indexo.dev

worldloppet.com

.com crawl

First seen 2026-04-21 · Last seen 2026-05-15 · ok HTTP/1.1 200 3558 ms crawled 2026-05-15

US · 172.67.158.178 · AS13335 Cloudflare, Inc.

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title
Worldloppet - The biggest community of cross-country skiers
Description
The Worldloppet Skifederation unites 19 of the greatest ski marathons around the world. Every skier is welcome to join the biggest and most active skiing family
Language
en-US
Generator
All in One SEO (AIOSEO) 4.9.0
Canonical
https://www.worldloppet.com/
Feeds

Open Graph

url
https://www.worldloppet.com/
title
Home - Worldloppet
locale
en_US
site name
Worldloppet
description
The Worldloppet Skifederation unites 19 of the greatest ski marathons around the world. Every skier is welcome to join the biggest and most active skiing family

Technology

CDN
Cloudflare
CMS
WordPress
Analytics
  • Google Tag Manager
Fonts
  • Font Awesome
  • Google Fonts

Third-party hosts loaded (4)

  • scontent-ams2-1.cdninstagram.com×24
  • use.fontawesome.com×2
  • fonts.googleapis.com×1
  • www.googletagmanager.com×1

Social

Contact

Phone

Registration

Registrar
Network Solutions, LLC
Created
1996-11-28
Expires
2026-11-27 191 days left
Updated
2024-08-26
Name servers
  • elinore.ns.cloudflare.com
  • karl.ns.cloudflare.com

DNS records live

NS
  • elinore.ns.cloudflare.com
  • karl.ns.cloudflare.com
MX
  • 10 mh21.elkdata.ee
  • 20 mh2.elkdata.ee
TXT
  • MS=ms11026443

Email authentication partial

SPF
v=spf1 a mx ip4:213.199.61.160 include:mail.spf.elkdata.ee include:_spf.smaily.com -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:043bb17c5441473caffb9fa81a83eaba@dmarc-reports.cloudflare.net
policy: none (monitoring only)
DKIM
  • default: v=DKIM1;t=s;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDR1x4e+GMfB9twRPi/bmXcBpXtA5sWcco1/ZE1YCz95Dt10UhSYqQYwKSgcIWqFTHgXp4bm0wuf+T93AvPt7tLg2…
selectors probed

Certificate (current)

WE1
from 2026-04-10 to 2026-07-09
Expires in 51 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://www.worldloppet.com/

present
  • permissions-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Links to (6)

Linked from (1)