Infrastructure
· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.DCDN & DeliveryActionNo CDN detectedFIX
Consider using a CDN to improve global delivery speed and reduce origin load.
BDNS Records2 A records, 28 ms lookupREVIEW
| A | 37.59.183.73, 37.59.183.91 |
| AAAA | — |
| CNAME | rgs.infra.data.gouv.fr |
| NS | — |
| MX | — |
| TXT | — |
| CAA | Lookup not available with standard resolver |
A CNAME at the zone apex can break MX and NS records. Use ALIAS/ANAME or A records instead.
CNAME at the apex (example.com) breaks every other apex record (MX, TXT, NS) — DNS-protocol violation per RFC 1034.
Learn more ▾ ▴
RFC 1034 forbids CNAME alongside other records at the same name. Some DNS providers offer ALIAS / ANAME / flattened-CNAME records that work around this — use those instead. Otherwise apex-level CNAME breaks email (no MX), domain ownership verification (no TXT), and more.
Source: RFC 1034
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.
SPF helps prevent email spoofing. Add a TXT record starting with 'v=spf1'.
Without SPF, receiving servers can't validate sending IPs — your domain is easier to spoof in phishing.
Learn more ▾ ▴
SPF complements DMARC. Both should be published. SPF records list authorized sending IPs (e.g., `v=spf1 include:_spf.google.com ~all` for Google Workspace). After publishing, verify in Google Postmaster Tools or mxtoolbox.
Source: RFC 7208 (SPF)
CIPv6 ReadinessActionNo IPv6 supportREVIEW
IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.
No AAAA records — same impact as 'no IPv6 (AAAA) records'; IPv6-preferring clients pay extra latency falling back to IPv4.
Source: Google IPv6 stats
BTLS Certificate Expiry & Recommendations63 days until leaf cert expires — 3 issues to addressREVIEW
Certificate validity
Recommended actions
- Extend HSTS max-age to at least 31536000 (1 year) to meet the preload list criteria
- Enable DNSSEC on your domain for DNS spoofing protection
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
A+Redirect ChainNo redirects — direct accessPASS
https://www.data.gouv.fr
90 ms · HTTP/1.1 FINAL
| # | URL | Status | Time | Protocol | Server |
|---|---|---|---|---|---|
| 1 | https://www.data.gouv.fr | 200 | 90 ms | HTTP/1.1 | nginx/1.29.1 |
A+Crawlabilityrobots.txt present, sitemap with 16 URLsPASS
User-agent: *
Disallow: /admin
Disallow: /en/admin
Disallow: /fr/admin
Disallow: /es/admin
Disallow: /datasets/search?*
Disallow: /en/datasets/search?*
Disallow: /fr/datasets/search?*
Disallow: /es/datasets/search?*
Disallow: /reuses/search?*
Disallow: /en/reuses/search?*
Disallow: /fr/reuses/search?*
Disallow: /es/reuses/search?*
Disallow: /dataservices/search?*
Disallow: /en/dataservices/search?*
Disallow: /fr/dataservices/search?*
Disallow: /es/dataservices/search?*
Disallow: /organizations?*
Disallow: /en/organizations?*
Disallow: /fr/organizations?*
Disallow: /es/organizations?*
Disallow: /datasets.csv
Disallow: /en/datasets.csv
Disallow: /fr/datasets.csv
Disallow: /es/datasets.csv
Disallow: /resources.csv
Disallow: /en/resources.csv
Disallow: /fr/resources.csv
Disallow: /es/resources.csv
Disallow: /reuses.csv
Disallow: /en/reuses.csv
Disallow: /fr/reuses.csv
Disallow: /es/reuses.csv
Disallow: /dataservices.csv
Disallow: /en/dataservices.csv
Disallow: /fr/dataservices.csv
Disallow: /es/dataservices.csv
Disallow: /organizations.csv
Disallow: /en/organizations.csv
Disallow: /fr/organizations.csv
Disallow: /es/organizations.csv
Disallow: /tags.csv
Disallow: /en/tags.csv
Disallow: /fr/tags.csv
Disallow: /es/tags.csv
Disallow: /datasets-resources.csv
Disallow: /en/datasets-resources.csv
Disallow: /fr/datasets-resources.csv
Disallow: /es/datasets-resources.csv
Disallow: /harvests.csv
Disallow: /en/harvests.csv
Disallow: /fr/harvests.csv
Disallow: /es/harvests.csv
Disallow: /discussions.csv
Disallow: /en/discussions.csv
Disallow: /fr/discussions.csv
Disallow: /es/discussions.csv
Disallow: /tabular/preview/
Disallow: /en/tabular/preview/
Disallow: /fr/tabular/preview/
Disallow: /es/tabular/preview/
Disallow: /datasets/r/
Disallow: /en/datasets/r/
Disallow: /fr/datasets/r/
Disallow: /es/datasets/r/
Disallow: /catalog
Disallow: /en/catalog
Disallow: /fr/catalog
Disallow: /es/catalog
Disallow: /s/resources
Disallow: /resources
Disallow: /api/1/datasets/r/
Disallow: /avatars
User-agent: ChatGPT-User
Disallow: /api/1/site/catalog.xml
User-agent: GPTBot
Disallow: /api/1/site/catalog.xml
Sitemap: https://www.data.gouv.fr/sitemap_index.xml
- https://www.data.gouv.fr/__sitemap__/con...
- https://www.data.gouv.fr/__sitemap__/dat...
- https://www.data.gouv.fr/__sitemap__/org...
- https://www.data.gouv.fr/__sitemap__/pos...
- https://www.data.gouv.fr/__sitemap__/reu...
- https://www.data.gouv.fr/__sitemap__/dat...
- https://www.data.gouv.fr/__sitemap__/dat...
- https://www.data.gouv.fr/__sitemap__/dat...
- https://www.data.gouv.fr/__sitemap__/dat...
- https://www.data.gouv.fr/__sitemap__/dat...
- https://www.data.gouv.fr/__sitemap__/dat...
- https://www.data.gouv.fr/__sitemap__/dat...
- https://www.data.gouv.fr/__sitemap__/dat...
- https://www.data.gouv.fr/__sitemap__/dat...
- https://www.data.gouv.fr/__sitemap__/dat...
- https://www.data.gouv.fr/__sitemap__/pag...
AURL Variantswww/non-www, trailing slash, HTTP→HTTPSPASS
www / non-www
Preferred variant: www
HTTP → HTTPS
Use 301 (permanent) instead of 302 (temporary)
A+Domain Intelligencedata.gouv.fr — via OVH, 15 years, 4 months old, hosted on OVHPASS
147 days
December 6, 2026
63 days
Issued by Let's Encrypt
15 years, 4 months
Registered February 23, 2011
Status unknown
Protects against DNS spoofing
OVH
ASN AS16276
37.59.183.73
OVH