
  • cloudhealth=b7d0679d-5571-410b-8073-7c7483a0aed9
  • _xb3hf9ozq4ftpre79rej7cr3hdm9xnk
  • onetrust-domain-verification=0423cc8be9fc48a6a8221dbb3b6df59d
  • 3bcvb797i9bokin5jdb6np2r3k
  • jamf-site-verification=8LRBBQ03vXBLvd73kMnJfA
  • EmEjLLL4QADoazTzqtvan1bv6YMyVFwGL2jNXpikJzhI8o//7A6fOpAcg1iqih5QidRx9U0i2lae15h3PWY8Xw==
  • google-site-verification=bUgaQaOMKw_x8QqEELf8-07tgm1Rk0ojsUl0wJr7qJ8
  • d365mktkey=4vh8zlupmija2mggwyfzad1yv

Email authentication strong

SPF
v=spf1 mx ip4:67.20.173.128/26 include:spf.protection.outlook.com ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:437fa9073854363@rep.dmarcanalyzer.com,mailto:dmarc_rua@subway.com; ruf=mailto:437fa9073854363@for.dmarcanalyzer.com,mailto:dmarc_ruf@subway.com; sp=none; fo=1
policy: quarantine · sp=none
DKIM
  • selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDVipX97xokvApfdLYLHJV6ep41CHLqarOUoTXoTL4mk3Y72a2QVbZSc64FzYV0ZxEkOEsrSw0xe/rBYWUAXW…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAucS9Lxh48cusxNyzMfeXLB0kLXChMNvEPy+uOnmwMMrhFSrToddAbUs/jV1iE+Qr1Wb7pdM2ydYXyZSYSf…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxu7demmUImt5dh+mYoDiUbFmr7MEtQIIOSdrTRP4CZZo9CkabTxAsgPJwtSk/GGjRZ1oHQrjrH7v4ZNlkI…
selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1
from 2025-10-07 to 2026-10-07
Expires in 141 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://www.subway.com/fi-fi

findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy

Links to (1)

Linked from (25)