CONTINUOUS INTERNET TELEMETRY24H DRIFT1,900 material changesacross 1,714 domains · -651 vs yesterdayDNS DRIFT13 domains changed DNS providertop destination afternic.com · -3 vs yesterdayEMAIL DRIFT6 domains switched email providertop destination google.com · +1 vs yesterdayCERT DRIFT1 domains switched issuing CA24h · -4 vs yesterdayNOW3,405 curated domains not answeringlast probe, steadyERRORS10,892 responded with an errorlast probe · 5xx / 404 / 429 / 40324H DRIFT1,900 material changesacross 1,714 domains · -651 vs yesterdayDNS DRIFT13 domains changed DNS providertop destination afternic.com · -3 vs yesterdayEMAIL DRIFT6 domains switched email providertop destination google.com · +1 vs yesterdayCERT DRIFT1 domains switched issuing CA24h · -4 vs yesterdayNOW3,405 curated domains not answeringlast probe, steadyERRORS10,892 responded with an errorlast probe · 5xx / 404 / 429 / 403

royaleapi.com

Observed 2026-07-13T23:33:22.560Z (16h ago). Every field below was attested with an Ed25519 signature at scan time.

Guarded by a firewall
Runs onCloudflare
Also usesFacebook/MetaGoogle Search Console
IPv6 · 14 subdomains · tranco_10k
Every line above is a signed observation. Check the math at the bottom of the page.
INFRASTRUCTURE MAPwhat royaleapi.com actually stands on - every host below is a signed observation
royaleapi.com
A / AAAA
104.26.1.179172.67.73.244104.26.0.1792606:4700:20::681a:b3+2 more
Cloudflareserves the site
NS
lakas.ns.cloudflare.commeg.ns.cloudflare.com
cloudflare.comanswers its DNS
MX
aspmx2.migadu.comaspmx1.migadu.com
migadu.comreceives its email

HTTPS probe

bot_blocked Blocked our probe (WAF / bot protection) 403 blocked by cloudflare - bot protection active
HTTP status403
Servercloudflare
TLS protocolHTTP/2
TLS issuernot observed
Behind Cloudflareyes
Response time6 ms
DNS resolutionNOERROR

Every field above is part of the same signed observation as the records below. Blank means not observed, never "none".

DNS Records

A 3

  • 104.26.1.179
  • 172.67.73.244
  • 104.26.0.179

AAAA 3

  • 2606:4700:20::681a:b3
  • 2606:4700:20::ac43:49f4
  • 2606:4700:20::681a:1b3

MX 2

  • 20aspmx2.migadu.com
  • 10aspmx1.migadu.com

TXT 11

  • brave-ledger-verification=e740a0218aebfa0b9f5bc386b4cb00efec80ee0b5f6417f7c4ae96166856ca3d
  • v=spf1 include:spf.migadu.com -all
  • v=spf1 a mx include:spf.migadu.com ~all
  • hosted-email-verify=azexovij
  • facebook-domain-verification=i1drx93mbip125j9xx7lxl1cn705wb
  • yandex-verification: 611376894144f6a9
  • google-site-verification=A9Lls4_PJy9cqvcoA-heYaU9RxDRbo5JlGqITyaZGWo
  • yandex-verification: 243ad2043c748f68
  • v=DMARC1; p=none; fo=1; rua=mailto:admin@royaleapi.com
  • v=DMARC1; p=quarantine;

NS 2

  • lakas.ns.cloudflare.com
  • meg.ns.cloudflare.com

SOA 1

  • lakas.ns.cloudflare.com dns.cloudflare.com

TLS Certificates (0)

None.

Subdomains (14)

The proof

Signed at scan time. Check the math yourself. Every line above is part of one signed observation. Re-hash it and check the Ed25519 signature in your own browser; nothing leaves your machine.

Verify this receipt

Put the receipt on your own site. A live badge showing what DomainDrift observes and signs for royaleapi.com. It updates itself. It attests a signed observation - not that the site is safe.

DomainDrift signed-observation badge for royaleapi.com <a href="https://domaindrift.io/t/royaleapi.com"> <img src="https://domaindrift.io/badge/royaleapi.com.svg" width="300" height="64" alt="DomainDrift signed observations for royaleapi.com"> </a>

Ed25519 Receipt

Receipt ID
ccf84ee9-e462-404b-b7ee-adefb0b89ba1
Output Hash
f9b4b39657d94dd91de5d9e4cc3e276d937ef2d018d29a23549cfc77a4ee5d35
Signature
ed25519:1a726273dc73cb8e363e9813f027f675470e551fd5e29cfcd34735457511a0fa37365409f8e3499b5a39843125815100b81dca0058681bc3f5514022bcbf0f02
Public Key
ed25519:d610d74ef18f683e5beb859d241d5e67dff0c122e8928b06bec1c2476f4ba27b
Parent
(genesis)
Plane
fast
Verify this in your browser