Skip to content
https://playstation.com

Infrastructure

· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.
SCORE
88
GRADE
B
FIX
1
REVIEW
3
PASS
5
INFO
0
Probed from Santa Clara, United States
301 Moved Permanently
Checks
9
5 PASS 3 REVIEW 1 FIX
D
CDN & Delivery
Action
No CDN detected
FIX
No CDN detected
Warning::
No CDN detected
A CDN can significantly improve load times for users around the world by caching content at edge nodes closer to them.
No CDN detected

Consider using a CDN to improve global delivery speed and reduce origin load.

B
Redirect Chain
2 redirect(s), 281 ms total
REVIEW
2 redirect(s), 281 ms total
Warning::
2 redirects before reaching final URL
Each redirect adds latency. Try to minimize the chain to 1 hop.
Info::
WWW normalization redirect

https://playstation.com

34 ms · HTTP/1.1

301

https://www.playstation.com:443/

28 ms · HTTP/1.1

301

https://www.playstation.com/en-us/

219 ms · HTTP/1.1 FINAL

#URLStatusTimeProtocolServer
1https://playstation.com30134 msHTTP/1.1awselb/2.0
2https://www.playstation.com:443/30128 msHTTP/1.1AkamaiGHost
3https://www.playstation.com/en-us/200219 msHTTP/1.1Apache

See the visual redirect chain in the HTTP Probe tab →

Each redirect adds latency. Try to minimize the chain to 1 hop.

Why this matters

Redirect chain — each hop adds latency; combine into one redirect where possible.

Source: Google Search Central / web.dev

C
IPv6 Readiness
Action
No IPv6 support
REVIEW
No IPv6 support
Info::
No IPv6 (AAAA) records found
IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.
No IPv6 Support
About 40% of internet users have IPv6. Consider adding AAAA records.

IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.

Why this matters

No AAAA records — same impact as 'no IPv6 (AAAA) records'; IPv6-preferring clients pay extra latency falling back to IPv4.

Source: Google IPv6 stats

B
TLS Certificate Expiry & Recommendations
57 days until leaf cert expires — 4 issues to address
REVIEW

Certificate validity

57
days left
0d 30d 60d 90d+

Recommended actions

  • Prefer TLS 1.3 — TLS 1.2 is acceptable but TLS 1.3 removes RSA key exchange and improves latency
  • Enable HSTS: Strict-Transport-Security: max-age=31536000; includeSubDomains
  • Enable DNSSEC on your domain for DNS spoofing protection
  • Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
A+
DNS Records
2 A records, 152 ms lookup
PASS
2 A records, 152 ms lookup
Info::
Resolves to 2 IPv4 address(es)
Got: 52.8.87.150, 204.236.184.89
Info::
No IPv6 (AAAA) records
Info::
4 nameserver(s) configured
Got: ns-1039.awsdns-01.org, ns-1962.awsdns-53.co.uk, ns-43.awsdns-05.com, ns-957.awsdns-55.net
Info::
1 mail exchanger(s) configured
Info::
CAA records not checked
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Info::
SPF record present in TXT
Info::
DNS resolution time: 152 ms
Got: 152 ms
A52.8.87.150, 204.236.184.89
AAAA
CNAME
NSns-1039.awsdns-01.org, ns-1962.awsdns-53.co.uk, ns-43.awsdns-05.com, ns-957.awsdns-55.net
MX
0 playstation-com.mail.protection.outlook.com
TXT
00D2i0000008eKi=1TBWF0000000HFN
00D3J0000008lPt=1TBWF0000000Efi
00D3h00000669Bv=1TBa600000000OD
00D55000000AU1R=1TBWF0000000Hwv
00D6C00000010N1=1TBWF0000000FNH
00DP0000000Gvsm=1TBWF0000000I3N
00DV9000003xfIL=1TBV90000000CXR
00DV9000003xfIL=1TBV90000000DID
00DWF000004plvW=1TBWF0000000JXJ
00DWF000004plvW=1TBWF0000000V2D
00DWF000004xt9R=1TBWF0000000J4H
00DWF000004xt9R=1TBWF0000000Sif
00DWF000005oadJ=1TBWF0000000JIn
00DWF000005oadJ=1TBWF0000000Trd
00DWF000006X7Qf=1TBWF0000000EXe
00DWF000006X7Qf=1TBWF0000000I9p
00DWF000006yay1=1TBWF0000000Bza
00DWF000006yay1=1TBWF0000000IZd
00DWF0000081Ulp=1TBWF0000000IwD
00DWF0000081Ulp=1TBWF0000000M0X
00DWF00000BLrcT=1TBWF0000000JPF
00DWF00000BLrcT=1TBWF0000000XNN
00DWF00000BLrhJ=1TBWF0000000Kun
00DWF00000BLrhJ=1TBWF0000000WCn
00DWF00000BLrsb=1TBWF0000000Ig5
00DWF00000BLrsb=1TBWF0000000Kd3
00DWG00000191fR=1TBWG0000000E9R
00DWG00000191fR=1TBWG0000000KWb
00DWG000002XHIf=1TBWG0000000DAA
00DWG000002XHIf=1TBWG0000000DEz
00DWG0000034J2L=1TBWG0000000Den
00DWG0000034J2L=1TBWG0000000MlJ
00DWG000003GOFx=1TBWG0000000Duv
00DWG000003GOFx=1TBWG0000000FWv
00DWG000003GQ0F=1TBWG0000000DOf
00DWG000003GQ0F=1TBWG0000000JQr
00DWG0000048OkV=1TBWG0000000DYL
00DWG0000048OkV=1TBWG0000000LfZ
00DWG000004ARsf=1TBWG0000000Dmr
00DWG000004ARsf=1TBWG0000000EhJ
00DWG000004FIjt=1TBWG0000000E1N
00DWG000004FIjt=1TBWG0000000Gw1
00DWK000003CdyL=1TBWK0000000AvR
00DWK000003CdyL=1TBWK0000000CUD
00DWe000001Yqmn=1TBWe0000000CM9
00DWe000001Yqmn=1TBWe0000000D5J
00Ddh000000n7A1=1TBdh0000000ERB
00Ddh000000n7A1=1TBdh0000000LsT
00Ddl000004Jkw5=1TBdl0000000XiL
00Ddl000004Jkw5=1TBdl0000000Z0z
00Ddn000002K0HF=1TBdn00000005Kf
00Ddn000002K0HF=1TBdn00000006ob
00Ddq000005tB6P=1TBdq0000000Ikw
00Ddq000005tB6P=1TBdq0000000J13
MS=ms74424052
Zoom_10355089
_0z7x60wgflwjbxkl3pr5cnm9qzfhw5o
_8q6rfp1vfyyxhrh2lstw6ps87o811vg
_agal4z4995jdakdnj5kk73l2xtrxj1n
_l56697izhvdjbwtrwtspyb6hsfnnba0
_mxo1xc8ytr6lxpclcbiavzajbdrhzh2
_otyu23b4i5scu448nl2sb3kglbckgdg
_x3zcc5g5jpx45ulv3w4w2vk1nduj8hz
google-site-verification=7eytTX-XM-Cr33smkPKzmS5-_qh_sdsZq9r2CKdsmlI
google-site-verification=Zkdrq-IwUOSWBd0a4HsaCM6o7yVF3rx3Qf4ZtPcEGGI
google-site-verification=aEdBdVDkKTaRUDChDEPvdP2N6z9E03HUwt1m3DFrMLM
klaviyo-site-verification=VgVXUB
klaviyo-site-verification=W4TZZC
reclaim-jcsmyd9pix7fz04ehflgsgovo93wq6yz
SPF v=spf1 ip4:87.246.102.203 include:spf.protection.outlook.com -all
CAALookup not available with standard resolver
Resolved in 152 ms

CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.

Why this matters

Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.

A+
Crawlability
robots.txt present, sitemap with 65 URLs
PASS
robots.txt present, sitemap with 65 URLs
Info::
robots.txt is present
Got: 655 bytes
Info::
sitemap.xml is present
Info::
sitemap.xml is valid XML
Info::
sitemap.xml contains 65 entries
Info::
Sitemap index with 65 child sitemaps
Info::
robots.txt references sitemap
robots.txt 200 OK
Size 655 B Sitemaps referenced 1 User-agents Algolia Crawler, PetalBot, *, AhrefsBot, YandexBot, bingbot Blocking No — crawling allowed
# PlayStation Robots.txt

User-agent: *

Disallow: */explore/testing/
Disallow: */community/community-score*
Disallow: */?category*
Disallow: */content/usergenerated/asi/mongo/content/sites/activitystreams/activities/community/*
Disallow: */search/?q*
Disallow: */content/experience-fragments/global_pdc/*

User-agent: *
Crawl-delay: 5

User-agent:  AhrefsBot
Crawl-delay: 10
 
User-agent:  YandexBot
Crawl-delay: 10

User-agent:  bingbot
Crawl-delay: 10

User-agent: *
Disallow: */sitemap_gpdc.xml

User-agent: Algolia Crawler 
Allow: */sitemap_gpdc.xml

User-agent: PetalBot
Disallow: /

# Sitemaps
Sitemap: https://www.playstation.com/sitemap_index.xml
sitemap.xml 200 OK
Type Sitemap Index URLs 65 entries Valid XML Yes
Child Sitemaps:
A+
URL Variants
www/non-www, trailing slash, HTTP→HTTPS
PASS
www/non-www, trailing slash, HTTP→HTTPS
Info::
www/non-www redirect configured correctly (preferred: non-www)
Info::
HTTP correctly 301-redirects to HTTPS

www / non-www

301https://www.playstation.com/
200https://playstation.com/

Preferred variant: non-www

HTTP → HTTPS

301http://playstation.com/ https://playstation.com:443/

Consistent

A+
Domain Intelligence
playstation.com — via 1API GmbH, 29 years, 8 months old, hosted on AWS
PASS
playstation.com — via 1API GmbH, 29 years, 8 months old, hosted on AWS
Info::
Domain registered until Jan 13, 2027 (9 months remaining)
Info::
DNSSEC is not enabled
DNSSEC protects against DNS spoofing attacks. While not required, enabling DNSSEC adds an additional layer of security. Contact your DNS provider to enable it.
Info::
Registrar: 1API GmbH
Warning::
Registrar lock is NOT enabled
The domain can be transferred without an unlock step. Enable registrar lock (clientTransferProhibited) in your registrar's control panel to protect against unauthorized or accidental transfers.
Info::
Hosting: AWS
Got: AS16509
Domain expiry

211 days

January 13, 2027

SSL certificate

57 days

Issued by DigiCert Inc

Domain age

29 years, 8 months

Registered January 14, 1997

DNSSEC

Not enabled

Protects against DNS spoofing

Hosting

AWS

ASN AS16509

204.236.184.89

Registrar

1API GmbH

Unlocked 4 NS records
Expiry timeline
Today
+1 year
Domain expiry SSL expiry Danger zone (≤30 days)
Recommended actions
  • Enable DNSSEC to protect visitors from DNS spoofing
  • Enable registrar lock (clientTransferProhibited) to block unauthorized domain transfers
Registrar 1API GmbH
Created January 14, 1997 (29 years, 8 months ago)
Expires January 13, 2027 (9 months)
Last Updated November 22, 2025
Name Servers ns-1039.awsdns-01.org, ns-1962.awsdns-53.co.uk, ns-43.awsdns-05.com, ns-957.awsdns-55.net
DNSSEC Not enabled
Hosting
IP Address 204.236.184.89
ASN AS16509 (AMAZON-02 - Amazon.com, Inc., US)
Provider AWS
Data source: rdap (0.1s)

DNSSEC protects against DNS spoofing attacks. While not required, enabling DNSSEC adds an additional layer of security. Contact your DNS provider to enable it.

Why this matters

Without DNSSEC, an attacker who can poison your DNS can hijack your domain — and SSL certs alone don't stop them.

Learn more

DNSSEC adds cryptographic signatures to DNS records, preventing forged responses from poisoning resolver caches. Without it, an attacker who controls the network path can redirect your domain to a malicious server before any HTTPS handshake happens. Most modern registrars (Cloudflare, Google Domains, Route 53) enable it with one toggle.

Source: ICANN / RFC 4033

The domain can be transferred without an unlock step. Enable registrar lock (clientTransferProhibited) in your registrar's control panel to protect against unauthorized or accidental transfers.

Why this matters

Without registrar lock, an attacker who phishes your registrar credentials can transfer the domain in minutes — total brand hijack.

Learn more

Registrar lock (clientTransferProhibited, clientUpdateProhibited, clientDeleteProhibited) requires extra verification before any transfer/update/delete. Every major registrar offers it free. Combined with 2FA on your registrar account, it's the strongest defense against domain hijacking.

Source: ICANN / domain-security best practice

A+
HTTP Probe Timing
Total 48 ms — DNS, TCP, TLS, TTFB, content transfer breakdown
PASS
DNS Lookup DNS Lookup — time to resolve the domain name to an IP address.
32 ms
TCP Connect TCP Connect — time to establish a TCP connection to the server.
4 ms
TLS Handshake TLS Handshake — time to complete the HTTPS encryption handshake.
9 ms
Time to First Byte Time to First Byte — how long the server takes to respond with the first byte of data.
48 ms
Total Time Total request time from DNS lookup through full response.
48 ms

Connection waterfall

DNS Lookup 32 ms TCP Connect 4 ms TLS Handshake 9 ms Server Processing 4 ms Content Transfer 0 ms
All checks on this page are automated. Results are estimates - run targeted manual reviews when the score affects a release decision.

Send Feedback