usaswimming.org

HTML metadata

Title: Home
Language: en

Open Graph

url: https://www.usaswimming.org/
description: USA Swimming

Technology

Server: Kestrel

Analytics

Google Tag Manager

Fonts

Google Fonts

Social widgets

YouTube Embed

Third-party hosts loaded (12)

cdnjs.cloudflare.com×4
atlas.microsoft.com×3
cdn.jsdelivr.net×2
kendo.cdn.telerik.com×2
maxcdn.bootstrapcdn.com×2
www.googletagmanager.com×2
code.jquery.com×1
fonts.googleapis.com×1
kit.fontawesome.com×1
samples.azuremaps.com×1
www.googletagservices.com×1
www.youtube.com×1

Social

Registration

Registrar

Network Solutions, LLC

Created

2000-03-20

Expires

2027-03-20 303 days left

Updated

2026-01-24

Name servers

ns3-02.azure-dns.org
ns1-02.azure-dns.com
ns2-02.azure-dns.net
ns4-02.azure-dns.info

DNS records live

NS

ns1-02.azure-dns.com
ns2-02.azure-dns.net
ns3-02.azure-dns.org
ns4-02.azure-dns.info

MX

10 d101929a.ess.barracudanetworks.com
20 d101929b.ess.barracudanetworks.com

TXT

Show 10 TXT records

fbaabfc7ac106f979564b5128c9d2b11
2KP7BkrA1htZU//c5/BBkJc5fgcwnkJgr76RLOARmY9izhGY315ilUb1hfM7hj32fXKzwo1CAJhAcmlX+G+icg==
i/zhntBaqG9WEbl7IuoPvfwyFhUGYcYF4Jr6CpGoog8=
Foxit-domain-verification=cd2881d6967ccd4dd3f15b8dc08aa616
6080aquis35s97m4logoa8bouu
intacct-esk=01538D16F55ECFB5E0633606790A0409
g9gtb4pij6jg4e35ncgllc48e4
_n8byfe2xlvjfxef9gzbc8ck7x2xd9qi
_oiuvgslq6br44f7bkjsz000tmw7kean
qivj3bhnmqao2frrhq2a55cinq

Verified for

Apple
Google
Microsoft 365
Twilio
Zoom

Email authentication strong

SPF

v=spf1 include:spf.ess.barracudanetworks.com include:spf.protection.outlook.com include:_spf.salesforce.com include:_spf.intacct.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; aspf=r; adkim=r; fo=1; rua=mailto:rua+usaswimming.org@dmarc.barracudanetworks.com; ruf=mailto:ruf+usaswimming.org@dmarc.barracudanetworks.com

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDGDgpo1EF4wyV7s/0mxqINqDxmDC26W1Kne4M9UQP5qXUzUdmDYcm2S8XzlnO/Yn4GqE8xWWv1B/lGjeL8eb…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9o91pEwrLh1ra0Baf7LYu9JPWbZtEjbXJss3pEHbV5XuiBQjDDxwQ1OMltazXrzaxC3JWW77mN4W6AGKKg…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDChzQAwQbLuARLnQwxYtqhlFzK9PryJqy1XMx0N7iRpW5E4l7poBOp7oO0JOuzkceOUAjSWagJqkC4kG3eQ9zrE4…

selectors probed

Certificate (current)

R12

from 2026-04-10 to 2026-07-09

Expires in 50 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://www.usaswimming.org/

present

strict-transport-security
content-security-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: default-src 'self' 'unsafe-inline' 'self' *.googleapis.com *.gstatic.com *.cloudflare.com *.telerik.com *.bootstrapcdn.com *.fontawesome.com *.jquery.com *.doubleclick.net *.googletagservices.com *.googletagmanager.com *.cookiebot.com atlas.microsoft.com play.google.com apps.apple.com gives.usaswimming.org; media-src 'self'; style-src 'unsafe-inline' 'self' 'unsafe-inline' 'self' blob: *.googleapis.com *.gstatic.com *.cloudflare.com *.telerik.com *.bootstrapcdn.com *.fontawesome.com *.jsdelivr.net atlas.microsoft.com; img-src data: 'self' *.windows.net *.google.com *.cookiebot.com *.google-analytics.com *.facebook.com *.adroll.com *.bidswitch.net *.casalemedia.com *.rubiconproject.com *.openx.net *.rlcdn.com *.outbrain.com *.pubmatic.com *.yahoo.com *.taboola.com *.3lift.com *.adnxs.com *.doubleclick.net *.vimeocdn.com *.googlesyndication.com *.reson8.com *.googletagmanager.com *.usaswimming.org atlas.microsoft.com play.google.com apps.apple.com give.usaswimming.org *.clarity.ms *.bi
strict-transport-security: max-age=31557600