www.rollcall.com/2021/03/01/covid-19-n95-respirator-masks/
192.0.66.176301 Moved Permanently 162 B URL HTTP/1.1 www.rollcall.com/2021/03/01/covid-19-n95-respirator-masks/
IP 192.0.66.176:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
NIDS Severity Alert suricata medium ET HUNTING Suspicious GET Request with Possible COVID-19 URI M1
GET /2021/03/01/covid-19-n95-respirator-masks/ HTTP/1.1
Host: www.rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 14:52:33 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.rollcall.com/2021/03/01/covid-19-n95-respirator-masks/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4650
Expires: Sat, 04 Feb 2023 16:10:03 GMT
Date: Sat, 04 Feb 2023 14:52:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9042
Expires: Sat, 04 Feb 2023 17:23:15 GMT
Date: Sat, 04 Feb 2023 14:52:33 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 14:43:38 GMT
content-type: application/json
age: 535
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16659
Expires: Sat, 04 Feb 2023 19:30:12 GMT
Date: Sat, 04 Feb 2023 14:52:33 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: XSYc6NfLTw5Yn+CoYwgLGhcCUt6IP6XOSbIdOloO+ap/GQfyqvXnUz2mNHmWdcUalC99TuCSebj4mwt7SMcxOg==
x-amz-request-id: GFGEM587YFC8SMN0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 13:52:51 GMT
age: 3582
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.rollcall.com/2021/03/01/covid-19-n95-respirator-masks/
192.0.66.176302 Found 168 B URL HTTP/2 www.rollcall.com/2021/03/01/covid-19-n95-respirator-masks/
IP 192.0.66.176:0
File type HTML document, ASCII text, with no line terminators
Hash 0609c83ebb67c86af205d925bccc6677
e4aa03c057ecbf8ea465cbb36f303ab307f5a74b
97e076b849dc3fcd91020013108914d2912cecde1a480c86af1e283354cd9ef1
NIDS Severity Alert suricata medium ET HUNTING Suspicious GET Request with Possible COVID-19 URI M1
GET /2021/03/01/covid-19-n95-respirator-masks/ HTTP/1.1
Host: www.rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 14:52:33 GMT
content-type: text/html; charset=utf-8
content-length: 168
location: https://rollcall.com/2021/03/01/covid-19-n95-respirator-masks/
x-powered-by: Express
x-rq: arn2 0 2 9980
age: 0
x-cache: miss
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:33 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 14:49:07 GMT
age: 207
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
rollcall.com/static/css/fonts.css
192.0.66.176200 OK 450 B URL HTTP/2 rollcall.com/static/css/fonts.css
IP 192.0.66.176:0
File type ASCII text, with very long lines (2180)
Hash b00d3f320218fe8f5178fbd18c29512c
b56c896e3b46088dda5f7bc334be7fe41b7fdded
25edbf9a7a26f2d03099e7abe885791d9d0a6b8d9ee91d8440b0f9592ffb2cb8
GET /static/css/fonts.css HTTP/1.1
Host: rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/2021/03/01/covid-19-n95-respirator-masks/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:34 GMT
content-type: text/css; charset=UTF-8
content-length: 450
x-powered-by: Express
last-modified: Mon, 05 Dec 2022 17:48:54 GMT
etag: W/"8c8-184e367af70"
content-encoding: gzip
x-rq: arn2 0 2 9980
age: 24500
x-cache: hit
vary: X-Mobile-Class
accept-ranges: bytes
expires: Sun, 04 Feb 2024 14:52:34 GMT
cache-control: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6134
Expires: Sat, 04 Feb 2023 16:34:48 GMT
Date: Sat, 04 Feb 2023 14:52:34 GMT
Connection: keep-alive
www.rollcall.com/main.e253c222a5923f923c81.css
192.0.66.176302 Found 72 B URL HTTP/2 www.rollcall.com/main.e253c222a5923f923c81.css
IP 192.0.66.176:0
File type ASCII text, with no line terminators
Hash 6f7cad8f64cfcdb8ac09e3daf0c07ecf
b457084c238c2bbf02e9ebb56be21a3776587af2
040ee0d61787cedddc3323e26afabf5270eb8a8ece1fb67e990be2208cd50916
GET /main.e253c222a5923f923c81.css HTTP/1.1
Host: www.rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 14:52:34 GMT
content-type: text/plain; charset=utf-8
content-length: 72
x-powered-by: Express
location: https://rollcall.com/main.e253c222a5923f923c81.css
x-rq: arn2 0 2 9980
age: 0
x-cache: miss
expires: Sun, 04 Feb 2024 14:52:34 GMT
cache-control: max-age=31536000
X-Firefox-Spdy: h2
www.rollcall.com/static/css/main.css
192.0.66.176302 Found 62 B URL HTTP/2 www.rollcall.com/static/css/main.css
IP 192.0.66.176:0
File type ASCII text, with no line terminators
Hash defa2a0981cecc0719880e356597f4f9
0af7436bae6e92558391a34929ab2c9a334608f3
2a031ab66cd2b9319dbb25fb74d02dced9fcad0d4e3d5dac899b869d3239f1b3
GET /static/css/main.css HTTP/1.1
Host: www.rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 14:52:34 GMT
content-type: text/plain; charset=utf-8
content-length: 62
x-powered-by: Express
location: https://rollcall.com/static/css/main.css
x-rq: arn2 0 2 9980
age: 0
x-cache: miss
expires: Sun, 04 Feb 2024 14:52:34 GMT
cache-control: max-age=31536000
X-Firefox-Spdy: h2
www.rollcall.com/fonts.c3c6d6de0b90e870863b.css
192.0.66.176302 Found 73 B URL HTTP/2 www.rollcall.com/fonts.c3c6d6de0b90e870863b.css
IP 192.0.66.176:0
File type ASCII text, with no line terminators
Hash 36dac0aad8f9b6473b1031f095ae376b
fa5081ccc1ff87fcec9de6d3897e9abcdb89262f
2981b6b88c54add6c2402a73de3795277dc08dc0424e4eb65cb98e48298d0a10
GET /fonts.c3c6d6de0b90e870863b.css HTTP/1.1
Host: www.rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 14:52:34 GMT
content-type: text/plain; charset=utf-8
content-length: 73
x-powered-by: Express
location: https://rollcall.com/fonts.c3c6d6de0b90e870863b.css
x-rq: arn2 0 2 9980
age: 0
x-cache: miss
expires: Sun, 04 Feb 2024 14:52:34 GMT
cache-control: max-age=31536000
X-Firefox-Spdy: h2
www.rollcall.com/static/js/main.641c3351.bundle.js
192.0.66.176302 Found 76 B URL HTTP/2 www.rollcall.com/static/js/main.641c3351.bundle.js
IP 192.0.66.176:0
File type ASCII text, with no line terminators
Hash 05dc58d1f2e20477b836e52217d50d60
3d1341a845bc5ecfe6f080fdc4ead35f98a01a4e
b6acf4b3902fe6f8287fbe82b7be0f1a89f02b17d22606030358b552f1244c07
GET /static/js/main.641c3351.bundle.js HTTP/1.1
Host: www.rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 14:52:34 GMT
content-type: text/plain; charset=utf-8
content-length: 76
x-powered-by: Express
location: https://rollcall.com/static/js/main.641c3351.bundle.js
x-rq: arn2 0 2 9980
age: 0
x-cache: miss
expires: Sun, 04 Feb 2024 14:52:34 GMT
cache-control: max-age=31536000
X-Firefox-Spdy: h2
www.rollcall.com/static/css/fonts.css
192.0.66.176302 Found 63 B URL HTTP/2 www.rollcall.com/static/css/fonts.css
IP 192.0.66.176:0
File type ASCII text, with no line terminators
Hash 6d0b9310b46c0cdd79940ce32b6facf6
eb6977e34954a48548c04d1a32aec63f62c0b100
d69b55e57ab6c7a105376c75f46dd762852290c9b3a5c0e47b27ea817ff1379c
GET /static/css/fonts.css HTTP/1.1
Host: www.rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 14:52:34 GMT
content-type: text/plain; charset=utf-8
content-length: 63
x-powered-by: Express
location: https://rollcall.com/static/css/fonts.css
x-rq: arn2 0 2 9980
age: 0
x-cache: miss
expires: Sun, 04 Feb 2024 14:52:34 GMT
cache-control: max-age=31536000
X-Firefox-Spdy: h2
www.rollcall.com/static/js/fonts.12145ed3.bundle.js
192.0.66.176302 Found 77 B URL HTTP/2 www.rollcall.com/static/js/fonts.12145ed3.bundle.js
IP 192.0.66.176:0
File type ASCII text, with no line terminators
Hash c55207254d073969057c1951bb29069d
013501a67c6e33c242b4ef8f73fc813b9916ba24
67bdf9b7d806ee019ab12a9f02b34db98be820195d39145b1d3d1f5fdc2a3a73
GET /static/js/fonts.12145ed3.bundle.js HTTP/1.1
Host: www.rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 14:52:34 GMT
content-type: text/plain; charset=utf-8
content-length: 77
x-powered-by: Express
location: https://rollcall.com/static/js/fonts.12145ed3.bundle.js
x-rq: arn2 0 2 9980
age: 0
x-cache: miss
expires: Sun, 04 Feb 2024 14:52:34 GMT
cache-control: max-age=31536000
X-Firefox-Spdy: h2
www.rollcall.com/static/js/common.efec6be6.bundle.js
192.0.66.176302 Found 78 B URL HTTP/2 www.rollcall.com/static/js/common.efec6be6.bundle.js
IP 192.0.66.176:0
File type ASCII text, with no line terminators
Hash 5ef528738eb1e93514335ed19fb2d5ff
81050e6beaadc69e59321599d75c1283512000f4
0ac90e669639c3cc4cbdbf29566a428f15f8e911846ef9b6667939ae5141084d
GET /static/js/common.efec6be6.bundle.js HTTP/1.1
Host: www.rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 14:52:34 GMT
content-type: text/plain; charset=utf-8
content-length: 78
x-powered-by: Express
location: https://rollcall.com/static/js/common.efec6be6.bundle.js
x-rq: arn2 0 2 9980
age: 0
x-cache: miss
expires: Sun, 04 Feb 2024 14:52:34 GMT
cache-control: max-age=31536000
X-Firefox-Spdy: h2
rollcall.com/main.e253c222a5923f923c81.css
192.0.66.176200 OK 121 B URL HTTP/2 rollcall.com/main.e253c222a5923f923c81.css
IP 192.0.66.176:0
File type ASCII text, with no line terminators
Hash cf843047762c267faa5c912356884d84
2bf8fe7fc5657451e604a0adc7c14d59a01ad3e1
fcc0fe5ac8124db131fde7ea6899ba6f31c918bf6c918b2c3f14088760795da0
GET /main.e253c222a5923f923c81.css HTTP/1.1
Host: rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:34 GMT
content-type: text/css; charset=UTF-8
content-length: 121
x-powered-by: Express
last-modified: Mon, 05 Dec 2022 17:48:54 GMT
etag: W/"79-184e367af70"
x-rq: arn2 0 2 9980
age: 24500
x-cache: hit
vary: X-Mobile-Class
accept-ranges: bytes
expires: Sun, 04 Feb 2024 14:52:34 GMT
cache-control: max-age=31536000
X-Firefox-Spdy: h2
rollcall.com/static/css/main.css
192.0.66.176200 OK 121 B URL HTTP/2 rollcall.com/static/css/main.css
IP 192.0.66.176:0
File type ASCII text, with no line terminators
Hash cf843047762c267faa5c912356884d84
2bf8fe7fc5657451e604a0adc7c14d59a01ad3e1
fcc0fe5ac8124db131fde7ea6899ba6f31c918bf6c918b2c3f14088760795da0
GET /static/css/main.css HTTP/1.1
Host: rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:34 GMT
content-type: text/css; charset=UTF-8
content-length: 121
x-powered-by: Express
last-modified: Mon, 05 Dec 2022 17:48:54 GMT
etag: W/"79-184e367af70"
x-rq: arn2 0 2 9980
age: 24500
x-cache: hit
vary: X-Mobile-Class
accept-ranges: bytes
expires: Sun, 04 Feb 2024 14:52:34 GMT
cache-control: max-age=31536000
X-Firefox-Spdy: h2
rollcall.com/fonts.c3c6d6de0b90e870863b.css
192.0.66.176200 OK 459 B URL HTTP/2 rollcall.com/fonts.c3c6d6de0b90e870863b.css
IP 192.0.66.176:0
File type ASCII text, with very long lines (2180)
Hash 723127aede1342c5ff0c5ecdcf766422
52b0b745223c475fe673d680ebf246b6428f2380
39da41360f5b55547b2ca80c3c4d5895e4aa41ac11ded2ad91275ee2073cd8bb
GET /fonts.c3c6d6de0b90e870863b.css HTTP/1.1
Host: rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:34 GMT
content-type: text/css; charset=UTF-8
content-length: 459
x-powered-by: Express
last-modified: Mon, 05 Dec 2022 17:48:54 GMT
etag: W/"8d2-184e367af70"
content-encoding: gzip
x-rq: arn2 0 2 9980
age: 24500
x-cache: hit
vary: X-Mobile-Class
accept-ranges: bytes
expires: Sun, 04 Feb 2024 14:52:34 GMT
cache-control: max-age=31536000
X-Firefox-Spdy: h2
rollcall.com/static/js/main.641c3351.bundle.js
192.0.66.176200 OK 36 kB URL HTTP/2 rollcall.com/static/js/main.641c3351.bundle.js
IP 192.0.66.176:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 9818a7c445fb80cbbb4f4a811890e11b
716ddf266cf911ec965b1527cc567643e079faf6
8cf49407a1de444f2fb77b77ddb857cdf56a6ba081729b5d66ade25393fa1f55
GET /static/js/main.641c3351.bundle.js HTTP/1.1
Host: rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:34 GMT
content-type: application/javascript; charset=UTF-8
content-length: 36351
x-powered-by: Express
last-modified: Mon, 05 Dec 2022 17:48:54 GMT
etag: W/"20e91-184e367af70"
content-encoding: gzip
x-rq: arn2 0 2 9980
age: 24499
x-cache: hit
vary: X-Mobile-Class
accept-ranges: bytes
expires: Sun, 04 Feb 2024 14:52:34 GMT
cache-control: max-age=31536000
X-Firefox-Spdy: h2
rollcall.com/static/js/fonts.12145ed3.bundle.js
192.0.66.176200 OK 128 B URL HTTP/2 rollcall.com/static/js/fonts.12145ed3.bundle.js
IP 192.0.66.176:0
File type ASCII text, with no line terminators
Hash d19a91a88a8fddd618fd6d80a9127dcf
cd47ab6ea035232f85973d0cc89e1bc5a61c8af2
ba5e101cc0b63144fb4b79d92eefff4d802daecd9892d797c73c621e3fd855fb
GET /static/js/fonts.12145ed3.bundle.js HTTP/1.1
Host: rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:34 GMT
content-type: application/javascript; charset=UTF-8
content-length: 128
x-powered-by: Express
last-modified: Mon, 05 Dec 2022 17:48:54 GMT
etag: W/"80-184e367af70"
x-rq: arn2 0 2 9980
age: 24499
x-cache: hit
vary: X-Mobile-Class
accept-ranges: bytes
expires: Sun, 04 Feb 2024 14:52:34 GMT
cache-control: max-age=31536000
X-Firefox-Spdy: h2
rollcall.com/static/js/common.efec6be6.bundle.js
192.0.66.176200 OK 228 kB URL HTTP/2 rollcall.com/static/js/common.efec6be6.bundle.js
IP 192.0.66.176:0
File type ASCII text, with very long lines (65456)
Size 228 kB (227506 bytes)
Hash 0493f78cd7a72698bc723a205f89a419
63fbf0504480c73157b123267e6f06452ac1341e
9ac5a21ed4a0b8a98383adea27c0f84013c7579e3c139555a4e620a16061c2ba
GET /static/js/common.efec6be6.bundle.js HTTP/1.1
Host: rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:34 GMT
content-type: application/javascript; charset=UTF-8
content-length: 227506
x-powered-by: Express
last-modified: Mon, 05 Dec 2022 17:48:54 GMT
etag: W/"b1129-184e367af70"
content-encoding: gzip
x-rq: arn2 0 2 9980
age: 24498
x-cache: hit
vary: X-Mobile-Class
accept-ranges: bytes
expires: Sun, 04 Feb 2024 14:52:34 GMT
cache-control: max-age=31536000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash fdba2c8f9cc70aa007e1e1a5a02b7911
56f32cd61d2741bd3a85668838c3753e16aafcce
1d13043534c4c6fffaf97515e4f20bc15b6f878819c7b863c68b80f36bd099ea
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 14:52:34 GMT
Last-Modified: Sat, 04 Feb 2023 13:50:14 GMT
Server: ECS (bsa/EB16)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: i84XyfulaqyBd9yso34iO99r6JKQStzvrAKqvKiL4V4-W1ST66DTfA==
Age: 3740
push.services.mozilla.com/
52.88.112.71101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.112.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nfAGPAe24y1As9JzvEEc3A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6quWnj9aqW8GZ+aCOpvc4bmY/UU=
hb-rollcall.s3.us-east-2.amazonaws.com/prebid.js
52.219.108.242200 OK 486 kB URL HTTP/1.1 hb-rollcall.s3.us-east-2.amazonaws.com/prebid.js
IP 52.219.108.242:0
File type ASCII text, with very long lines (65254)
Size 486 kB (486095 bytes)
Hash ccc7d50e3f91954054fd345621fbeac7
044f045771419ff1f6cd8c5b2102464dc6097349
f3457685bb85e34167acf650b55d815071c27dd442401a0e804cfd7a2945cfda
GET /prebid.js HTTP/1.1
Host: hb-rollcall.s3.us-east-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: aBC75LOEDeRGGDyGh1vIvTvxU9gllNzYEXnxtiV6K9UWqt2LCss2V5k6DwvnW4KPKFGr5nON8HA=
x-amz-request-id: 2AAWP0156FFNQC4B
Date: Sat, 04 Feb 2023 14:52:35 GMT
Last-Modified: Wed, 14 Sep 2022 12:16:01 GMT
ETag: "ccc7d50e3f91954054fd345621fbeac7"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 486095
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash f8a37e240c030aaf6bd071d707bd1de9
f816bab8699735667d213d8f0baca2e2237884ba
814a500ab90e9bd85911407dc6f604a44769918e7bf26c269a50af130b135035
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2155
Cache-Control: max-age=90466
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:35 GMT
Etag: "63dd272a-116"
Expires: Sun, 05 Feb 2023 16:00:21 GMT
Last-Modified: Fri, 03 Feb 2023 15:24:26 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 278
rollcall.com/static/media/Graphik-Regular.42a9b773.woff2
192.0.66.176200 OK 34 kB URL HTTP/2 rollcall.com/static/media/Graphik-Regular.42a9b773.woff2
IP 192.0.66.176:0
File type Web Open Font Format (Version 2), TrueType, length 34352, version 1.0\012- data
Hash 13c6337caf0e2d05d511208c36337b8c
493488c4c3b3548026b2a1f783a861c26b63ea70
9c3fb453d635826f7fb3eeb369e7e469008e8d80ed9b6078769468b2b8ba1fb2
GET /static/media/Graphik-Regular.42a9b773.woff2 HTTP/1.1
Host: rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://rollcall.com/fonts.c3c6d6de0b90e870863b.css
Cookie: _uc_referrer=direct; _pbjs_userid_consent_data=3524755945110770
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:35 GMT
content-type: font/woff2
content-length: 34352
x-powered-by: Express
last-modified: Mon, 05 Dec 2022 17:48:54 GMT
etag: W/"8630-184e367af70"
x-rq: arn2 0 2 9980
age: 24499
x-cache: hit
vary: X-Mobile-Class
accept-ranges: bytes
expires: Sun, 04 Feb 2024 14:52:35 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
stats.wp.com/e-202305.js
192.0.76.3200 OK 40 kB IP 192.0.76.3:0
File type ASCII text, with very long lines (2690)
Hash c2cba4fe2766630cce448de8bfd0df23
34658da76136b7f9f826b3c579eab47d92794cdf
eab92e35d39cccc8d57467a46ecc75854711eb13097c1ebeaeaa8cc176cce4e1
GET /e-202305.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:34 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Wed, 24 Jan 2024 05:54:37 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
rollcall.com/static/media/Graphik-Bold.085031af.woff2
192.0.66.176200 OK 37 kB URL HTTP/2 rollcall.com/static/media/Graphik-Bold.085031af.woff2
IP 192.0.66.176:0
File type Web Open Font Format (Version 2), TrueType, length 36932, version 1.0\012- data
Hash d818a0ff3d2e9abc06721196728d1a19
06422105a86263b4a99cfdb1c4c0fe430d4bd151
c0cd4ac15720b7943a1e02c3c92510abce2a990a03ffe5e24e512293a82f41ac
GET /static/media/Graphik-Bold.085031af.woff2 HTTP/1.1
Host: rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://rollcall.com/fonts.c3c6d6de0b90e870863b.css
Cookie: _uc_referrer=direct; _pbjs_userid_consent_data=3524755945110770
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:35 GMT
content-type: font/woff2
content-length: 36932
x-powered-by: Express
last-modified: Mon, 05 Dec 2022 17:48:54 GMT
etag: W/"9044-184e367af70"
x-rq: arn2 0 2 9980
age: 24499
x-cache: hit
vary: X-Mobile-Class
accept-ranges: bytes
expires: Sun, 04 Feb 2024 14:52:35 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
rollcall.com/static/media/LyonText-Regular.42e7f40b.woff2
192.0.66.176200 OK 56 kB URL HTTP/2 rollcall.com/static/media/LyonText-Regular.42e7f40b.woff2
IP 192.0.66.176:0
File type Web Open Font Format (Version 2), TrueType, length 55780, version 1.0\012- data
Hash 92335f2d0fa1dcd5cb3993f8ed0bc4ce
441d3cfcd4729471566bd27d01c8efee90782745
afef16465ce1697e7a1f11a356846d0a3c21d68c1b2363242121096b3340c4fd
GET /static/media/LyonText-Regular.42e7f40b.woff2 HTTP/1.1
Host: rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://rollcall.com/fonts.c3c6d6de0b90e870863b.css
Cookie: _uc_referrer=direct; _pbjs_userid_consent_data=3524755945110770
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:35 GMT
content-type: font/woff2
content-length: 55780
x-powered-by: Express
last-modified: Mon, 05 Dec 2022 17:48:54 GMT
etag: W/"d9e4-184e367af70"
x-rq: arn2 0 2 9980
age: 5341
x-cache: hit
accept-ranges: bytes
expires: Sun, 04 Feb 2024 14:52:35 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
a.teads.tv/analytics/tag.js
2.18.173.43200 OK 3.4 kB URL HTTP/2 a.teads.tv/analytics/tag.js
IP 2.18.173.43:0
File type ASCII text, with very long lines (4822)
Hash 6ddfb3a828a563a7719081ff9aeedaba
80286455b7c85311df5f997714b83380ac02fd6d
826524e59a21d4190f923f804a17db1513e1ee3cb4a5ed12f3bb6a5b4f370835
GET /analytics/tag.js HTTP/1.1
Host: a.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +hi3J8gLh7odTbzzwPTTi1cNLRiMIMeCbLwhFS3fdhvnkPc6F/KidF+aylAlaVgqP4umQC5X3TY=
x-amz-request-id: VYTSDGA8QVA7F7Y0
last-modified: Wed, 02 Nov 2022 09:38:15 GMT
etag: "6ddfb3a828a563a7719081ff9aeedaba"
x-amz-server-side-encryption: AES256
x-amz-version-id: Y6qsPmt0o95KDo3Ibo2euzqSnxQebNV8
accept-ranges: bytes
content-type: text/javascript;charset=utf-8
content-length: 3391
cache-control: private, max-age=3600
date: Sat, 04 Feb 2023 14:52:35 GMT
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 42f7bb86070a306c0902a2947bfd5db1
679751d86f7520d1e5e30b5bc050015450de75a7
ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.130200 OK 27 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (39302)
Hash 7a948f2ef1cd6fe8d0b0191dda6d3c2f
4a20adcc9af4f774d7af798d0ac1c768d05d76d6
a966287584c5d304d5e94b697fdf9d45f814664eab893f68a0d270149de3d0d5
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27284
date: Sat, 04 Feb 2023 14:52:35 GMT
expires: Sat, 04 Feb 2023 14:52:35 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1472 / 256 of 1000 / last-modified: 1675465842"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.whizzco.com/scripts/widget/widget_v3.js
172.64.197.9200 OK 80 kB URL HTTP/2 cdn.whizzco.com/scripts/widget/widget_v3.js
IP 172.64.197.9:0
File type ASCII text, with very long lines (540)
Hash 5107dd179a7e3cb17fb906f1597940bb
a0536c3f03c60b9e82440a12d6c24f9467e5f398
a72bd101f77b693a652b0c379c0c1c7620b28a47da33d505c0da1d93dd6736f0
GET /scripts/widget/widget_v3.js HTTP/1.1
Host: cdn.whizzco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:34 GMT
content-type: application/javascript
last-modified: Tue, 27 Dec 2022 09:17:24 GMT
etag: W/"305bfcb1203c963f8fc2700bf8e0a00a"
x-cache: Hit from cloudfront
via: 1.1 01d9de39ec907ee6febcea913f8cbfa2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P6
x-amz-cf-id: iHH9pVcNXIJz8wkYnXJVyCN6C-mhWGqgcd8GZt45Mk_S3B1B1VHzpA==
age: 5710
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0C5m6F6BL5iYQV7ErXLbF07TwPPJ6j1xMyHYAx6fATCuuRhtpVSud6TsX0GsjEURETaU4V3OHoq0zhc7VbBaG8xG880ST6bBtpTYMC88v67RFH4lepTubb6i7bBtlWuW2wo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79443b196eb67457-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5ac5aaa2dd1a2ab697244f3c0fe3b5b5
bb8a9aeb28cc645435760f3a9a57d85e295de419
d42327bb295e41a2b04efa1c2ad6094a3480d0010de10bb32600f4d17fe9f0d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6dcc9d50a2ec2c52c001e1ddeb1410ad
0a26676d3a73e5a89e0109373104ec1b675012f8
aa00d05431fe774908718ec1d27fecd5b1ae4d0c1cf644a6ad91603473c7d3c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA00D05431FE774908718EC1D27FECD5B1AE4D0C1CF644A6AD91603473C7D3C2"
Last-Modified: Sat, 04 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4330
Expires: Sat, 04 Feb 2023 16:04:45 GMT
Date: Sat, 04 Feb 2023 14:52:35 GMT
Connection: keep-alive
cat.hbwrapper.com/
192.241.157.60200 OK 15 B IP 192.241.157.60:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with no line terminators
Hash 0f0479874bf6f4a7281099b15df27c27
55a490e280d48996e564d00492437eb17faadd28
a29ee2b15c494311c52521766e44af56a3ad2248e7a8ab465e5206463c13d288
POST / HTTP/1.1
Host: cat.hbwrapper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 176
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:35 GMT
Server: Apache
Access-Control-Allow-Origin: https://rollcall.com
Access-Control-Allow-Credentials: true
Content-Length: 15
Connection: close
Content-Type: text/html; charset=UTF-8
api.whizzco.com/demand/v1/rtads
172.64.197.9200 OK 0 B URL HTTP/2 api.whizzco.com/demand/v1/rtads
IP 172.64.197.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /demand/v1/rtads HTTP/1.1
Host: api.whizzco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://rollcall.com/
Origin: https://rollcall.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:35 GMT
content-length: 0
access-control-allow-origin: https://rollcall.com
access-control-allow-methods: GET, POST, HEAD, OPTIONS
access-control-allow-headers: content-type
access-control-max-age: 1800
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HUyCmC04PrGpipBHmchUX2VnejUrJeRG2GHHPXZa71K25LHwFVBzYKlAVDOhKl%2BMRpq6MP2%2F5GywiYpUnQ93v0pkEpeE1bKRtyRM9v3KKzJkfmaUU2XKi1Mo0VzQ%2F4tEY7s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79443b21dbb4065e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ssl.p.jwpcdn.com/player/v/8.26.5/googima.js
151.101.194.114200 OK 23 kB URL HTTP/2 ssl.p.jwpcdn.com/player/v/8.26.5/googima.js
IP 151.101.194.114:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 840a7c8de324bcdba68afe0fbdd6d782
4ab760c7bcd65937088f5150e906189e83986cff
f3df0a0f31adf4c677846ff29031b1f26f61693474124424edb416da0d982712
GET /player/v/8.26.5/googima.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400, immutable
last-modified: Fri, 16 Dec 2022 18:56:48 GMT
etag: "866317c56c48e760cb19736ccaeeabf9"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 14:52:35 GMT
via: 1.1 varnish
age: 80257
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 13562
x-timer: S1675522356.762863,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 23032
X-Firefox-Spdy: h2
c.amazon-adsystem.com/aax2/apstag.js
54.230.111.210200 OK 161 kB URL HTTP/2 c.amazon-adsystem.com/aax2/apstag.js
IP 54.230.111.210:0
File type ASCII text, with very long lines (65457)
Size 161 kB (160951 bytes)
Hash 301404db4a09af21a55a03abd687a4b9
a924e9feaded3e09b983a03841db355d12e8651e
9e4dfe0ec8e67d958682e0983ec033570c9b1842c99032b37e632ea83e7f986c
GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 04 Feb 2023 14:44:01 GMT
last-modified: Wed, 01 Feb 2023 21:25:54 GMT
etag: W/"ca579f2de02c4700bc4fa6f925ed06a1"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 814952d19d560b49ff15ad2f71e400d2.cloudfront.net (CloudFront), 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-P1
x-amz-cf-id: FXginhXagu31D0kPGo2-WPXISaxuEVDUeITe657eNTlwjskgNfcmtg==
age: 515
X-Firefox-Spdy: h2
ssl.p.jwpcdn.com/player/plugins/inference/v/0.7.1/inference.js
151.101.194.114200 OK 5.5 kB URL HTTP/2 ssl.p.jwpcdn.com/player/plugins/inference/v/0.7.1/inference.js
IP 151.101.194.114:0
File type ASCII text, with very long lines (18780)
Hash 7c699ed8dab806a58d7954184268c291
efd4542c59869378ef540de466ac47bf11ac39b4
f3f69471d3f3285713d1bca1ac3efa2887aa3eb9eaac2c7c96ede9e8e19a3fc9
GET /player/plugins/inference/v/0.7.1/inference.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=31536000,immutable
last-modified: Mon, 04 Oct 2021 07:39:43 GMT
etag: "a777fcd9584e62f04dc53d548d8adb31"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 14:52:35 GMT
via: 1.1 varnish
age: 10652625
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 174003
x-timer: S1675522356.789476,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 5464
X-Firefox-Spdy: h2
ssl.p.jwpcdn.com/player/v/8.26.5/gapro.js
151.101.194.114200 OK 1.1 kB URL HTTP/2 ssl.p.jwpcdn.com/player/v/8.26.5/gapro.js
IP 151.101.194.114:0
File type ASCII text, with very long lines (3112)
Hash af97cc4d75c7f88edd014d012588cda5
66a176c9d45b1fc6305b77dff3c6d92b84ece0ea
5aeecb11c8f3d66c821097139a02133c7d5438358e9e1d61ce2ff29548392295
GET /player/v/8.26.5/gapro.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=31536000, immutable
last-modified: Fri, 16 Dec 2022 18:56:47 GMT
etag: "9c829c85c0bf90b98b61d1206c967945"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 14:52:35 GMT
via: 1.1 varnish
age: 4054457
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 62049
x-timer: S1675522356.789537,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1147
X-Firefox-Spdy: h2
ssl.p.jwpcdn.com/player/v/8.26.5/jwpsrv.js
151.101.194.114200 OK 19 kB URL HTTP/2 ssl.p.jwpcdn.com/player/v/8.26.5/jwpsrv.js
IP 151.101.194.114:0
File type ASCII text, with very long lines (63082)
Hash 23991e20542403b9c96dc382a549f947
178a6dc4e9af4ce35f0d03aecd69274df1b4fdc3
ba0aab9f7253ebb23074ee02226ff08ae7e85c0565cb7914afcd78673cc46598
GET /player/v/8.26.5/jwpsrv.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=900, immutable
last-modified: Fri, 16 Dec 2022 18:56:50 GMT
etag: "fef737c4cc57ed883ecf82f803194198"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 14:52:35 GMT
via: 1.1 varnish
age: 514
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 220
x-timer: S1675522356.789524,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 18865
X-Firefox-Spdy: h2
ssl.p.jwpcdn.com/player/v/8.26.5/jwplayer.core.controls.js
151.101.194.114200 OK 86 kB URL HTTP/2 ssl.p.jwpcdn.com/player/v/8.26.5/jwplayer.core.controls.js
IP 151.101.194.114:0
File type ASCII text, with very long lines (65143)
Hash 6f86ba5ba6b158c511477a37daf23904
05b156aae6413fc186ff5bc931dfde1bab7176a1
c8f9102b7054d342cffc4b5bbf734a0351222da13aee2bc155097f7aba729553
GET /player/v/8.26.5/jwplayer.core.controls.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=31536000, immutable
last-modified: Thu, 15 Dec 2022 20:44:12 GMT
etag: "63a963853b34e6de450b5bfdd2e5c05d"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 14:52:35 GMT
via: 1.1 varnish
age: 4325835
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 626732
x-timer: S1675522356.789491,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 86146
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3700
Expires: Sat, 04 Feb 2023 15:54:15 GMT
Date: Sat, 04 Feb 2023 14:52:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3700
Expires: Sat, 04 Feb 2023 15:54:15 GMT
Date: Sat, 04 Feb 2023 14:52:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3700
Expires: Sat, 04 Feb 2023 15:54:15 GMT
Date: Sat, 04 Feb 2023 14:52:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3700
Expires: Sat, 04 Feb 2023 15:54:15 GMT
Date: Sat, 04 Feb 2023 14:52:35 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:44 GMT
age: 60411
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jBxNmhfAeUgxg8w4XpQHZ1QoN9GatdUV7V7r2tHd7YePJYPHpesd2Q==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:21 GMT
age: 60434
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 06:20:04 GMT
age: 30751
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:00:26 GMT
age: 60729
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7101f6e43855cb76ce48271a847ffbd
8e674830a97d8ce3818132fda197db4f0289d316
e78a83a4024e238bcdec3b9c4d5c12a99f49aabd57e34952f6a4cc8ed4422f55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9141
x-amzn-requestid: ed7db574-6bca-4f3e-8879-c3e836549339
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD8zE5lIAMF1HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8051-4480112f11d4ced0037d1ad8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: aKr85ooofBPeKkeJIDO5W_X5Rn6xnJlRHmVrs8tgBMYe3HQhobsm3w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:56:07 GMT
age: 60988
etag: "8e674830a97d8ce3818132fda197db4f0289d316"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.jwplayer.com/v2/media/GrnuZCHr?page_domain=rollcall.com
54.230.111.3200 OK 3.6 kB URL HTTP/2 cdn.jwplayer.com/v2/media/GrnuZCHr?page_domain=rollcall.com
IP 54.230.111.3:0
File type JSON data\012- , ASCII text, with very long lines (13708), with no line terminators
Hash e38c0412a5cd2dd3b3e9ba97acc8af86
dfabc74beada4d3fe7fde246dcd22eb43160edfe
96c075885f929829974a5a4a33f56871498fe0201e6bd496d487bacc2d772aee
GET /v2/media/GrnuZCHr?page_domain=rollcall.com HTTP/1.1
Host: cdn.jwplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 3601
access-control-allow-origin: *
cache-control: max-age=180, max-stale=180
content-encoding: gzip
date: Sat, 04 Feb 2023 14:52:35 GMT
expires: Sat, 04 Feb 2023 14:55:35
server: openresty
x-robots-tag: noindex, indexifembedded
x-cache: Miss from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _6pbTiXoVkPLd03VTssUUYyoFj_IKNOKZiwQvgIcyNj01zvfrwTcWA==
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7afd5ce8fb9ec7b62e528bf97705e49
afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3
b2d93ba6c0ed2c858d91afba1c81251afbffa41c779be2e9203994dcfb7bbc9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7249
x-amzn-requestid: 007ce521-ed5c-4074-a314-684ad0df2e22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9GH5goAMF_ag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8053-7060f02b767c90371991a190;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5fTV_e56nzjiXo4Guu67WXDDvp3nrjB0Yfyy6ByjcDSx23J-8r0fmQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 60134
etag: "afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
i1.wp.com/cdn.media.rollcall.com/photos/contributors/kopp005_101818.jpg?resize=400,400
192.0.77.2200 OK 19 kB URL HTTP/2 i1.wp.com/cdn.media.rollcall.com/photos/contributors/kopp005_101818.jpg?resize=400,400
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 79e0e58f230a2bcf44476a6882b69c1a
f2c001851ddf0a9cac4f569fa2a53d5588264074
6ac9f4abbc283254b43151f95fba0d29e1dc07096fff7b4eeb9c5b3278273586
GET /cdn.media.rollcall.com/photos/contributors/kopp005_101818.jpg?resize=400,400 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:35 GMT
content-type: image/webp
content-length: 18930
last-modified: Sun, 22 Jan 2023 20:20:11 GMT
expires: Wed, 22 Jan 2025 08:20:11 GMT
cache-control: public, max-age=63115200
link: <http://cdn.media.rollcall.com/photos/contributors/kopp005_101818.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "c78d52a2a4dd4ad7"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
live.rezync.com/sync?c=16b6410431b6374e780104abb0443ca8&p=219d3e3660f387dfd510bdc3f5d880c1&k=roll-call-pixel-0851&zmpID=roll-call
143.204.55.19200 OK 1.5 kB URL HTTP/2 live.rezync.com/sync?c=16b6410431b6374e780104abb0443ca8&p=219d3e3660f387dfd510bdc3f5d880c1&k=roll-call-pixel-0851&zmpID=roll-call
IP 143.204.55.19:0
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (1134)
Hash 00e391e6a380c39b6375b6976678ac30
3fa19b535aca7455bacdb41a8e08ca559d9cc87a
86093d31f0bce365c0d001dc919356e581056efb11cfcded2bed7ba945ef7ce8
GET /sync?c=16b6410431b6374e780104abb0443ca8&p=219d3e3660f387dfd510bdc3f5d880c1&k=roll-call-pixel-0851&zmpID=roll-call HTTP/1.1
Host: live.rezync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 1502
date: Sat, 04 Feb 2023 14:52:35 GMT
set-cookie: zync-uuid=9a97009f-c3b2-4a22-bddd-1bfbe7e9348c:1675522355.9381113; Domain=rezync.com; Expires=Thu, 03 Aug 2023 06:52:35 GMT; Path=/; SameSite=None; Secure
sd-session-id=eyJfcGVybWFuZW50Ijp0cnVlLCJzZXNzaW9uX2lkIjoiOWE5NzAwOWYtYzNiMi00YTIyLWJkZGQtMWJmYmU3ZTkzNDhjOjE2NzU1MjIzNTUuOTM4MTExMyJ9.Y95xMw.xNWkZ5pUN8W52-EsEzpy473pzrc; Expires=Thu, 03 Aug 2023 14:52:35 GMT; HttpOnly; Path=/; SameSite=None; Secure
vary: Cookie
server: lighttpd/1.4.59
x-cache: Miss from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _4PmJPh2wJut6WoH4KJBVdVXbdOYUzgJg3Nf2V82O80-DkREPYa-CA==
X-Firefox-Spdy: h2
script.4dex.io/localstore.js
104.26.9.169200 OK 519 B URL HTTP/1.1 script.4dex.io/localstore.js
IP 104.26.9.169:0
File type JSON data\012- HTML document, ASCII text, with very long lines (384), with no line terminators
Hash 552763ed5c6717314913b166dc17dd86
a95e978da32bcde407fdd9c44041645a5e6c2522
0bcdd9b620c133f147fb0b9c8879c6354f1dc513dbbed505b5bebebd98ddfa44
GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:36 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=1800
ETag: W/"922cffdd75f7192f75231d92684885aa"
Last-Modified: Wed, 23 Nov 2022 15:43:18 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 93668
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e0Fba1ibRx4m5O%2F8lUN08vZVLsAhUX43kbeVikQOd5POgauuFD7fwwo7xZ3HMzU4DLjbw%2FlcOxlIjisFDQx9kRg4FG4inTSIIol2YpVB6rDA2ks3jltSFxnaw%2BJE5eWh"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79443b256bb3b517-OSL
Content-Encoding: br
content.rollcall.com/wp-content/uploads/2021/03/GettyImages-1231216588.jpg?fit=1240,698
192.0.66.28200 OK 61 kB URL HTTP/2 content.rollcall.com/wp-content/uploads/2021/03/GettyImages-1231216588.jpg?fit=1240,698
IP 192.0.66.28:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x683, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6fdc5a074bde5029b2289616c6b07b92
877c5a29e389321f0c4801d116745ea4d4034bcf
e2f4ab8fc88b7deed837a4184b5d46e150195072531a609cc12d905e34242aaa
GET /wp-content/uploads/2021/03/GettyImages-1231216588.jpg?fit=1240,698 HTTP/1.1
Host: content.rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:36 GMT
content-type: image/webp
content-length: 60952
last-modified: Sat, 04 Feb 2023 14:52:36 GMT
expires: Sun, 04 Feb 2024 14:52:36 GMT
etag: "6cb7742cc8365a7f"
vary: Accept
cache-control: max-age=2592000
x-rq: arn1 109 86 443
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
scripts.webcontentassessor.com/scripts/fce7c2653d47595c0c31803c901a013b1d184d6281d480a92e7f06a9f05c5d26
151.101.130.217200 OK 23 kB URL HTTP/2 scripts.webcontentassessor.com/scripts/fce7c2653d47595c0c31803c901a013b1d184d6281d480a92e7f06a9f05c5d26
IP 151.101.130.217:0
File type ASCII text, with very long lines (58031)
Hash 815222e997cf157b7a62e116c7d05609
062e26d2dbd4b489f4d7c8e5b71eba2c4bde4b55
7dbdb569d940523d8a43b55c9d088551cee79ef065989c55478ae0150ab022c7
GET /scripts/fce7c2653d47595c0c31803c901a013b1d184d6281d480a92e7f06a9f05c5d26 HTTP/1.1
Host: scripts.webcontentassessor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: KtYOq93X/7+J9rOz7AKBeNKKV8UoMDjb1OS0GJ4FjYMozqwtcCuWLOkmB7+/VtAnWy06Lsj/FJY=
x-amz-request-id: WH23E7N4HTNAWQKP
last-modified: Sat, 04 Feb 2023 14:03:58 GMT
etag: "d7a68bad775aa1cf8b966d3d1abe9419"
cache-control: max-age=3600,stale-if-error=86400,stale-while-revalidate=3600
x-amz-version-id: xWxq4Tu48rgn1PFSlQrojMbpFcqx3Qb4
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 14:52:36 GMT
via: 1.1 varnish
age: 2462
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675522356.076036,VS0,VE1
vary: Accept-Encoding
content-length: 22769
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1e84c8c978665b8bfc974474db61ec90
b361db6fda9b21452d3e274c2e3d3ae86a05e70e
ed60c966a5a4fae87167c82535be8084540a76776cd37a550ae625c7cad3a628
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6173
Cache-Control: max-age=169396
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:36 GMT
Etag: "63de4bcb-116"
Expires: Mon, 06 Feb 2023 13:55:52 GMT
Last-Modified: Sat, 04 Feb 2023 12:12:59 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 278
a.teads.tv/hb/bid-request
2.18.173.43200 OK 42 B URL HTTP/2 a.teads.tv/hb/bid-request
IP 2.18.173.43:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f646cd677a5283a600e1ca73c499877
979e9d54fa7ac635da0fb855a8ba40a0f74fe76e
d6e5f108622c778ca6bc5d246637b9a73585a670d46e15493b89f2915806174a
POST /hb/bid-request HTTP/1.1
Host: a.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2597
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64
content-encoding: gzip
expires: Sat, 04 Feb 2023 14:52:36 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 04 Feb 2023 14:52:36 GMT
content-length: 42
vary: Accept-Encoding
X-Firefox-Spdy: h2
ssl.p.jwpcdn.com/player/v/8.26.5/provider.hlsjs.js
151.101.194.114200 OK 113 kB URL HTTP/2 ssl.p.jwpcdn.com/player/v/8.26.5/provider.hlsjs.js
IP 151.101.194.114:0
File type ASCII text, with very long lines (65143)
Size 113 kB (112607 bytes)
Hash cf05518bf91cf1a3107d00af5c256de3
e14ef4408e7bb3b17866a453c42c93f345ff8993
fa2dc8745449b5943626d136bcd36df618f47a2b86334c9267abeb8f5e86e043
GET /player/v/8.26.5/provider.hlsjs.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000, immutable
last-modified: Thu, 15 Dec 2022 20:44:15 GMT
etag: "6a93d76950d84ee91e0c47324a5df8a8"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 14:52:36 GMT
via: 1.1 varnish
age: 4325835
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 333369
x-timer: S1675522356.295546,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 112607
X-Firefox-Spdy: h2
htlb.casalemedia.com/openrtb/pbjs?s=468244&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%22889c41787f2b7aa8%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.rollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F%22%2C%22domain%22%3A%22rollcall.com%22%2C%22publisher%22%3A%7B%22domain%22%3A%22rollcall.com%22%7D%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A0%2C%22msi%22%3A0%2C%22mfu%22%3A0%2C%22bu%22%3A9%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A9%2C%22ren%22%3Afalse%2C%22version%22%3A%227.12.0%22%2C%22userIds%22%3A%5B%5D%2C%22url%22%3A%22https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F%22%2C%22tmax%22%3A3000%2C%22syncsPerBidder%22%3A5%2C%22fpd%22%3Atrue%2C%22pbadslot%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22adunitcode%22%3A%227f19260a-af70-43c4-ad3e-de521922d5cb%22%2C%22divId%22%3A%227f19260a-af70-43c4-ad3e-de521922d5cb%22%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2289b0eb44e8a0adb%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468244%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fhorizontal%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fhorizontal%23027aae69-15b2-48fa-93fc-5faea502508f%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%2290d23d6fe3f8f6e8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%2340675ec4-185e-416f-bae1-18607db3ca47%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%2292312ad5b9140c68%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%23f3163ace-eada-4a0b-b881-89adfff5dd26%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%22945cf08f9d8bdf58%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%23054c5c93-1ad2-4106-89a8-011abd1da03f%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%2296e7b00933e1fbc8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%230f1a7d0d-b3c8-4619-92a9-363b25f548e6%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%2298a5b01af02c1d5%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%2334b09188-b250-47e2-abb7-63c5143da775%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%221003815b2921d35d%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%2322a9f216-98e0-4424-95b2-d6bdbb45f136%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%221028a819bd6eda98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%23cdb5307c-b2d2-41bc-95cd-a83346e40c5b%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%22104ed682f3431ab4%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%237f19260a-af70-43c4-ad3e-de521922d5cb%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22ascendeum.com%22%2C%22sid%22%3A%22asc94725%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%2C%22user%22%3A%7B%22eids%22%3A%5B%7B%22source%22%3A%22pubcid.org%22%2C%22uids%22%3A%5B%7B%22id%22%3A%228ef22155-bdc9-4966-bb45-bc7c8b9f4a89%22%7D%5D%7D%5D%7D%7D
172.64.154.237200 OK 38 B URL HTTP/2 htlb.casalemedia.com/openrtb/pbjs?s=468244&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%22889c41787f2b7aa8%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.rollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F%22%2C%22domain%22%3A%22rollcall.com%22%2C%22publisher%22%3A%7B%22domain%22%3A%22rollcall.com%22%7D%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A0%2C%22msi%22%3A0%2C%22mfu%22%3A0%2C%22bu%22%3A9%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A9%2C%22ren%22%3Afalse%2C%22version%22%3A%227.12.0%22%2C%22userIds%22%3A%5B%5D%2C%22url%22%3A%22https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F%22%2C%22tmax%22%3A3000%2C%22syncsPerBidder%22%3A5%2C%22fpd%22%3Atrue%2C%22pbadslot%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22adunitcode%22%3A%227f19260a-af70-43c4-ad3e-de521922d5cb%22%2C%22divId%22%3A%227f19260a-af70-43c4-ad3e-de521922d5cb%22%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2289b0eb44e8a0adb%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468244%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fhorizontal%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fhorizontal%23027aae69-15b2-48fa-93fc-5faea502508f%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%2290d23d6fe3f8f6e8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%2340675ec4-185e-416f-bae1-18607db3ca47%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%2292312ad5b9140c68%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%23f3163ace-eada-4a0b-b881-89adfff5dd26%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%22945cf08f9d8bdf58%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%23054c5c93-1ad2-4106-89a8-011abd1da03f%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%2296e7b00933e1fbc8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%230f1a7d0d-b3c8-4619-92a9-363b25f548e6%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%2298a5b01af02c1d5%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%2334b09188-b250-47e2-abb7-63c5143da775%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%221003815b2921d35d%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%2322a9f216-98e0-4424-95b2-d6bdbb45f136%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%221028a819bd6eda98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%23cdb5307c-b2d2-41bc-95cd-a83346e40c5b%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%22104ed682f3431ab4%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%237f19260a-af70-43c4-ad3e-de521922d5cb%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22ascendeum.com%22%2C%22sid%22%3A%22asc94725%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%2C%22user%22%3A%7B%22eids%22%3A%5B%7B%22source%22%3A%22pubcid.org%22%2C%22uids%22%3A%5B%7B%22id%22%3A%228ef22155-bdc9-4966-bb45-bc7c8b9f4a89%22%7D%5D%7D%5D%7D%7D
IP 172.64.154.237:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ce3a6157faa5d544619838bdbe7c0a1b
bbd1b823382fdd1c37d3df7bd46df3bf61514b17
d806b6a81eed906022c1ba7695f1a477b1259f6a94209ab1435cb9de4edc10ed
GET /openrtb/pbjs?s=468244&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%22889c41787f2b7aa8%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.rollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F%22%2C%22domain%22%3A%22rollcall.com%22%2C%22publisher%22%3A%7B%22domain%22%3A%22rollcall.com%22%7D%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A0%2C%22msi%22%3A0%2C%22mfu%22%3A0%2C%22bu%22%3A9%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A9%2C%22ren%22%3Afalse%2C%22version%22%3A%227.12.0%22%2C%22userIds%22%3A%5B%5D%2C%22url%22%3A%22https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F%22%2C%22tmax%22%3A3000%2C%22syncsPerBidder%22%3A5%2C%22fpd%22%3Atrue%2C%22pbadslot%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22adunitcode%22%3A%227f19260a-af70-43c4-ad3e-de521922d5cb%22%2C%22divId%22%3A%227f19260a-af70-43c4-ad3e-de521922d5cb%22%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2289b0eb44e8a0adb%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468244%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fhorizontal%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fhorizontal%23027aae69-15b2-48fa-93fc-5faea502508f%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%2290d23d6fe3f8f6e8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%2340675ec4-185e-416f-bae1-18607db3ca47%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%2292312ad5b9140c68%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%23f3163ace-eada-4a0b-b881-89adfff5dd26%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%22945cf08f9d8bdf58%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%23054c5c93-1ad2-4106-89a8-011abd1da03f%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%2296e7b00933e1fbc8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%230f1a7d0d-b3c8-4619-92a9-363b25f548e6%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%2298a5b01af02c1d5%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%2334b09188-b250-47e2-abb7-63c5143da775%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%221003815b2921d35d%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%2322a9f216-98e0-4424-95b2-d6bdbb45f136%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%221028a819bd6eda98%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%23cdb5307c-b2d2-41bc-95cd-a83346e40c5b%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%2C%7B%22id%22%3A%22104ed682f3431ab4%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A728%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22728x90%22%2C%22fl%22%3A%22p%22%7D%7D%2C%7B%22w%22%3A300%2C%22h%22%3A250%2C%22ext%22%3A%7B%22siteID%22%3A%22468246%22%2C%22sid%22%3A%22300x250%22%2C%22fl%22%3A%22p%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22dfp_ad_unit_code%22%3A%22%2F4218%2Frollcall%2Fstory%22%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%237f19260a-af70-43c4-ad3e-de521922d5cb%22%7D%2C%22bidfloor%22%3A0.0105%2C%22bidfloorcur%22%3A%22USD%22%7D%5D%2C%22at%22%3A1%2C%22source%22%3A%7B%22ext%22%3A%7B%22schain%22%3A%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22ascendeum.com%22%2C%22sid%22%3A%22asc94725%22%2C%22hp%22%3A1%7D%5D%7D%7D%7D%2C%22user%22%3A%7B%22eids%22%3A%5B%7B%22source%22%3A%22pubcid.org%22%2C%22uids%22%3A%5B%7B%22id%22%3A%228ef22155-bdc9-4966-bb45-bc7c8b9f4a89%22%7D%5D%7D%5D%7D%7D HTTP/1.1
Host: htlb.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:36 GMT
content-type: application/json
content-length: 38
cf-ray: 79443b263f1db4fd-OSL
access-control-allow-origin: https://rollcall.com
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DxwdZjq2GyZ8gIIHeX5rrWztVbt%2BW56WrkCS5kb27T3Qt2Iz3xz4334JnOG2Vjvz6TGoGz%2FViGIi4Q2LBitCap3vbhYB%2FSJB0VVz3Tglw%2FlLrwElIc%2FHJOb%2BP8sPyp9WFn82Quen"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 07f0c729269172b875f325d643e6e4c3
ec1367c60d1a6c21ea52cb60338294079aebe703
a398e4c6d7b175e1e459df88953a82baa1665383e0183edb05e5868a06e49fff
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5934
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:36 GMT
Last-Modified: Sat, 04 Feb 2023 13:13:42 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 27ce914bad3a60d980c23e19ae639690
270acbd8d798698216b3c48f0e09e0a2d8576836
d5ebe8ba92a47d866879d7a7ab736b586ff458f57e81552255eb423d2eb6719a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3857
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:36 GMT
Last-Modified: Sat, 04 Feb 2023 13:48:19 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e825fa17a623e7dfc3a144c1fbefb7fe
50d637cac8808b59196ff18040db1369cad9d51e
dfe2a451b1389c328ed0867dd6cff4fcec3f17c5444d206c902956792aa721a8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DFE2A451B1389C328ED0867DD6CFF4FCEC3F17C5444D206C902956792AA721A8"
Last-Modified: Thu, 02 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15688
Expires: Sat, 04 Feb 2023 19:14:04 GMT
Date: Sat, 04 Feb 2023 14:52:36 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 17b154551d0d62dde5d62de38fa46d8a
3468762be6e127f7641c3409e0ca8a567725e2b6
0dd480ace544fcda0d1504940cab79895ef63d8d17132c8d8b3be6edf07d93b5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 297
Cache-Control: max-age=139025
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:36 GMT
Etag: "63ddec1c-139"
Expires: Mon, 06 Feb 2023 05:29:41 GMT
Last-Modified: Sat, 04 Feb 2023 05:24:44 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
prebid.a-mo.net/a/c
147.75.85.234204 No Content 0 B IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2820
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: max-age=0, private, must-revalidate
date: Sat, 04 Feb 2023 14:52:36 GMT
server: envoy
vary: origin, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 2
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3e178f25484b9c2307527919bfb8aea8
83a718cabf0550dbd7d2b1ed0f0d0ac655b23cfa
9915867ec4478f815bf5ffb66715c22ab5cd561833d3a1ffe141b31246235723
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2843
Cache-Control: max-age=108091
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:36 GMT
Etag: "63dd6954-1d7"
Expires: Sun, 05 Feb 2023 20:54:07 GMT
Last-Modified: Fri, 03 Feb 2023 20:06:44 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1e84c8c978665b8bfc974474db61ec90
b361db6fda9b21452d3e274c2e3d3ae86a05e70e
ed60c966a5a4fae87167c82535be8084540a76776cd37a550ae625c7cad3a628
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6173
Cache-Control: max-age=169396
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:36 GMT
Etag: "63de4bcb-116"
Expires: Mon, 06 Feb 2023 13:55:52 GMT
Last-Modified: Sat, 04 Feb 2023 12:12:59 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 17b154551d0d62dde5d62de38fa46d8a
3468762be6e127f7641c3409e0ca8a567725e2b6
0dd480ace544fcda0d1504940cab79895ef63d8d17132c8d8b3be6edf07d93b5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 297
Cache-Control: max-age=139025
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:36 GMT
Etag: "63ddec1c-139"
Expires: Mon, 06 Feb 2023 05:29:41 GMT
Last-Modified: Sat, 04 Feb 2023 05:24:44 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 517
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:36 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
script.4dex.io/adagio.js
104.26.9.169200 OK 23 kB IP 104.26.9.169:0
File type ASCII text, with very long lines (65354)
Hash 532a99fc0eb7b2c50a6bb0e5238b8dbb
d84157eb7e55c39d52ba5dde6e5bd4666f596e71
e6fa5d38f82f6bebf5dba12f2e84db1383827936fe077374593c6285f94e784c
GET /adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Origin: https://rollcall.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:36 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
x-amz-id-2: BoVZac/Y8QzLEP9oHtRNuwOtAtm/hd5Sax7qPMrkCC7xNlm63dhfGppHMfyjP4lenCbmyG+fSW4=
x-amz-request-id: 0DFADWPE5Q3EMYM8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Max-Age: 3000
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
Last-Modified: Tue, 22 Nov 2022 09:44:15 GMT
ETag: W/"c56b6332dacf72f135afcd153ae22448"
Cache-Control: public, max-age=1800
CF-Cache-Status: HIT
Age: 1053282
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K1I3Wo51K%2BqAAo9IsUXur4iJOyIO2T40svxkFK5IEj7mfnyCvg7rBc0RuexkrOKQhRPOyKmvIBoCZAXoSR2IkDGG8mWgd%2Ftj9c%2FY4f73zoZLH1m3M%2FTLPQXMHvQJQMQy"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79443b27f989b500-OSL
Content-Encoding: br
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 517
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:36 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prebid.adnxs.com/pbs/v1/openrtb2/auction
185.89.208.11404 Not Found 169 B URL HTTP/1.1 prebid.adnxs.com/pbs/v1/openrtb2/auction
IP 185.89.208.11:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3f6936301e7c9e2321344ac6d07b5ecd
3db16dba9d572c4d8492d586ee8f5db86a615f73
855107c674a4e3f3e561ba83eee21fe89bb70ee7bb70596d69235faad2bef6ea
POST /pbs/v1/openrtb2/auction HTTP/1.1
Host: prebid.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 7052
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 14:52:36 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 517
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:35 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 559e28226cae3d9dcc05a4b3b2397e9d
9554456b30a6948aceb7102906e93342907b065f
13c46ddee7d04c6128ab27034d24127c18bb40c5a053da4f641209eb9f693445
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=170237
Date: Sat, 04 Feb 2023 14:52:36 GMT
Etag: "63de5723-1d7"
Expires: Mon, 06 Feb 2023 14:09:53 GMT
Last-Modified: Sat, 04 Feb 2023 13:01:23 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yUAX1GdSPbdDHIsp94AJqXkV4J5QO7D9c8p83HkWf-d_NyVV_t1ZRg==
Age: 4110
entitlements.jwplayer.com/j2tLrjquEemtRmLYmIDE3g.json
152.199.22.243200 OK 80 B URL HTTP/2 entitlements.jwplayer.com/j2tLrjquEemtRmLYmIDE3g.json
IP 152.199.22.243:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c59fb9d2ff3c05f2e52eb2dc9b4ccc57
c0aa3b5d7b8e9aeca06a78c22eab4e542e89d0a4
8c98bb73a321301e2a1bb5643045d5204af1f46f4851145020d6a5edb3e1b6ea
GET /j2tLrjquEemtRmLYmIDE3g.json HTTP/1.1
Host: entitlements.jwplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: *
cache-control: max-age=1800, s-maxage=19620
content-type: application/json
date: Sat, 04 Feb 2023 14:52:36 GMT
server: nginx
vary: Accept-Encoding
content-length: 80
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 516
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:35 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash dcca277e579ea0b6e23eac892c0db099
2311d9e533d1af6f3ef6c966c0b190833c4ad2b3
b73668b7c2a9d7a51fc633e8ca3c52dea49ea4f674a461c17c1bd57d6d874391
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6568
Cache-Control: max-age=94175
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:36 GMT
Etag: "63dd246b-117"
Expires: Sun, 05 Feb 2023 17:02:11 GMT
Last-Modified: Fri, 03 Feb 2023 15:12:43 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 516
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:36 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 481 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (860), with no line terminators
Hash e55262527e06cdc2b334e804533288ad
d24586b968f66e62913fac590a2b79f918579fea
66209aec0d7ec4d1be0bc53ee51efbdf8a3069d011003f9484c9ed6a164ea2fd
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 516
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:36 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
vs=525789=5308732; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
pid=2618120383686491350; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638111191564752136&o=1; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ib.adnxs.com/ut/v3/prebid
37.252.171.85200 OK 353 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.171.85:0
File type JSON data\012- , ASCII text, with very long lines (1064), with no line terminators
Hash b35732ea0df50d0d80127383731c571d
58330bc232507e33c044d9d8b3a598312ef8ef8c
ec46906de2f6875e7a7f624cecf1d8f3679fb3fe29385fe5c07c66f2a0ed0b86
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3362
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 14:52:36 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://rollcall.com
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: fb545c09-cea3-4ff0-b8f8-e1c1bd581a1d
Set-Cookie: icu=ChgI4s5KEAoYASABKAEwtOL5ngY4AUABSAEQtOL5ngYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 14:52:36 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=6483222791329625144; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 14:52:36 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
Content-Encoding: gzip
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 7eaed979585f3987da06c68aa7297696
a54674023fcf2f3ad9317301d543e7102e4544fb
715b15d7699f9a6e45feaf25de37ae05017311651f36383ba69d395baa510a6c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 14:52:36 GMT
Last-Modified: Sat, 04 Feb 2023 14:20:35 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9xaf6mzd-g_KrUS9v3QsulvUVps7Dn1IjnqHzIzV0gBeorDRuo0eDw==
Age: 1921
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 420 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (667), with no line terminators
Hash 7d37b16786f577b1d5c62753de56412d
189f34af35de74ebd5090728976fd981d5d1dbf6
92619196dbb5a161af9b8c891761b34df43fdfcf84d1c339f433b3b467c76c4d
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 517
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:36 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
vs=525789=5308732; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
pid=7172562957733706832; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638111191565000891&o=1; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 507 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (963), with no line terminators
Hash 51bbbe2b340020490c69be6af0c8b32d
09faf634af6f0bacae33f2df6c5a20a3c4b23a0b
7378f62a9b3f3a011c2a6876556b3d98aa372073bb94d78666e3cf04da231974
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 498
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:35 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
vs=525789=5308732; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
pid=131521442437643381; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638111191565146947&o=1; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 605 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1088), with no line terminators
Hash 2d61b0910eeac75ad116a5d823f7f26b
2bab20191a19c37bed4ef18f19f002ee6d8ef922
74c6dd741de52bf766c5f7a2d02542dd922b472e35eff5e07a6c125e4aeb1ae9
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 516
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:35 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
vs=525789=5308732; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
pid=7040634649165937835; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638111191565218293&o=1; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 514 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1008), with no line terminators
Hash 01ff3586bbf92b14dda6ab241582c373
0527496cf7df403cafc318b02dc5ea6e1ff864fb
b9b6966462f944050e8cf5272308cf549f2bb986315765c7e17e7444bf3b7b5f
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 517
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:36 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
vs=525789=5308732; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
pid=4520622477261913334; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638111191565064626&o=1; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 517
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:36 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
tlx.3lift.com/header/auction?lib=prebid&v=7.12.0&referrer=https%3A%2F%2Fwww.rollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&tmax=2000
3.122.141.196200 OK 19 B URL HTTP/2 tlx.3lift.com/header/auction?lib=prebid&v=7.12.0&referrer=https%3A%2F%2Fwww.rollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&tmax=2000
IP 3.122.141.196:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a548f7b55db665b1df71a33a2bee47a7
4f88e5b6a18226d7207f1458b0b83e428dbf9898
0535c3bb3a17e4ac0fb7d29214d2181275662129dc2bdd2a89c35934e9fc5ba5
POST /header/auction?lib=prebid&v=7.12.0&referrer=https%3A%2F%2Fwww.rollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&tmax=2000 HTTP/1.1
Host: tlx.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2706
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:36 GMT
content-type: application/json; charset=utf-8
content-length: 19
cache-control: no-cache, no-store, must-revalidate
expires: Thu, 15 Oct 1992 20:10:00 GMT
pragma: no-cache
x-xss-protection: 0
accept-ch: sec-ch-ect,user-agent,sec-ch-downlink,sec-ch-ua-mobile,sec-ch-save-data,sec-ch-device-memory,sec-ch-dpr,sec-ch-ua-full-version,sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-viewport-width,sec-ch-ua-platform,sec-ch-viewport-height,sec-ch-rtt,sec-ch-ua-arch,sec-ch-ua,sec-ch-ua-bitness,sec-ch-prefers-color-scheme,sec-ch-width
access-control-allow-origin: https://rollcall.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 517
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:36 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.189.112204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.189.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 4088
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache, no-store, must-revalidate
date: Sat, 04 Feb 2023 14:52:35 GMT
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 416 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (744), with no line terminators
Hash 8963f8f4b5ab5df0f06ca010e927b0d1
320eb9d17102629ae9b78adb45cf039b77c0f5eb
a0889548ca8f7983156ae918952776a11e1fec326952e16480f1d4da0189a758
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 516
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:35 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
vs=525789=5308732; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
pid=7075916529897290801; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638111191566029230&o=1; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 445 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (789), with no line terminators
Hash 62265817f8745c048157744bcf4fbe81
c545be21c0221ddb85936cc8531fb83b9a581e2d
645393c72aba3fb5f35e147980def74ab59d7b3688960a5c1e850290bcf208bf
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 516
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:36 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
vs=525789=5308732; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
pid=6219554468310531096; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638111191566202525&o=1; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 571 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1007), with no line terminators
Hash 75a50a02e0f59b390850a71624e852b7
8ed0aca3b7932e1f1bc827860e12db03ed4f59c5
b8265c577658017c71463be2242fa8e02eb478576f58937f5196e1310020485a
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 516
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:36 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
vs=525789=5308732; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
pid=1218733864425864215; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638111191566208881&o=1; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 521 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (963), with no line terminators
Hash cfe6ef3bcdafa4963967b73c2b0bb48c
1fc5ef75cef39b90ef130ebf806668ed2e9a9dbe
cac1bc25b967905d604f3e37f00d9dd9aefb55a89fb6245d09d7a127238dec07
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 517
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:35 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
vs=525789=5308732; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
pid=4663544184120523839; expires=Sun, 04 Feb 2024 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638111191566291360&o=1; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Sun, 05 Feb 2023 14:52:36 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg.smartadserver.com/prebid/v1
185.86.138.123200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.123:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 516
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Sat, 04 Feb 2023 14:52:36 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ads.yieldmo.com/exchange/prebid?pbav=7.12.0&p=%5B%7B%22placement_id%22%3A%22027aae69-15b2-48fa-93fc-5faea502508f%22%2C%22callback_id%22%3A%221178cefc08a536168%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fhorizontal%22%7D%2C%7B%22placement_id%22%3A%2240675ec4-185e-416f-bae1-18607db3ca47%22%2C%22callback_id%22%3A%22118771e8ae594921%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%22f3163ace-eada-4a0b-b881-89adfff5dd26%22%2C%22callback_id%22%3A%22119a5862eac52645%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%22054c5c93-1ad2-4106-89a8-011abd1da03f%22%2C%22callback_id%22%3A%221207fb4dbaee29c%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%220f1a7d0d-b3c8-4619-92a9-363b25f548e6%22%2C%22callback_id%22%3A%22121811b3a2d0ab1b%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%2234b09188-b250-47e2-abb7-63c5143da775%22%2C%22callback_id%22%3A%221222b73807e842038%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%2222a9f216-98e0-4424-95b2-d6bdbb45f136%22%2C%22callback_id%22%3A%22123c03ca59d8ff55%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%22cdb5307c-b2d2-41bc-95cd-a83346e40c5b%22%2C%22callback_id%22%3A%22124d2907097e2ee4%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%227f19260a-af70-43c4-ad3e-de521922d5cb%22%2C%22callback_id%22%3A%22125c26b7c9d9f36f%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%5D&page_url=https%3A%2F%2Fwww.rollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&bust=1675522392118&dnt=false&description=U.S.%20manufacturers%20say%20they%20have%20enough%20high-filtration%20respirators%20like%20N95s%20in%20their%20warehouses%20for%20every%20American%20adult.&userConsent=%7B%22gdprApplies%22%3A%22%22%2C%22cmp%22%3A%22%22%7D&us_privacy=&pr=&scrd=1&title=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call&w=1280&h=939&pubcid=8ef22155-bdc9-4966-bb45-bc7c8b9f4a89&schain=%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22ascendeum.com%22%2C%22sid%22%3A%22asc94725%22%2C%22hp%22%3A1%7D%5D%7D&eids=%5B%7B%22source%22%3A%22pubcid.org%22%2C%22uids%22%3A%5B%7B%22id%22%3A%228ef22155-bdc9-4966-bb45-bc7c8b9f4a89%22%2C%22atype%22%3A1%7D%5D%7D%5D
52.30.8.210204 No Content 0 B URL HTTP/2 ads.yieldmo.com/exchange/prebid?pbav=7.12.0&p=%5B%7B%22placement_id%22%3A%22027aae69-15b2-48fa-93fc-5faea502508f%22%2C%22callback_id%22%3A%221178cefc08a536168%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fhorizontal%22%7D%2C%7B%22placement_id%22%3A%2240675ec4-185e-416f-bae1-18607db3ca47%22%2C%22callback_id%22%3A%22118771e8ae594921%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%22f3163ace-eada-4a0b-b881-89adfff5dd26%22%2C%22callback_id%22%3A%22119a5862eac52645%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%22054c5c93-1ad2-4106-89a8-011abd1da03f%22%2C%22callback_id%22%3A%221207fb4dbaee29c%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%220f1a7d0d-b3c8-4619-92a9-363b25f548e6%22%2C%22callback_id%22%3A%22121811b3a2d0ab1b%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%2234b09188-b250-47e2-abb7-63c5143da775%22%2C%22callback_id%22%3A%221222b73807e842038%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%2222a9f216-98e0-4424-95b2-d6bdbb45f136%22%2C%22callback_id%22%3A%22123c03ca59d8ff55%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%22cdb5307c-b2d2-41bc-95cd-a83346e40c5b%22%2C%22callback_id%22%3A%22124d2907097e2ee4%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%227f19260a-af70-43c4-ad3e-de521922d5cb%22%2C%22callback_id%22%3A%22125c26b7c9d9f36f%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%5D&page_url=https%3A%2F%2Fwww.rollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&bust=1675522392118&dnt=false&description=U.S.%20manufacturers%20say%20they%20have%20enough%20high-filtration%20respirators%20like%20N95s%20in%20their%20warehouses%20for%20every%20American%20adult.&userConsent=%7B%22gdprApplies%22%3A%22%22%2C%22cmp%22%3A%22%22%7D&us_privacy=&pr=&scrd=1&title=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call&w=1280&h=939&pubcid=8ef22155-bdc9-4966-bb45-bc7c8b9f4a89&schain=%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22ascendeum.com%22%2C%22sid%22%3A%22asc94725%22%2C%22hp%22%3A1%7D%5D%7D&eids=%5B%7B%22source%22%3A%22pubcid.org%22%2C%22uids%22%3A%5B%7B%22id%22%3A%228ef22155-bdc9-4966-bb45-bc7c8b9f4a89%22%2C%22atype%22%3A1%7D%5D%7D%5D
IP 52.30.8.210:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/prebid?pbav=7.12.0&p=%5B%7B%22placement_id%22%3A%22027aae69-15b2-48fa-93fc-5faea502508f%22%2C%22callback_id%22%3A%221178cefc08a536168%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fhorizontal%22%7D%2C%7B%22placement_id%22%3A%2240675ec4-185e-416f-bae1-18607db3ca47%22%2C%22callback_id%22%3A%22118771e8ae594921%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%22f3163ace-eada-4a0b-b881-89adfff5dd26%22%2C%22callback_id%22%3A%22119a5862eac52645%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%22054c5c93-1ad2-4106-89a8-011abd1da03f%22%2C%22callback_id%22%3A%221207fb4dbaee29c%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%220f1a7d0d-b3c8-4619-92a9-363b25f548e6%22%2C%22callback_id%22%3A%22121811b3a2d0ab1b%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%2234b09188-b250-47e2-abb7-63c5143da775%22%2C%22callback_id%22%3A%221222b73807e842038%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%2222a9f216-98e0-4424-95b2-d6bdbb45f136%22%2C%22callback_id%22%3A%22123c03ca59d8ff55%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%22cdb5307c-b2d2-41bc-95cd-a83346e40c5b%22%2C%22callback_id%22%3A%22124d2907097e2ee4%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22placement_id%22%3A%227f19260a-af70-43c4-ad3e-de521922d5cb%22%2C%22callback_id%22%3A%22125c26b7c9d9f36f%22%2C%22sizes%22%3A%5B%5B728%2C90%5D%2C%5B300%2C250%5D%5D%2C%22ym_placement_id%22%3A%222972763299814253316%22%2C%22bidFloor%22%3A0.01%2C%22gpid%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%5D&page_url=https%3A%2F%2Fwww.rollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&bust=1675522392118&dnt=false&description=U.S.%20manufacturers%20say%20they%20have%20enough%20high-filtration%20respirators%20like%20N95s%20in%20their%20warehouses%20for%20every%20American%20adult.&userConsent=%7B%22gdprApplies%22%3A%22%22%2C%22cmp%22%3A%22%22%7D&us_privacy=&pr=&scrd=1&title=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call&w=1280&h=939&pubcid=8ef22155-bdc9-4966-bb45-bc7c8b9f4a89&schain=%7B%22ver%22%3A%221.0%22%2C%22complete%22%3A1%2C%22nodes%22%3A%5B%7B%22asi%22%3A%22ascendeum.com%22%2C%22sid%22%3A%22asc94725%22%2C%22hp%22%3A1%7D%5D%7D&eids=%5B%7B%22source%22%3A%22pubcid.org%22%2C%22uids%22%3A%5B%7B%22id%22%3A%228ef22155-bdc9-4966-bb45-bc7c8b9f4a89%22%2C%22atype%22%3A1%7D%5D%7D%5D HTTP/1.1
Host: ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 14:52:36 GMT
x-robots-tag: none,NOINDEX,NOFOLLOW
access-control-allow-origin: https://rollcall.com
access-control-allow-credentials: true
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: POST, GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 482952c319f6b341719e70726729734d
d562869196fe45ede7cf9d7b83643c020eae68b2
052ed0f05af6fa66b55a1e883536b6fc2743d32d56aa4b7c58f0b8202b67ee9b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2955
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:36 GMT
Last-Modified: Sat, 04 Feb 2023 14:03:21 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 482952c319f6b341719e70726729734d
d562869196fe45ede7cf9d7b83643c020eae68b2
052ed0f05af6fa66b55a1e883536b6fc2743d32d56aa4b7c58f0b8202b67ee9b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2190
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:36 GMT
Last-Modified: Sat, 04 Feb 2023 14:16:06 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 2521dc6dc015025c26c7a1b08b3060a1
f5c7abc50c9229a4b198a5c0d5f6dfa8ac528b9f
6671bc387c8011ec55a9d023502189b997adeb18fc2f199747dec7d688f85bd3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1635
Cache-Control: max-age=169872
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:37 GMT
Etag: "63de5f62-139"
Expires: Mon, 06 Feb 2023 14:03:49 GMT
Last-Modified: Sat, 04 Feb 2023 13:36:34 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Frollcall.com&pubid=8f781d25-b703-4fd5-9ae5-ec7750ede51b
54.230.111.210204 No Content 0 B URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Frollcall.com&pubid=8f781d25-b703-4fd5-9ae5-ec7750ede51b
IP 54.230.111.210:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn/prod/config?src=600&u=https%3A%2F%2Frollcall.com&pubid=8f781d25-b703-4fd5-9ae5-ec7750ede51b HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://rollcall.com
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Sat, 04 Feb 2023 13:23:21 GMT
server: Server
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ICWMxg3b6mooXOqQTBRsPt0ms9drhuMOXlt71G7EcbqQ2nAZzINhGA==
age: 5356
X-Firefox-Spdy: h2
rollcall.com/static/media/favicon.dfdc3285.ico
192.0.66.176200 OK 1.7 kB URL HTTP/2 rollcall.com/static/media/favicon.dfdc3285.ico
IP 192.0.66.176:0
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 00df3dd2d8fcda5518a4fc309c9574a0
f6ba406d16580558577bc6820f3710a8a96eb2ab
52a3dfb995823cbdca89b2d4754bf61523ff0e69f21a362ccf7438971ceb730e
GET /static/media/favicon.dfdc3285.ico HTTP/1.1
Host: rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/2021/03/01/covid-19-n95-respirator-masks/
Cookie: _uc_referrer=direct; _pbjs_userid_consent_data=3524755945110770; cto_bundle=uUSDzl93RXFmeXZUd0kzM05hbFZ5TGdOSmtvTWpoVDVuRiUyRlZxYU5MeHZLNzZOdUJtZUk0aXpNb0RuU2U0ck9PYWV6TzdvYnVvb3NtalFGJTJCRWpUcXklMkI3b0dIWmU3NjA4c3BHdE45S0Q4a2ZQbkpVNXZhTHhEQk54N0JXJTJGRlA4U2VWVnJG; cto_bidid=qiYmIl9Tb3NIemhlOFA1MFZ6TE5zM0dEVm0yMkM3UFFxdGdIeHkxUyUyRkdSN3ZIZEYxMGkzTGhUMmFjSEoxMVMwbXhPJTJCcUVySHBDdWc1b08ydDY2VyUyQkpJSXNvZyUzRCUzRA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:37 GMT
content-type: image/x-icon
content-length: 1738
x-powered-by: Express
last-modified: Mon, 05 Dec 2022 17:48:54 GMT
etag: W/"3c2e-184e367af70"
x-rq: arn2 0 2 9980
content-encoding: gzip
age: 5338
x-cache: hit
vary: Accept-Encoding
accept-ranges: bytes
expires: Sun, 04 Feb 2024 14:52:37 GMT
cache-control: max-age=31536000
X-Firefox-Spdy: h2
z.moatads.com/cqrollcalldfpprebidheader69757261971/moatheader.js
2.18.173.140200 OK 0 B URL HTTP/2 z.moatads.com/cqrollcalldfpprebidheader69757261971/moatheader.js
IP 2.18.173.140:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cqrollcalldfpprebidheader69757261971/moatheader.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: igWo2rNMZM4Ma5Wq7qaik3ky5HoloG3AIVJD6L5BOaMtpmVo91bLR5VHykryC/5RyHUh8OmkgN8=
x-amz-request-id: EA08ADF9AE62ABBC
last-modified: Wed, 10 Feb 2021 09:45:47 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
accept-ranges: bytes
content-type: application/x-javascript
content-length: 0
server: AmazonS3
unused62: 8096267
cache-control: max-age=4740
date: Sat, 04 Feb 2023 14:52:37 GMT
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rollcall.com%2F&domain=rollcall.com&cw=1&lsw=1
178.250.0.157200 OK 22 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rollcall.com%2F&domain=rollcall.com&cw=1&lsw=1
IP 178.250.0.157:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 91d4898f938e4920ac88f87453b33933
1bd4a04303c2501101656075ad8304e1a84eb91e
93ecc6762eafd376cbe2fd18250fa9f12c90f9a86b481430ef29ec40716d8f35
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rollcall.com%2F&domain=rollcall.com&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://rollcall.com/
Origin: https://rollcall.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:36 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://rollcall.com
server-processing-duration-in-ticks: 376061
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a3a67dba1b1b1f3ae766058d9cd538d7
9dc833327c3755593c077f703117f6187f4d3e97
b8990e3b7ba47804077dd1d5c3b3e05c8beec9a3288e3fa9e41680dc15045f0d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4790
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:37 GMT
Last-Modified: Sat, 04 Feb 2023 13:32:47 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
at.teads.tv/fpc?analytics_tag_id=PUB_21570&tfpvi=&gdpr_status=22&gdpr_reason=220&gdpr_consent=&ccpa_consent=&shared_ids=&sv=8480ba3&
2.18.173.43200 OK 56 B URL HTTP/2 at.teads.tv/fpc?analytics_tag_id=PUB_21570&tfpvi=&gdpr_status=22&gdpr_reason=220&gdpr_consent=&ccpa_consent=&shared_ids=&sv=8480ba3&
IP 2.18.173.43:0
File type ASCII text, with no line terminators
Hash 135e081f5e1ca8c4b97a5105522dcb87
3ace2004296773ca70e09dcdd6dc959cd8043aec
a187fb1219035ed044a1271f58c6972cf589b4e9326985b2679b723a0a5a669f
GET /fpc?analytics_tag_id=PUB_21570&tfpvi=&gdpr_status=22&gdpr_reason=220&gdpr_consent=&ccpa_consent=&shared_ids=&sv=8480ba3& HTTP/1.1
Host: at.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
content-length: 56
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
expires: Sat, 04 Feb 2023 14:52:37 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 04 Feb 2023 14:52:37 GMT
X-Firefox-Spdy: h2
c1.rfihub.net/js/tc.min.js
54.230.111.77200 OK 6.2 kB URL HTTP/2 c1.rfihub.net/js/tc.min.js
IP 54.230.111.77:0
File type C source, ASCII text, with very long lines (19497)
Hash ab5a2e3f2414c0a2b622e48c0b6da2fd
1a894787bde6cbf9b58d47b8f4245607420112ad
a5ef19cf7ca85f760c462ed2f228430c8d0a6d9daf3aa34894a5c42113cfdb8f
GET /js/tc.min.js HTTP/1.1
Host: c1.rfihub.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6162
date: Sat, 04 Feb 2023 14:36:58 GMT
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
cache-control: public, max-age=3600
expires: Sat, 04 Feb 2023 15:36:58 GMT
last-modified: Sat, 04 Feb 2023 14:36:48 GMT
content-encoding: gzip
server: Jetty(9.3.29.v20201019)
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: a_IMLco6O3HL3Crcr9hMQvrCTl3OTTtb5TYikzF9j5Zizy3vAPnPSA==
age: 939
X-Firefox-Spdy: h2
shb.richaudience.com/hb/
162.55.101.208200 OK 25 B IP 162.55.101.208:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 9c7d9862aa3faf34897c4e5719098495
367cb93477078a85579a8087aea194f0b1d440ee
161ede8fad84171abffa6c4f7db0c4618d6a4af48dd5e63be276938be1c59da4
POST /hb/ HTTP/1.1
Host: shb.richaudience.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 788
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.1
date: Sat, 04 Feb 2023 14:52:20 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: https://rollcall.com
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 04 Feb 2023 13:45:20 GMT
expires: Sat, 04 Feb 2023 15:45:20 GMT
cache-control: public, max-age=7200
age: 4037
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.revcontent.com/master/delivery.js
151.139.128.10200 OK 51 kB URL HTTP/2 assets.revcontent.com/master/delivery.js
IP 151.139.128.10:0
File type Unicode text, UTF-8 text, with very long lines (65054)
Hash 66b751d61d96e728b145a21ab1c89d6b
8674a20cbc4515079f7c400682ec2171639d7325
7f4ae0a65a2f6c74800175618fdb7fe358fdb02e4acc90f5339bd39c903d3626
GET /master/delivery.js HTTP/1.1
Host: assets.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:37 GMT
content-encoding: gzip
content-length: 50781
content-type: application/x-javascript
last-modified: Wed, 01 Feb 2023 18:56:37 GMT
accept-ranges: bytes
x-amz-id-2: 3VHKQ8XULGLuDkzWaSSby6E56nYQFAXIULu0xp/jV/IN+YmNHoRdCzIilvAWHcxXPAkXwxVPGio=
x-amz-request-id: 803T0MTEXYYBFSFP
etag: "9d57156b337efd69cd801d4a908fc13e"
cache-control: public,max-age=600
server: AmazonS3
x-hw: 1675522357.cds018.sk1.hn,1675522357.cds226.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: c1wJOlvftLdL1UzGdnnz9TO1JMtmfxbBqz6LZal7FBBLigpe1wyCE9P9JVrbvvt4uKG9Zx7qsDhm9vKypfPOoA==
content-length: 27843
x-fb-trip-id: 1904183273
date: Sat, 04 Feb 2023 14:52:37 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
151.101.244.157200 OK 28 kB URL HTTP/2 platform.twitter.com/widgets.js
IP 151.101.244.157:0
File type Unicode text, UTF-8 text, with very long lines (38752)
Hash e537bb9176ab0d49ccaa2baf56ba5cd4
1be6d53a34b7dbdd869b3e0680c1c75a2a490c63
ef1af552de1464ddb5c212464755232eee06f1595aadc1afb8ed1a2a6a8f57d4
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 21:41:51 GMT
cache-control: public, max-age=1800
content-type: application/javascript; charset=utf-8
etag: "9e99725b7a4cd730a934afba2a438bb5+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sat, 04 Feb 2023 14:52:37 GMT
x-served-by: cache-iad-kcgs7200031-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 27630
X-Firefox-Spdy: h2
shb.richaudience.com/hb/
162.55.101.208200 OK 496 B IP 162.55.101.208:0
ASN #24940 Hetzner Online GmbH
Hash fefd63fe5fdea9a92d2f86ca4a6ce2ab
455f906195b5e432f933caa0fb48b2d6a2bf8e57
93c8bb53e51e06a378aa440e0f89a3765255eb2f16448d2b23797d494906c172
POST /hb/ HTTP/1.1
Host: shb.richaudience.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 789
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.1
date: Sat, 04 Feb 2023 14:52:20 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: https://rollcall.com
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.244.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Sat, 04 Feb 2023 14:52:37 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410024-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/sdkloader/ima3.js
216.58.207.234200 OK 126 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 216.58.207.234:0
File type ASCII text, with very long lines (2846)
Size 126 kB (125826 bytes)
Hash 98b1fe69946e421b8ece280ad4995eed
e6e0b95673083dd5319db64472e9505964998bc0
3ce90bb62a4f3d7a503d1a819ce1b7016837a27c17065adb97c94680a7cd870a
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 125826
date: Sat, 04 Feb 2023 14:52:37 GMT
expires: Sat, 04 Feb 2023 14:52:37 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.tynt.com/rciv.js
172.64.151.83200 OK 6.2 kB IP 172.64.151.83:0
Hash f34e9087fd255d1c98c1328293135632
938ddc7536a311fee8e2bd2932757a2f62b2d1bc
be49fe954be48d39a8b7bf7cbe5174787fa441cf238870ea8ad8bc3ea3d1e0ee
GET /rciv.js HTTP/1.1
Host: cdn.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:37 GMT
content-type: application/javascript
last-modified: Tue, 10 Jan 2023 20:39:18 GMT
vary: Accept-Encoding
etag: W/"63bdccf6-3f9d"
content-encoding: gzip
cf-cache-status: HIT
age: 65322
expires: Tue, 07 Feb 2023 14:52:37 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 79443b2e1bfbfac4-OSL
X-Firefox-Spdy: h2
geo.privacymanager.io/
143.204.55.52200 OK 30 B IP 143.204.55.52:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c33fb7727ce1f2c66f8d6c6cedbb12b1
7273ce7651fd12a64db27321ad456dfc054d4d19
21b196f5566f8ec52ccd845bab462d53d96c014ed7a45e45f8a0d5551b8afdf7
GET / HTTP/1.1
Host: geo.privacymanager.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Origin: https://rollcall.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 30
date: Sat, 04 Feb 2023 01:18:13 GMT
x-amzn-requestid: eaead1dc-f74d-498a-afdd-6de8329b3e6b
access-control-allow-origin: *
access-control-allow-headers: Content-Type,Authorization,X-Amz-Date,X-Api-Key,X-Amz-Security-Token
x-amz-apigw-id: fyjNWHsHjoEFYLQ=
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
x-amzn-trace-id: Root=1-63ddb255-33fbb41c5c01c3895d894a8b;Sampled=0
via: 1.1 54fc556adf6e8c787574c6f132d70178.cloudfront.net (CloudFront), 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA56-P3, OSL50-C1
x-amz-cf-id: RlD7XjRgkjb1p8T-6ws05Sx9oVUg32LumyJqxyL4ffJbFMFtrv3CFw==
age: 48864
X-Firefox-Spdy: h2
secure.adnxs.com/seg?add=27772291&t=1
37.252.173.215307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/seg?add=27772291&t=1
IP 37.252.173.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /seg?add=27772291&t=1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 14:52:37 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd%3D27772291%26t%3D1
AN-X-Request-Uuid: c1c0cd96-018b-4445-9b6f-166d3239ecf4
Set-Cookie: uuid2=8336572172350470886; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 14:52:37 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash eeb9acbd4fa3681910d04b0a254dc2dc
d47edc09a9e1e75eed882ed1860e25fecf32d9e0
caa3322f9501880b4f0b462c7e512e11fdf091f8c0d7189948cd762a69f68040
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=138584
Date: Sat, 04 Feb 2023 14:52:37 GMT
Etag: "63dddb32-1d7"
Expires: Mon, 06 Feb 2023 05:22:21 GMT
Last-Modified: Sat, 04 Feb 2023 04:12:34 GMT
Server: ECS (bsa/EB16)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: C2RJAGhgr02unWz5Z8a42efyG1ulu5atj7S-B7IvQ-0Jbq-HDbwM_A==
Age: 4187
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash de88149c85daf1f2f8f183d16f581394
4b88639d92a9defef7e575ff50f00348d7a4fc91
5bcde8fa6ee36e3a745249b5a5d1c583b0b17e1bd37a3d5b83ce9255b818680d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&pid=RIAd3UeYdDoSJ&cb=0&ws=1280x939&v=23.127.1625&t=2000&slots=%5B%7B%22sd%22%3A%22027aae69-15b2-48fa-93fc-5faea502508f%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fhorizontal%22%7D%2C%7B%22sd%22%3A%2240675ec4-185e-416f-bae1-18607db3ca47%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%22f3163ace-eada-4a0b-b881-89adfff5dd26%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%22054c5c93-1ad2-4106-89a8-011abd1da03f%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%220f1a7d0d-b3c8-4619-92a9-363b25f548e6%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%2234b09188-b250-47e2-abb7-63c5143da775%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%2222a9f216-98e0-4424-95b2-d6bdbb45f136%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%22cdb5307c-b2d2-41bc-95cd-a83346e40c5b%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%227f19260a-af70-43c4-ad3e-de521922d5cb%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%5D&schain=1.0%2C1!ascendeum.com%2Casc94725%2C1%2C%2C%2C&pubid=8f781d25-b703-4fd5-9ae5-ec7750ede51b&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
54.230.241.131200 OK 186 B URL HTTP/2 aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&pid=RIAd3UeYdDoSJ&cb=0&ws=1280x939&v=23.127.1625&t=2000&slots=%5B%7B%22sd%22%3A%22027aae69-15b2-48fa-93fc-5faea502508f%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fhorizontal%22%7D%2C%7B%22sd%22%3A%2240675ec4-185e-416f-bae1-18607db3ca47%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%22f3163ace-eada-4a0b-b881-89adfff5dd26%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%22054c5c93-1ad2-4106-89a8-011abd1da03f%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%220f1a7d0d-b3c8-4619-92a9-363b25f548e6%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%2234b09188-b250-47e2-abb7-63c5143da775%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%2222a9f216-98e0-4424-95b2-d6bdbb45f136%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%22cdb5307c-b2d2-41bc-95cd-a83346e40c5b%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%227f19260a-af70-43c4-ad3e-de521922d5cb%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%5D&schain=1.0%2C1!ascendeum.com%2Casc94725%2C1%2C%2C%2C&pubid=8f781d25-b703-4fd5-9ae5-ec7750ede51b&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
IP 54.230.241.131:0
File type ASCII text, with no line terminators
Hash 70f2263c3f25488c8d325e66a3a81417
9a5955618c1a5ab347799075b783c42d392f4857
b18ceab974769cef264f1da4b8edade3a51e6f27571137983e3d7ae7aaa99604
GET /e/dtb/bid?src=600&u=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&pid=RIAd3UeYdDoSJ&cb=0&ws=1280x939&v=23.127.1625&t=2000&slots=%5B%7B%22sd%22%3A%22027aae69-15b2-48fa-93fc-5faea502508f%22%2C%22s%22%3A%5B%22728x90%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fhorizontal%22%7D%2C%7B%22sd%22%3A%2240675ec4-185e-416f-bae1-18607db3ca47%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%22f3163ace-eada-4a0b-b881-89adfff5dd26%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%22054c5c93-1ad2-4106-89a8-011abd1da03f%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%220f1a7d0d-b3c8-4619-92a9-363b25f548e6%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%2234b09188-b250-47e2-abb7-63c5143da775%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%2222a9f216-98e0-4424-95b2-d6bdbb45f136%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%22cdb5307c-b2d2-41bc-95cd-a83346e40c5b%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%2C%7B%22sd%22%3A%227f19260a-af70-43c4-ad3e-de521922d5cb%22%2C%22s%22%3A%5B%22728x90%22%2C%22300x250%22%5D%2C%22sn%22%3A%22%2F4218%2Frollcall%2Fstory%22%7D%5D&schain=1.0%2C1!ascendeum.com%2Casc94725%2C1%2C%2C%2C&pubid=8f781d25-b703-4fd5-9ae5-ec7750ede51b&gdprl=%7B%22status%22%3A%22no-cmp%22%7D HTTP/1.1
Host: aax-dtb-cf.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
content-length: 186
server: Server
date: Sat, 04 Feb 2023 14:52:37 GMT
x-amz-rid: 7JCEA3A37BKMMRPQCW26
access-control-allow-origin: https://rollcall.com
access-control-allow-credentials: true
timing-allow-origin: *
strict-transport-security: max-age=47474747; includeSubDomains; preload
vary: Accept-Encoding,User-Agent
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dkFZb8Ye8JBMdcEeFxvim6c6lLekbFURrtrlyIk_DQYc7BRDh6oP9w==
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=rollcall.com
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=rollcall.com
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=rollcall.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 04 Feb 2023 14:52:37 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=rollcall.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=rollcall.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=rollcall.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 04 Feb 2023 14:52:37 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash de88149c85daf1f2f8f183d16f581394
4b88639d92a9defef7e575ff50f00348d7a4fc91
5bcde8fa6ee36e3a745249b5a5d1c583b0b17e1bd37a3d5b83ce9255b818680d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b34cf18fb9f641ea228ac07b365a00c5
91a82b96a82b025cd4667b2dcad4fa7d9b2c8aa2
8bfeacbc458abe859dc97158dc5eacdd47b319084f0993352221ca3f16d86bb3
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1642
Cache-Control: max-age=126310
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:37 GMT
Etag: "63ddb531-1d7"
Expires: Mon, 06 Feb 2023 01:57:47 GMT
Last-Modified: Sat, 04 Feb 2023 01:30:25 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
tags.srv.stackadapt.com/events.js
54.237.31.137301 Moved Permanently 65 B URL HTTP/1.1 tags.srv.stackadapt.com/events.js
IP 54.237.31.137:0
File type HTML document, ASCII text
Hash f80e89783ec551e69632712d99fd2224
a760361995b52b09f655a2bb469d7dd464619692
c052ddf9a69031b36e27713dfc2ca1d3494de9e0436c5bb35d17d92dac2c61bd
GET /events.js HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
Date: Sat, 04 Feb 2023 14:52:37 GMT
Location: https://qvdt3feo.com/events.js
Content-Length: 65
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c7d887fc3e3b7a68b7872c76802085c0
eb26f820776e7d87a00489eb14f918e5f6945835
915e873e95d8f0276f4763e5596b03cac487f6f8a36c65577c6622fc8560d929
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Frollcall.com
151.101.244.157200 OK 105 kB URL HTTP/2 platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Frollcall.com
IP 151.101.244.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56166)
Size 105 kB (105435 bytes)
Hash b9e24937b9bed483feef94b5cdc39114
d17bb4230d4e6bc204041d6b7055ec4c51c7f77b
927e6f52902d207a572c6075acdc33bedab029a97ee7180538cf6799847a25a4
GET /widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Frollcall.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 21:41:13 GMT
cache-control: public, max-age=315360000
content-type: text/html; charset=utf-8
etag: "95e1b50b0c179aefb47b5b211bb347b5+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sat, 04 Feb 2023 14:52:37 GMT
x-served-by: cache-iad-kjyo7100116-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 105435
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/pwt/160835/4933/pwt.js
2.18.172.200200 OK 66 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/160835/4933/pwt.js
IP 2.18.172.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9a95a233f7d410d2345ac5fd81bbb422
b3dc384a7a4e794b32f10e7bfe2586c7846ec426
90e17497a7cd558c89eefb255f18b88c30246ca72bd42e9271753bfe6088af48
GET /AdServer/js/pwt/160835/4933/pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 20:34:20 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: application/javascript
content-length: 65523
cache-control: max-age=171427
expires: Mon, 06 Feb 2023 14:29:44 GMT
date: Sat, 04 Feb 2023 14:52:37 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 5c174b3f4c983118ecd9de4a2dc96665
29ec250da031d36b4be53fa7effe07c480c8f6e0
239582331d94d909aedb3e5fe60f3397940bd07d7b23daefceebc8472e428e25
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5889
Cache-Control: max-age=168008
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:37 GMT
Etag: "63de477d-138"
Expires: Mon, 06 Feb 2023 13:32:45 GMT
Last-Modified: Sat, 04 Feb 2023 11:54:37 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 312
2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
142.250.74.97200 OK 2.7 kB URL HTTP/2 2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: 2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Sat, 04 Feb 2023 14:52:37 GMT
expires: Sun, 04 Feb 2024 14:52:37 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
secure.adnxs.com/bounce?%2Fseg%3Fadd%3D27772291%26t%3D1
37.252.173.215200 OK 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fseg%3Fadd%3D27772291%26t%3D1
IP 37.252.173.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fseg%3Fadd%3D27772291%26t%3D1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 14:52:37 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 6d1577ac-ef8f-4a5d-b83a-08e12077b563
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2In<fUP9!!]tbP6j2F-XstGt!@E+v%'w=^; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 14:52:37 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ping.chartbeat.net/ping?h=video%40rollcall.com&g=46806&p=GrnuZCHr&i=N95%20masks%20are%20piling%20up%20as%20nurses%20reuse%20PPE&g0=Policy&g1=Emily%20Kopp&u=D26w1FD-IgdGC7maLS&t=DKBtZPd5Ly3_yl5QB0EWBwDJ2new&x=0&y=0&V=139&VS=JW&n=1&b=4286&r=&_vi=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call&_vp=rollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&_vh=rollcall.com&_pu=Ml2iBCHiGWdCoCeuK&_pt=CzublaDPuQUHC5dDxnDf0tG0C-59y7&_pr=&_vdd=rollcall.com&_vt=ct&_vs=s1&_vcs=0&_vbr=-1&_vvs=0.004&_vpt=-1&_vtn=https%3A%2F%2Fcdn.jwplayer.com%2Fv2%2Fmedia%2FGrnuZCHr%2Fposter.jpg%3Fwidth%3D720&_vaup=unkn&_vce=0&c=0&W=0&R=0&I=1&E=0&j=75&tz=0&_
18.213.167.233200 OK 43 B URL HTTP/2 ping.chartbeat.net/ping?h=video%40rollcall.com&g=46806&p=GrnuZCHr&i=N95%20masks%20are%20piling%20up%20as%20nurses%20reuse%20PPE&g0=Policy&g1=Emily%20Kopp&u=D26w1FD-IgdGC7maLS&t=DKBtZPd5Ly3_yl5QB0EWBwDJ2new&x=0&y=0&V=139&VS=JW&n=1&b=4286&r=&_vi=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call&_vp=rollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&_vh=rollcall.com&_pu=Ml2iBCHiGWdCoCeuK&_pt=CzublaDPuQUHC5dDxnDf0tG0C-59y7&_pr=&_vdd=rollcall.com&_vt=ct&_vs=s1&_vcs=0&_vbr=-1&_vvs=0.004&_vpt=-1&_vtn=https%3A%2F%2Fcdn.jwplayer.com%2Fv2%2Fmedia%2FGrnuZCHr%2Fposter.jpg%3Fwidth%3D720&_vaup=unkn&_vce=0&c=0&W=0&R=0&I=1&E=0&j=75&tz=0&_
IP 18.213.167.233:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /ping?h=video%40rollcall.com&g=46806&p=GrnuZCHr&i=N95%20masks%20are%20piling%20up%20as%20nurses%20reuse%20PPE&g0=Policy&g1=Emily%20Kopp&u=D26w1FD-IgdGC7maLS&t=DKBtZPd5Ly3_yl5QB0EWBwDJ2new&x=0&y=0&V=139&VS=JW&n=1&b=4286&r=&_vi=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call&_vp=rollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&_vh=rollcall.com&_pu=Ml2iBCHiGWdCoCeuK&_pt=CzublaDPuQUHC5dDxnDf0tG0C-59y7&_pr=&_vdd=rollcall.com&_vt=ct&_vs=s1&_vcs=0&_vbr=-1&_vvs=0.004&_vpt=-1&_vtn=https%3A%2F%2Fcdn.jwplayer.com%2Fv2%2Fmedia%2FGrnuZCHr%2Fposter.jpg%3Fwidth%3D720&_vaup=unkn&_vce=0&c=0&W=0&R=0&I=1&E=0&j=75&tz=0&_ HTTP/1.1
Host: ping.chartbeat.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:37 GMT
content-type: image/gif
content-length: 43
cross-origin-resource-policy: cross-origin
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash c5a5b27f7e331c519773ac3a328a2e6a
9b75c49941e71bdd0157a940608abd7848c23e18
e06ac803cdbadab5944ca0c8ea2bded5718c80717b785936052b21e7e0937494
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6177
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:37 GMT
Last-Modified: Sat, 04 Feb 2023 13:09:40 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
t.co/i/adsct?bci=3&eci=2&event_id=ba7ebc78-e5f8-4d86-8cf3-a7e8ad0ae530&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=d9473b89-1ea5-4214-a716-20f53da7cf2d&tw_document_href=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nvnxn&type=javascript&version=2.3.29
104.244.42.5200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=ba7ebc78-e5f8-4d86-8cf3-a7e8ad0ae530&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=d9473b89-1ea5-4214-a716-20f53da7cf2d&tw_document_href=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nvnxn&type=javascript&version=2.3.29
IP 104.244.42.5:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=ba7ebc78-e5f8-4d86-8cf3-a7e8ad0ae530&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=d9473b89-1ea5-4214-a716-20f53da7cf2d&tw_document_href=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nvnxn&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:37 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=ff43585e-2557-4d6a-bb6f-9746c3adb87c; Max-Age=63072000; Expires=Mon, 03 Feb 2025 14:52:37 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 4a5dede176d56930
strict-transport-security: max-age=0
x-response-time: 109
x-connection-hash: a2444af776513e16bf0da539126624c16b792bd237a2fa591ef0f3fa4d62222e
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 47596e29084bc770512471731d8627f1
ff10d540287425c2476aaffd4e321679cdef048c
015c3fbcf2992381d1e027318a028058b1d4ff44f32a7b8f7ad1d3d9d82b2c82
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4994
Cache-Control: max-age=142621
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:37 GMT
Etag: "63dde7d0-139"
Expires: Mon, 06 Feb 2023 06:29:38 GMT
Last-Modified: Sat, 04 Feb 2023 05:06:24 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
shb.richaudience.com/hb/
162.55.101.208200 OK 111 kB IP 162.55.101.208:0
ASN #24940 Hetzner Online GmbH
Size 111 kB (110697 bytes)
Hash aeb61f99c506dbc40572f1c215629ee9
8c2b43c3ca35bfe62a2ff66d1dcacd8298642f14
3cb6188f391ed98d8fc5d329b95bafc1ebd04be83155bc35a9c44b7be1932111
POST /hb/ HTTP/1.1
Host: shb.richaudience.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 789
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.1
date: Sat, 04 Feb 2023 14:52:20 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: https://rollcall.com
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=ba7ebc78-e5f8-4d86-8cf3-a7e8ad0ae530&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=d9473b89-1ea5-4214-a716-20f53da7cf2d&tw_document_href=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nvnxn&type=javascript&version=2.3.29
104.244.42.67200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=ba7ebc78-e5f8-4d86-8cf3-a7e8ad0ae530&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=d9473b89-1ea5-4214-a716-20f53da7cf2d&tw_document_href=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nvnxn&type=javascript&version=2.3.29
IP 104.244.42.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=ba7ebc78-e5f8-4d86-8cf3-a7e8ad0ae530&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=d9473b89-1ea5-4214-a716-20f53da7cf2d&tw_document_href=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nvnxn&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:37 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_YgTyCCC000uCMppU7AIabw=="; Max-Age=63072000; Expires=Mon, 03 Feb 2025 14:52:37 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: f6e77f5bb914cb92
strict-transport-security: max-age=631138519
x-response-time: 105
x-connection-hash: 24ceacdafc14749047a978ef85a6c89489e6542189d6f9b1f61a7508cff31bb8
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash f1863a540293ddcc061dfc21bd95b29b
9bcdd346085a149ae444533bc944b2903c8544ea
4dc4a6f8734f7a645d10d118f1f6f8791acfab6bb395852d12920c9befbc9a4a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 14:52:38 GMT
Last-Modified: Sat, 04 Feb 2023 13:11:53 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OaKNCleK46tLt3ZH9WsdslT4nggkfSlG1lqF_6yoXuLKOJXnkY9vHQ==
Age: 6045
www.facebook.com/tr/?id=1782174575388624&ev=PageView&dl=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&rl=&if=false&ts=1675522394002&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675522394002.32080900&it=1675522393649&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1782174575388624&ev=PageView&dl=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&rl=&if=false&ts=1675522394002&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675522394002.32080900&it=1675522393649&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1782174575388624&ev=PageView&dl=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&rl=&if=false&ts=1675522394002&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675522394002.32080900&it=1675522393649&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 14:52:38 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1782174575388624&ev=ViewContent&dl=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&rl=&if=false&ts=1675522394005&cd[value]=3.5&cd[currency]=USD&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=30&fbp=fb.1.1675522394002.32080900&it=1675522393649&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1782174575388624&ev=ViewContent&dl=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&rl=&if=false&ts=1675522394005&cd[value]=3.5&cd[currency]=USD&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=30&fbp=fb.1.1675522394002.32080900&it=1675522393649&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1782174575388624&ev=ViewContent&dl=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&rl=&if=false&ts=1675522394005&cd[value]=3.5&cd[currency]=USD&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=30&fbp=fb.1.1675522394002.32080900&it=1675522393649&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 14:52:38 GMT
X-Firefox-Spdy: h2
20836203p.rfihub.com/ca.html?ver=9&rb=45079&ca=20836203&_o=45079&_t=20836203&pe=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&pf=&ra=12407722838416868
193.0.160.129200 OK 2.5 kB URL HTTP/1.1 20836203p.rfihub.com/ca.html?ver=9&rb=45079&ca=20836203&_o=45079&_t=20836203&pe=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&pf=&ra=12407722838416868
IP 193.0.160.129:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (2543), with no line terminators
Hash b8b9f7158ab71c96dcd45e78ac3a296f
a898958ea903fc0a5bd894a5ed22b9e7bd39ed0d
5d4ad2b7a05de2d471b728d9df128d0e6f2af400a47b8a3c297d87e6cd218fef
GET /ca.html?ver=9&rb=45079&ca=20836203&_o=45079&_t=20836203&pe=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&pf=&ra=12407722838416868 HTTP/1.1
Host: 20836203p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:38 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rud=H4sIAAAAAAAA_-MSNjU0MDcxNrYwMjMGInNzY0szIT5DXVej0Gw3Z6_ggLTsLADr8vwNJQAAAA; Path=/; Domain=.rfihub.com; Expires=Thu, 29 Feb 2024 14:52:38 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0MDcxNrYwMjMGInNzY0szIT5DXVej0Gw3Z6_ggLTsLADr8vwNJQAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_5vFyGtoZm5qamRkbGphYGmyC41_Co3_Co3_C40_iQmVPwuNvwiNvwqNvwmNvwtdPQsq_xYafxMrmn5uNPt50fjCqPxHaHwAhLWALCABAAA; Path=/; Domain=.rfihub.com; Expires=Thu, 29 Feb 2024 14:52:38 GMT; Secure; SameSite=None
Cache-Control: no-cache
Content-Type: text/html;charset=utf-8
Content-Length: 2543
Server: Jetty(9.3.29.v20201019)
syndication.twitter.com/settings?session_id=1a39f5be5c1ba2e4b1ce441a72dbcc288fb815e7
104.244.42.72200 OK 326 B URL HTTP/2 syndication.twitter.com/settings?session_id=1a39f5be5c1ba2e4b1ce441a72dbcc288fb815e7
IP 104.244.42.72:0
File type JSON data\012- , ASCII text, with very long lines (919), with no line terminators
Hash 11f6a2d6bb52340b52d53f9cf72973e8
ea0c3e5d850a2659b3344d84957b691a6f7942b8
a0b2545f4adeaf91f7a23b95f43c682557bdfd1e59d2cf394d10a01f97c886ff
GET /settings?session_id=1a39f5be5c1ba2e4b1ce441a72dbcc288fb815e7 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:37 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Sat, 04 Feb 2023 14:52:38 GMT
content-length: 326
content-encoding: gzip
x-transaction-id: a010509c19350c83
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 104
x-connection-hash: 3135f171f9c13ea4123596dc1d58903098d71cb75b4aa2266e57541928c1fdf2
X-Firefox-Spdy: h2
trends.revcontent.com/api/demand/?w=142372
99.81.25.188200 OK 52 B URL HTTP/1.1 trends.revcontent.com/api/demand/?w=142372
IP 99.81.25.188:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f4a5288d29a5acc780b485c0631d904d
9fe1fd9219f6dd986fe1c1269fe429842efaa576
8b4b43fd2629a9ae29c5220a852bbc8ff169c571cdf77798633efec65c934df7
GET /api/demand/?w=142372 HTTP/1.1
Host: trends.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Origin: https://rollcall.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 04 Feb 2023 14:52:38 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 52
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
Strict-Transport-Security: max-age=931536000; includeSubDomains
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash bf80552ee532f350135b1fd5292053df
5ce725281d994eb6ad0eaa83810e2dca59f99671
4673d9937bc4251e10398e28c5e1ed470a25798bf82c640488267cec2960f351
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=123736
Date: Sat, 04 Feb 2023 14:52:38 GMT
Etag: "63dd9d81-1d7"
Expires: Mon, 06 Feb 2023 01:14:54 GMT
Last-Modified: Fri, 03 Feb 2023 23:49:21 GMT
Server: ECS (bsa/EB16)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AWhn3sTJZysbIsStXQzRrqqvbjwyWLrOpjw9C4JiY8hJBJURltLvjw==
Age: 5133
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-71520264-8&cid=574548757.1675522394&jid=1233263531&gjid=847644661&_gid=1361984682.1675522394&_u=YEDAAAABAAAAAC~&z=812683900
74.125.131.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-71520264-8&cid=574548757.1675522394&jid=1233263531&gjid=847644661&_gid=1361984682.1675522394&_u=YEDAAAABAAAAAC~&z=812683900
IP 74.125.131.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-71520264-8&cid=574548757.1675522394&jid=1233263531&gjid=847644661&_gid=1361984682.1675522394&_u=YEDAAAABAAAAAC~&z=812683900 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://rollcall.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 04 Feb 2023 14:52:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-71520264-1&cid=574548757.1675522394&jid=936899787&gjid=1068398641&_gid=1361984682.1675522394&_u=YEBAAAAAAAAAAC~&z=553461026
74.125.131.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-71520264-1&cid=574548757.1675522394&jid=936899787&gjid=1068398641&_gid=1361984682.1675522394&_u=YEBAAAAAAAAAAC~&z=553461026
IP 74.125.131.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-71520264-1&cid=574548757.1675522394&jid=936899787&gjid=1068398641&_gid=1361984682.1675522394&_u=YEBAAAAAAAAAAC~&z=553461026 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://rollcall.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 04 Feb 2023 14:52:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash f1863a540293ddcc061dfc21bd95b29b
9bcdd346085a149ae444533bc944b2903c8544ea
4dc4a6f8734f7a645d10d118f1f6f8791acfab6bb395852d12920c9befbc9a4a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 14:52:38 GMT
Last-Modified: Sat, 04 Feb 2023 13:08:03 GMT
Server: ECS (nyb/1D0F)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rM-Y-yu3l2-oxAP1gyhKDz2asaEwWSHAhwGRI0BI4aXla0kTZlobdw==
Age: 6275
ic.tynt.com/b/p?id=aNOY3wl8yr6yWbaKkGJozW&lm=0&ts=1675522393695&dn=RCIV&iso=0&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&t=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=aNOY3wl8yr6yWbaKkGJozW&lm=0&ts=1675522393695&dn=RCIV&iso=0&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&t=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=aNOY3wl8yr6yWbaKkGJozW&lm=0&ts=1675522393695&dn=RCIV&iso=0&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&t=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 04 Feb 2023 14:52:38 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 621b586028d5acaf29b8777ca0872ce1
9d2a358576d0acab58e2eacf7765b686cee9181f
a7c99a5217e394c715679780ae1e3e60202653547212b0a4fd2efab0e1a01015
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yeet.revcontent.com/yeet/events/api-errors
54.194.226.232200 OK 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/api-errors
IP 54.194.226.232:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://rollcall.com/
Origin: https://rollcall.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 04 Feb 2023 14:52:38 GMT
Content-Length: 0
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 621b586028d5acaf29b8777ca0872ce1
9d2a358576d0acab58e2eacf7765b686cee9181f
a7c99a5217e394c715679780ae1e3e60202653547212b0a4fd2efab0e1a01015
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-71520264-8&cid=574548757.1675522394&jid=1233263531&_u=YEDAAAABAAAAAC~&z=49869529
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-71520264-8&cid=574548757.1675522394&jid=1233263531&_u=YEDAAAABAAAAAC~&z=49869529
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-71520264-8&cid=574548757.1675522394&jid=1233263531&_u=YEDAAAABAAAAAC~&z=49869529 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 14:52:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
live.rezync.com/pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5107433826326377396&referrer=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F
143.204.55.19302 Found 661 B URL HTTP/2 live.rezync.com/pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5107433826326377396&referrer=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F
IP 143.204.55.19:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (575)
Hash 94cb5f99fc4eef85f581f7c420c8d787
19bf3597082eb7368f95a50dded75c5ddfeb6c7b
d38d9c3d0da45617d595883f31b86a3f1b6d1cee050ccc2d4fce439a468e9e58
GET /pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5107433826326377396&referrer=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F HTTP/1.1
Host: live.rezync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Cookie: zync-uuid=9a97009f-c3b2-4a22-bddd-1bfbe7e9348c:1675522355.9381113; sd-session-id=eyJfcGVybWFuZW50Ijp0cnVlLCJzZXNzaW9uX2lkIjoiOWE5NzAwOWYtYzNiMi00YTIyLWJkZGQtMWJmYmU3ZTkzNDhjOjE2NzU1MjIzNTUuOTM4MTExMyJ9.Y95xMw.xNWkZ5pUN8W52-EsEzpy473pzrc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 661
location: https://p.rfihub.com/cm?pub=39342&in=0&userid=9a97009f-c3b2-4a22-bddd-1bfbe7e9348c%3A1675522355.9381113&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D9a97009f-c3b2-4a22-bddd-1bfbe7e9348c%253A1675522355.9381113
date: Sat, 04 Feb 2023 14:52:38 GMT
set-cookie: zync-uuid=9a97009f-c3b2-4a22-bddd-1bfbe7e9348c:1675522355.9381113; Domain=rezync.com; Expires=Thu, 03 Aug 2023 06:52:38 GMT; Path=/; SameSite=None; Secure
sd-session-id=.eJwNyk0KwyAQQOG7zDoWddRRLxP8mYC0sSWmm4bcvcLbfPAuWD987KlzPyGex5cXKK82NSBeMNpv5ydEsEqSQfTa4YwIg4N7gcFjtHdfW51PSIGkDJsomLUwSWuRa61C5S0zcUDjS1SOrNUarX0E9EophPsPwvMmLA.Y95xNg.QW4q9HAxbxQFaG4lxUbn0kTgyjI; Expires=Thu, 03 Aug 2023 14:52:38 GMT; HttpOnly; Path=/; SameSite=None; Secure
vary: Cookie
server: lighttpd/1.4.59
x-cache: Miss from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cLwjLdJsjRz4j4WLNXlxjWR6iEnga6xNnQDeJHS3CIX26Kmq5psgpA==
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-71520264-1&cid=574548757.1675522394&jid=936899787&_u=YEBAAAAAAAAAAC~&z=2094130516
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-71520264-1&cid=574548757.1675522394&jid=936899787&_u=YEBAAAAAAAAAAC~&z=2094130516
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-71520264-1&cid=574548757.1675522394&jid=936899787&_u=YEBAAAAAAAAAAC~&z=2094130516 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 14:52:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-71520264-8&cid=574548757.1675522394&jid=1233263531&_u=YEDAAAABAAAAAC~&z=49869529
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-71520264-8&cid=574548757.1675522394&jid=1233263531&_u=YEDAAAABAAAAAC~&z=49869529
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-71520264-8&cid=574548757.1675522394&jid=1233263531&_u=YEDAAAABAAAAAC~&z=49869529 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 14:52:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
de.tynt.com/deb/v2?id=aNOY3wl8yr6yWbaKkGJozW&dn=RCIV&cc=1&r=&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F
67.202.105.32200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=aNOY3wl8yr6yWbaKkGJozW&dn=RCIV&cc=1&r=&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F
IP 67.202.105.32:0
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=aNOY3wl8yr6yWbaKkGJozW&dn=RCIV&cc=1&r=&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
expires: Sun, 05 Feb 2023 14:52:38 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Sat, 04 Feb 2023 14:52:37 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
yeet.revcontent.com/yeet/events/api-errors
54.194.226.232204 No Content 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/api-errors
IP 54.194.226.232:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Content-Type: application/json
Origin: https://rollcall.com
Content-Length: 203
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Sat, 04 Feb 2023 14:52:38 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: *
vary: Origin
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-index_n-sharethrough_n-LoopMe_pm-db5_rbd_n-vmg_ox-db5_cnv_an-db5_n-amobee
54.239.38.253302 Found 0 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-index_n-sharethrough_n-LoopMe_pm-db5_rbd_n-vmg_ox-db5_cnv_an-db5_n-amobee
IP 54.239.38.253:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-index_n-sharethrough_n-LoopMe_pm-db5_rbd_n-vmg_ox-db5_cnv_an-db5_n-amobee HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Sat, 04 Feb 2023 14:52:38 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: YH61G0BYJV20WST3SQMS
Set-Cookie: ad-id=A5irlZf4Mk-eiSRfdoZDVaA|t; Domain=.amazon-adsystem.com; Expires=Sun, 01-Oct-2023 14:52:38 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-index_n-sharethrough_n-LoopMe_pm-db5_rbd_n-vmg_ox-db5_cnv_an-db5_n-amobee&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
ic.tynt.com/b/p?id=aNOY3wl8yr6yWbaKkGJozW&lm=0&ts=1675522393695&dn=RCIV&iso=0&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&t=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=aNOY3wl8yr6yWbaKkGJozW&lm=0&ts=1675522393695&dn=RCIV&iso=0&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&t=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=aNOY3wl8yr6yWbaKkGJozW&lm=0&ts=1675522393695&dn=RCIV&iso=0&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&t=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 04 Feb 2023 14:52:38 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
trends.revcontent.com/api/delivery/?is_blocked=undefined&w=142372&width=1280&rev_allow_cookies=0&site_url=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&icr_url=&va=0&user_uuid=undefined&time=1675522394195&up=pc&bn=firefox&bv=105&widget_width=809&style_id=0&idhub[criteoId]=qiYmIl9Tb3NIemhlOFA1MFZ6TE5zM0dEVm0yMkM3UFFxdGdIeHkxUyUyRkdSN3ZIZEYxMGkzTGhUMmFjSEoxMVMwbXhPJTJCcUVySHBDdWc1b08ydDY2VyUyQkpJSXNvZyUzRCUzRA&idhub[pubcid]=8b612bdd-5068-4c55-aba2-7139cf4d0599&an=false
99.81.25.188200 OK 12 kB URL HTTP/1.1 trends.revcontent.com/api/delivery/?is_blocked=undefined&w=142372&width=1280&rev_allow_cookies=0&site_url=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&icr_url=&va=0&user_uuid=undefined&time=1675522394195&up=pc&bn=firefox&bv=105&widget_width=809&style_id=0&idhub[criteoId]=qiYmIl9Tb3NIemhlOFA1MFZ6TE5zM0dEVm0yMkM3UFFxdGdIeHkxUyUyRkdSN3ZIZEYxMGkzTGhUMmFjSEoxMVMwbXhPJTJCcUVySHBDdWc1b08ydDY2VyUyQkpJSXNvZyUzRCUzRA&idhub[pubcid]=8b612bdd-5068-4c55-aba2-7139cf4d0599&an=false
IP 99.81.25.188:0
File type JSON data\012- , ASCII text, with very long lines (29406), with no line terminators
Hash c6f678789b6c648b3b17ea4d07d2cabe
2cb4cbcc8bb3c8ef8d08bfeb331698d114383d80
d1b9e2db86dfbe2591401ca622c24c78c7c213b1361e7802bd436d09add847d3
GET /api/delivery/?is_blocked=undefined&w=142372&width=1280&rev_allow_cookies=0&site_url=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&icr_url=&va=0&user_uuid=undefined&time=1675522394195&up=pc&bn=firefox&bv=105&widget_width=809&style_id=0&idhub[criteoId]=qiYmIl9Tb3NIemhlOFA1MFZ6TE5zM0dEVm0yMkM3UFFxdGdIeHkxUyUyRkdSN3ZIZEYxMGkzTGhUMmFjSEoxMVMwbXhPJTJCcUVySHBDdWc1b08ydDY2VyUyQkpJSXNvZyUzRCUzRA&idhub[pubcid]=8b612bdd-5068-4c55-aba2-7139cf4d0599&an=false HTTP/1.1
Host: trends.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Origin: https://rollcall.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 04 Feb 2023 14:52:38 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 11592
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
vary: Accept-Encoding
content-encoding: gzip
Strict-Transport-Security: max-age=931536000; includeSubDomains
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-index_n-sharethrough_n-LoopMe_pm-db5_rbd_n-vmg_ox-db5_cnv_an-db5_n-amobee&dcc=t
54.239.38.253200 OK 64 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-index_n-sharethrough_n-LoopMe_pm-db5_rbd_n-vmg_ox-db5_cnv_an-db5_n-amobee&dcc=t
IP 54.239.38.253:0
File type HTML document, ASCII text
Hash be99f9f8ced5e5eb1f9721d861712f89
4291ee98f7ce20471796ec89961abb1acb2af1d8
f17fe415b91a13ea86b93344389e18c996384323ca3c2f4267b18c96b8314a12
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-index_n-sharethrough_n-LoopMe_pm-db5_rbd_n-vmg_ox-db5_cnv_an-db5_n-amobee&dcc=t HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Sat, 04 Feb 2023 14:52:38 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 64
Connection: keep-alive
x-amz-rid: PZ73G5Y7KZG1CWANGD9D
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
tags.srv.stackadapt.com/sa.css
54.237.31.137200 OK 27 B URL HTTP/1.1 tags.srv.stackadapt.com/sa.css
IP 54.237.31.137:0
Hash 83f5ba33314db5f218488a5a51da1455
87a21689afa235c4c65437334085be4bf5cca170
3f100e5e6ff270dadb43b44878f0118a2389dee0d844acc102b5179d70a824dc
GET /sa.css HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: only-if-cached, no-transform, private, max-age=7776000
Content-Type: text/css
Date: Sat, 04 Feb 2023 14:52:38 GMT
Content-Length: 27
Connection: keep-alive
assets.revcontent.com/master/commonModal.delivery.js
151.139.128.10200 OK 1.7 kB URL HTTP/2 assets.revcontent.com/master/commonModal.delivery.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (3480)
Hash 3a3454cfd4bcdbe3530b5be69abaec8a
58e12542c05f89a6c16361862eea50b2b1a6cf72
500b5fa71b171742f299d7523fd5acde7db575ecf0753fdf884df62ae22dcbbc
GET /master/commonModal.delivery.js HTTP/1.1
Host: assets.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:38 GMT
content-encoding: gzip
content-length: 1672
content-type: application/x-javascript
last-modified: Wed, 01 Feb 2023 18:56:38 GMT
accept-ranges: bytes
x-amz-id-2: ocDoShUngJLKobiSQ5xAbuc6KW4QwOEU8OR7RryNffyFHftBr5QLYrvRWQzMJzIcVNgbTQFDBY0=
x-amz-request-id: 803YB3Q7DP1S84C2
etag: "f0d1fcc18cb3b9bce36668b12f881505"
cache-control: public,max-age=600
server: AmazonS3
x-hw: 1675522358.cds018.sk1.hn,1675522358.cds245.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.lightboxcdn.com/vendor/eba8a9c6-62bc-4f0f-974c-73a43da9c976/lightbox.js?mb=1675522393576&lv=1
104.19.212.131200 OK 7.3 kB URL HTTP/2 www.lightboxcdn.com/vendor/eba8a9c6-62bc-4f0f-974c-73a43da9c976/lightbox.js?mb=1675522393576&lv=1
IP 104.19.212.131:0
File type ASCII text, with very long lines (399), with no line terminators
Hash d0207e04a7f2313dc7cde9da002b7414
88dde953b2e2cec3808d5a57451874b0ba8ff800
10685691198e5f59d6846b957dcabfcae40a0d8f14a8125b46f60f90f2cbc85d
GET /vendor/eba8a9c6-62bc-4f0f-974c-73a43da9c976/lightbox.js?mb=1675522393576&lv=1 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:38 GMT
content-type: application/javascript
vary: Accept-Encoding
x-powered-by: ASP.NET
last-modified: Sat, 04 Feb 2023 14:37:21 GMT
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 79443b2fcff2b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.revcontent.com/master/defaultWidget.delivery.js
151.139.128.10200 OK 6.2 kB URL HTTP/2 assets.revcontent.com/master/defaultWidget.delivery.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (17209)
Hash c0fc7b34d57105f87477946a3e576fc8
6d0a47321c28707c17ba5bd09b5698c0065f5ec0
a02a707b7fca86f46481e15c1939d84f7fdb33d55b0764407c4c61ae27dd6fda
GET /master/defaultWidget.delivery.js HTTP/1.1
Host: assets.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:38 GMT
content-encoding: gzip
content-length: 6223
content-type: application/x-javascript
last-modified: Wed, 01 Feb 2023 18:56:38 GMT
accept-ranges: bytes
x-amz-id-2: Ii0upmz9AP/ZxqgtUpRLrovqiDbJFV1pfLNM+2uvaBuC+T+oL5wwjkoxtwgsrKF2lJhhNqtmLT0=
x-amz-request-id: 803ZDWF2WWTFVNWC
etag: "2af34eeb308c7a477d744220730a37a2"
cache-control: public,max-age=600
server: AmazonS3
x-hw: 1675522358.cds018.sk1.hn,1675522358.cds228.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
ib.adnxs.com/setuid?entity=18&code=5107433826326377396
37.252.171.85307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/setuid?entity=18&code=5107433826326377396
IP 37.252.171.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?entity=18&code=5107433826326377396 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 14:52:38 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5107433826326377396
AN-X-Request-Uuid: 804beb7d-ed16-4a39-b85e-b1e264cf2bcd
Set-Cookie: uuid2=5402660017257471908; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 14:52:38 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
www.lightboxcdn.com/z9g/t.gif?c=1675522394413&h=rollcall.com&e=p&u=42408
104.19.212.131200 OK 35 B URL HTTP/2 www.lightboxcdn.com/z9g/t.gif?c=1675522394413&h=rollcall.com&e=p&u=42408
IP 104.19.212.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /z9g/t.gif?c=1675522394413&h=rollcall.com&e=p&u=42408 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:38 GMT
content-type: image/gif
content-length: 35
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
content-md5: KNaBTzCeoon4R8ac+RGUxg==
etag: 0x8D69B87D5A1B25F
last-modified: Tue, 26 Feb 2019 01:15:02 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-cbmodifiedtime: Tue, 26 Feb 2019 00:59:40 GMT
x-ms-request-id: db46fedb-401e-008b-4976-efee1f000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 727495
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79443b346ddbb51d-OSL
X-Firefox-Spdy: h2
ping.chartbeat.net/ping?h=rollcall.com&p=%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&u=Ml2iBCHiGWdCoCeuK&d=rollcall.com&g=46806&g0=Policy&g1=Emily%20Kopp&n=1&f=00001&c=0&x=0&m=0&y=7111&o=1268&w=939&j=45&R=1&W=0&I=0&E=0&e=0&r=&PA=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&b=4278&t=CzublaDPuQUHC5dDxnDf0tG0C-59y7&V=139&i=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call&tz=0&sn=1&sv=CTmNHpCQ1A9tBOZA3qCiTABLCNhGrX&sd=1&im=067b2ff3&_
18.213.167.233200 OK 43 B URL HTTP/2 ping.chartbeat.net/ping?h=rollcall.com&p=%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&u=Ml2iBCHiGWdCoCeuK&d=rollcall.com&g=46806&g0=Policy&g1=Emily%20Kopp&n=1&f=00001&c=0&x=0&m=0&y=7111&o=1268&w=939&j=45&R=1&W=0&I=0&E=0&e=0&r=&PA=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&b=4278&t=CzublaDPuQUHC5dDxnDf0tG0C-59y7&V=139&i=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call&tz=0&sn=1&sv=CTmNHpCQ1A9tBOZA3qCiTABLCNhGrX&sd=1&im=067b2ff3&_
IP 18.213.167.233:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /ping?h=rollcall.com&p=%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&u=Ml2iBCHiGWdCoCeuK&d=rollcall.com&g=46806&g0=Policy&g1=Emily%20Kopp&n=1&f=00001&c=0&x=0&m=0&y=7111&o=1268&w=939&j=45&R=1&W=0&I=0&E=0&e=0&r=&PA=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&b=4278&t=CzublaDPuQUHC5dDxnDf0tG0C-59y7&V=139&i=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call&tz=0&sn=1&sv=CTmNHpCQ1A9tBOZA3qCiTABLCNhGrX&sd=1&im=067b2ff3&_ HTTP/1.1
Host: ping.chartbeat.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:38 GMT
content-type: image/gif
content-length: 43
cross-origin-resource-policy: cross-origin
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=rkt&ovsid=5107433826326377396
2.18.172.23200 OK 237 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=rkt&ovsid=5107433826326377396
IP 2.18.172.23:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 74378edf31ef26cd97c236ad08d05fa3
fdd52cdbf193d1dfd1031978667689f3414b49ed
11cb2c0e70f91c6a0326cf4a4f9fa1b177c14efba6b56bf7535624b9c7bce990
GET /cksync.php?cs=3&type=rkt&ovsid=5107433826326377396 HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 237
content-type: image/gif
set-cookie: visitor-id=3185239583580293000V10; Expires=Sun, 04 Feb 2024 14:52:38 GMT; domain=.media.net; Path=/;
data-rk=5107433826326377396~~3;Expires=Sat, 03 Feb 2024 14:52:38 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Sat, 04 Feb 2023 14:52:38 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 04 Feb 2023 14:52:38 GMT
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=aNOY3wl8yr6yWbaKkGJozW&lm=0&ts=1675522393695&dn=RCIV&iso=0&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=aNOY3wl8yr6yWbaKkGJozW&lm=0&ts=1675522393695&dn=RCIV&iso=0&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=aNOY3wl8yr6yWbaKkGJozW&lm=0&ts=1675522393695&dn=RCIV&iso=0&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 04 Feb 2023 14:52:38 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEwNzQzMzgyNjMyNjM3NzM5Ng==&forward=
142.250.74.66302 Found 369 B URL HTTP/2 cm.g.doubleclick.net/pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEwNzQzMzgyNjMyNjM3NzM5Ng==&forward=
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash b4672f4a19abdae6b709bdb35d402d41
3ea2b8120629387224e180a29b32233496747f3f
8fde220bb3e1c943b8f5d629f8c37b1b6e4f04e9d87b2ec45c134b51e5c55e06
GET /pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEwNzQzMzgyNjMyNjM3NzM5Ng==&forward= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEwNzQzMzgyNjMyNjM3NzM5Ng==&forward=&google_tc=
date: Sat, 04 Feb 2023 14:52:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 369
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 04-Feb-2023 15:07:38 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
idsync.rlcdn.com/360947.gif?partner_uid=5107433826326377396
35.244.174.68200 OK 42 B URL HTTP/2 idsync.rlcdn.com/360947.gif?partner_uid=5107433826326377396
IP 35.244.174.68:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /360947.gif?partner_uid=5107433826326377396 HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: image/gif
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: rlas3=9fQjjeDZtud+IkWq4nTBDSAe4+AdvzGYAegmacLPNrI=; Path=/; Domain=rlcdn.com; Expires=Sun, 04 Feb 2024 14:52:38 GMT; Secure; SameSite=None
pxrc=CAA=; Path=/; Domain=rlcdn.com; Expires=Wed, 05 Apr 2023 14:52:38 GMT; Secure; SameSite=None
timing-allow-origin: *
date: Sat, 04 Feb 2023 14:52:38 GMT
content-length: 42
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c11f0c0346b891128d1772c9e0263baf
3d1f3201075de5d0b3a0e1c5ab1a01853c7bbd50
5d7f4adc08aa921962a1b101003a6cd96793d4b1a9a0f6294778ff1cd4d7855d
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4537
Cache-Control: max-age=91063
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:38 GMT
Etag: "63dd2034-1d7"
Expires: Sun, 05 Feb 2023 16:10:21 GMT
Last-Modified: Fri, 03 Feb 2023 14:54:44 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
z.moatads.com/cqrollcalldfp986536182168/moatad.js
2.18.173.140200 OK 0 B URL HTTP/2 z.moatads.com/cqrollcalldfp986536182168/moatad.js
IP 2.18.173.140:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cqrollcalldfp986536182168/moatad.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: r5U4Ozlt0cIcF6FEeVDXJqAbONPedboAfApIjMsPONeQRTPNjSKR2KolotZq0F9cSCqhFyrtscw=
x-amz-request-id: 53W5CX6NC6P54WAK
last-modified: Wed, 10 Feb 2021 10:07:33 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
accept-ranges: bytes
content-type: application/x-javascript
content-length: 0
server: AmazonS3
unused62: 8096267
cache-control: max-age=9359
date: Sat, 04 Feb 2023 14:52:38 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 7d1b3aee35892ad3630e76123d6ea87b
715d5f74de75912c721ac85fff8d99f31c095905
26db0797915d5ab7123e52ab0acf361d6ea09551212dc0523f47ccc4e3ca0ad8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1744
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:38 GMT
Last-Modified: Sat, 04 Feb 2023 14:23:34 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 727
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:38 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=557649,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79443b34d997b517-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3a8f191b6804fc7779af2631165a23cb
d64c7ccd78c831820e1fbe0f96f012bd8a1ea7f8
3d1128de7ff22ad54dc569850cff7895140ead9c34009a0be3a7872694f03869
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4817
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:38 GMT
Last-Modified: Sat, 04 Feb 2023 13:32:21 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
img.revcontent.com/?url=https://cdn.revcontent.com/assets/img/full_color.png&static=true
151.139.128.10200 OK 1.4 kB URL HTTP/2 img.revcontent.com/?url=https://cdn.revcontent.com/assets/img/full_color.png&static=true
IP 151.139.128.10:0
File type PNG image data, 64 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 624cba89d4a9bbe9c882fdbe4c11621d
a798d6ed9b193888fbc8a4a5bd7b51c236f8aa33
94d3b3f21c82e9004e1a95aba77f256573a3406d0782d451d50ac8e4bb4df7c5
GET /?url=https://cdn.revcontent.com/assets/img/full_color.png&static=true HTTP/1.1
Host: img.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:38 GMT
etag: "1654183362"
cache-control: max-age=31536000
content-length: 1351
content-type: image/png
last-modified: Thu, 02 Jun 2022 15:22:42 GMT
accept-ranges: bytes
x-hw: 1675522358.cds071.sk1.hn,1675522358.cds242.sk1.c
X-Firefox-Spdy: h2
sync-tm.everesttech.net/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D
151.101.130.49302 Found 0 B URL HTTP/2 sync-tm.everesttech.net/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D
IP 151.101.130.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: CP="NOI DSP COR LAW PSAo PSDo IVAo IVDo OUR BUS UNI DEM"
access-control-allow-origin: *
set-cookie: everest_g_v2=g_surferid~Y95xNgAEkxVZlwAh; Path=/; Domain=.everesttech.net; Expires=Sun, 04-Feb-2024 14:52:38 GMT; Max-Age=31536000
location: https://sync-tm.everesttech.net/ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Y95xNgAEkxVZlwAh
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Sat, 04 Feb 2023 14:52:38 GMT
via: 1.1 varnish
x-served-by: cache-bma1670-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675522359.510804,VS0,VE91
cache-control: no-cache
pragma: no-cache
content-length: 0
X-Firefox-Spdy: h2
us-u.openx.net/w/1.0/sd?id=537073062&val=5107433826326377396&r=
35.244.159.8200 OK 43 B URL HTTP/2 us-u.openx.net/w/1.0/sd?id=537073062&val=5107433826326377396&r=
IP 35.244.159.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /w/1.0/sd?id=537073062&val=5107433826326377396&r= HTTP/1.1
Host: us-u.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Sat, 04 Feb 2023 14:52:38 GMT
content-type: image/gif
content-length: 43
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 625ed7ca2df2c9c4c73a4e49b297c621
b640ef549e43a68b7f6b134c806ebec3cd6e4239
4627b2a931f0c8546e340c2a42741cfb15c63f5cd8b51cdde8adce4693f239dd
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=118498
Date: Sat, 04 Feb 2023 14:52:38 GMT
Etag: "63dd8de9-1d7"
Expires: Sun, 05 Feb 2023 23:47:36 GMT
Last-Modified: Fri, 03 Feb 2023 22:42:49 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RMpP-iftahnjsbnHXS6hWBudIvLoW5mpuqZ-7mIcCRtdp3lcZdO9tQ==
Age: 3887
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 20986e3ad41b7c7568b647083cfa3ee9
a6199774774df812bb2e847f7d01cddbba9192f2
6cc18cd5bcc4c953f33cb49aecfed274701b2af3a15fd8f7cde0a05f8d6dc1eb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4854
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:38 GMT
Last-Modified: Sat, 04 Feb 2023 13:31:44 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 20b8d61b25284d1677b2910b2d159fc7
2beeda9e6ee348bb33d5a9c7df292b1c9e695b8f
7fdb76517fb8233a46125e5bd41cc39935b98542dfc7e84a018b049682019794
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3417
Cache-Control: max-age=123442
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:38 GMT
Etag: "63dda30f-1d7"
Expires: Mon, 06 Feb 2023 01:10:00 GMT
Last-Modified: Sat, 04 Feb 2023 00:13:03 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
x.bidswitch.net/sync?dsp_id=119&user_id=5107433826326377396&expires=30
18.184.182.132302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=119&user_id=5107433826326377396&expires=30
IP 18.184.182.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=119&user_id=5107433826326377396&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 14:52:38 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=119&user_id=5107433826326377396&expires=30
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=b4ac42f3-52c4-4c81-a4c1-cf0f22ad1706; path=/; expires=Sun, 04-Feb-2024 14:52:38 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675522358; path=/; expires=Sun, 04-Feb-2024 14:52:38 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675522358; path=/; expires=Sun, 04-Feb-2024 14:52:38 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675522358; path=/; expires=Sun, 04-Feb-2024 14:52:38 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
aa.agkn.com/adscores/g.pixel?sid=9212192898&rf=5107433826326377396
52.29.22.150200 OK 43 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9212192898&rf=5107433826326377396
IP 52.29.22.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /adscores/g.pixel?sid=9212192898&rf=5107433826326377396 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:38 GMT
content-type: image/gif
content-length: 43
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEwNzQzMzgyNjMyNjM3NzM5Ng==&forward=&google_tc=
142.250.74.66302 Found 269 B URL HTTP/2 cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEwNzQzMzgyNjMyNjM3NzM5Ng==&forward=&google_tc=
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 2ac1f21e70e438c7e2193d02ee7e9be0
f9a11bb626bad146751fc166f96b91f6aeae7eab
de4a04a623ca095cd229a54edeb3120d9dc94d227198b75cb9a0a69677ed7c85
GET /pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEwNzQzMzgyNjMyNjM3NzM5Ng==&forward=&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20836203p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
date: Sat, 04 Feb 2023 14:52:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 269
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5107433826326377396
37.252.171.85200 OK 43 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5107433826326377396
IP 37.252.171.85:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /bounce?%2Fsetuid%3Fentity%3D18%26code%3D5107433826326377396 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20836203p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 14:52:38 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: d0bb4782-ec95-4307-85fa-cfd18c4afb86
Set-Cookie: anj=dTM7k!M4/YErk#WF']wIg2In7fUP9!!]tbPl1MNu::wpAk`W=elw1oydX=v@Px7/)2c7J/7t14#=sJSA.gLHHXs6>JDJBg2; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 14:52:38 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
dpm.demdex.net/ibs:dpid=1121&dpuuid=5107433826326377396&redir=
52.16.89.208302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=1121&dpuuid=5107433826326377396&redir=
IP 52.16.89.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=1121&dpuuid=5107433826326377396&redir= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v045-085e2ce89.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5107433826326377396&redir=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=23205100248705439442941368547399757542; Max-Age=15552000; Expires=Thu, 03 Aug 2023 14:52:38 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: /JcPoOY4QMg=
Content-Length: 0
Connection: keep-alive
p.rfihub.com/cm?pub=24472&in=1
193.0.160.129302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=24472&in=1
IP 193.0.160.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=24472&in=1 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 302 Found
Date: Sat, 04 Feb 2023 14:52:38 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: ruds=H4sIAAAAAAAA_-MSNjU0NjExNTUxMrA0N7Y0MTA2MxbiM9StSI4ocsrUNQkrTfcAABpsGSYlAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_7vFwmtoZm5qamRkbGphZmIAAFjcTeAQAAAA; Path=/; Domain=.rfihub.com; Expires=Thu, 29 Feb 2024 14:52:38 GMT; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0NjExNTUxMrA0N7Y0MTA2MxbiM9StSI4ocsrUNQkrTfcAABpsGSYlAAAA; Path=/; Domain=.rfihub.com; Expires=Thu, 29 Feb 2024 14:52:38 GMT; Secure; SameSite=None
Location: https://ps.eyeota.net/match?uid=5134455420973940363&bid=omt9pi0
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash a22f6d7667a53898fb6ac9b4eb1b90fb
12712fb369ece3884d7b50264827dc9a45cea96f
8decb6f46310cdd315147f885255d934aa6be1d690c55f44b5bc314194f132a1
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 04 Feb 2023 14:52:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 03 Feb 2023 21:32:08 GMT
Expires: Sat, 04 Feb 2023 21:32:08 GMT
ETag: "12712fb369ece3884d7b50264827dc9a45cea96f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 7d70322f4f6af3289d4d7f4c22a4c179
f2abd2a7c1575ab0b362920699143dce3ff60d75
0e5b166c8e8d91421e0122ab3863a9cdd88ca4dffa1d9beb9cdf61aca0ac95f2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 8a41a6e5225635ecc02de9eabd9a472b
585d12a70f821899fdfad9c09cc87fc46cac9ea0
997fff4ada3bc79630777b4f847861230bb5ae6c58627220d8ef2c693bb92cbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:38 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 13:42:56 GMT
Expires: Wed, 08 Feb 2023 13:42:55 GMT
Etag: "585d12a70f821899fdfad9c09cc87fc46cac9ea0"
Cache-Control: max-age=340816,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79443b357a71b517-OSL
sync.search.spotxchange.com/partner?adv_id=7180&uid=5107433826326377396&img=1
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7180&uid=5107433826326377396&img=1
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?adv_id=7180&uid=5107433826326377396&img=1 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 Feb 2023 14:52:38 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=91859ab8-a49b-11ed-bd7a-1348667f0306; expires=Sat, 04-Mar-2023 14:52:38 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=7180&uid=5107433826326377396&img=1&__user_check__=1&sync_id=91859b07-a49b-11ed-bd7a-1348667f0306
X-fe: 141
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
p.rfihub.com/cm?pub=39342&in=0&userid=9a97009f-c3b2-4a22-bddd-1bfbe7e9348c%3A1675522355.9381113&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D9a97009f-c3b2-4a22-bddd-1bfbe7e9348c%253A1675522355.9381113
193.0.160.129302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=39342&in=0&userid=9a97009f-c3b2-4a22-bddd-1bfbe7e9348c%3A1675522355.9381113&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D9a97009f-c3b2-4a22-bddd-1bfbe7e9348c%253A1675522355.9381113
IP 193.0.160.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=39342&in=0&userid=9a97009f-c3b2-4a22-bddd-1bfbe7e9348c%3A1675522355.9381113&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D9a97009f-c3b2-4a22-bddd-1bfbe7e9348c%253A1675522355.9381113 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20836203p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sat, 04 Feb 2023 14:52:38 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rud=H4sIAAAAAAAA_-MSNjU0MTI2NjM3MjQzNbC0tDC1NBfiM9TNj8o1NXCLynHzzykGANruwZMlAAAA; Path=/; Domain=.rfihub.com; Expires=Thu, 29 Feb 2024 14:52:38 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0MTI2NjM3MjQzNbC0tDC1NBfiM9TNj8o1NXCLynHzzykGANruwZMlAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
euds=H4sIAAAAAAAA_wXBwRHAIAgEwE_aIeOBBC_diGghqTy73xWcjNZ4ZFmq9KkqWVWCPLlj0_pYL55wVzX3mzYA2A8gPxYSOgAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_z3IsRHAIAgAwAlSOQeegAhkGxEdKGWmTZcv_ynq07U1P7A4CPokgshMwDixdTt3WzcOFSFikepsiMhvuf60Yf4B3X2-eEoAAAA; Path=/; Domain=.rfihub.com; Expires=Thu, 29 Feb 2024 14:52:38 GMT; Secure; SameSite=None
Location: https://idsync.rlcdn.com/501709.gif?partner_uid=9a97009f-c3b2-4a22-bddd-1bfbe7e9348c%3A1675522355.9381113
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c11f0c0346b891128d1772c9e0263baf
3d1f3201075de5d0b3a0e1c5ab1a01853c7bbd50
5d7f4adc08aa921962a1b101003a6cd96793d4b1a9a0f6294778ff1cd4d7855d
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4537
Cache-Control: max-age=91063
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:38 GMT
Etag: "63dd2034-1d7"
Expires: Sun, 05 Feb 2023 16:10:21 GMT
Last-Modified: Fri, 03 Feb 2023 14:54:44 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
tpc.googlesyndication.com/pagead/js/r20230201/r20110914/abg_lite_fy2021.js
216.58.207.193200 OK 9.0 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230201/r20110914/abg_lite_fy2021.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (1672)
Hash 9aa683d616d8b2d10fe0100d761df816
60f84308b40072edcc24b6fd54c68247786001aa
2e8549a4bc0e1f4a4eda2637f239105e780b2ae2879c9a241b1ffe7130386e0a
GET /pagead/js/r20230201/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 8993
x-xss-protection: 0
date: Fri, 03 Feb 2023 19:49:13 GMT
expires: Fri, 17 Feb 2023 19:49:13 GMT
cache-control: public, max-age=1209600
age: 68605
etag: 12355142264901698679
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
qvdt3feo.com/events.js
44.194.94.225200 OK 5.3 kB IP 44.194.94.225:0
File type ASCII text, with very long lines (16650)
Hash cc9f86c845ee0f81afa6da70d695f314
950f8550a95ac1723ea76ae584d8ac37809b480b
4407ad9bb29a62b353c880a443f4f54bca8592eb25894a7f7a30954e8d46d09d
GET /events.js HTTP/1.1
Host: qvdt3feo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:38 GMT
content-type: text/javascript
access-control-allow-origin: *
cache-control: max-age=5
content-encoding: gzip
X-Firefox-Spdy: h2
e1.emxdgt.com/put?d=d16&uid=5107433826326377396
18.156.32.70204 No Content 0 B URL HTTP/2 e1.emxdgt.com/put?d=d16&uid=5107433826326377396
IP 18.156.32.70:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /put?d=d16&uid=5107433826326377396 HTTP/1.1
Host: e1.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html
date: Sat, 04 Feb 2023 14:52:38 GMT
content-length: 0
X-Firefox-Spdy: h2
trends.revcontent.com/event/impression
99.81.25.188204 No Content 0 B URL HTTP/1.1 trends.revcontent.com/event/impression
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /event/impression HTTP/1.1
Host: trends.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Origin: https://rollcall.com
Content-Length: 2777
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Sat, 04 Feb 2023 14:52:38 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: *
vary: Origin
Strict-Transport-Security: max-age=931536000; includeSubDomains
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 8b2f632e5e27c54148b9856d2091c940
8e4d26ae2e955bec5030f1dc7e0b704f433ee0d2
7f59f3e6f5ab3186a919e3fe79edc5115c33aabc1720480a4f69ddcd2730887b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 14:52:38 GMT
Last-Modified: Sat, 04 Feb 2023 13:42:19 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZYFWevZkNZM_rwgOOSo-rEAX1YHPSvJ9lLVCs61oQ8CXFI5Blqcjpw==
Age: 4219
bpi.rtactivate.com/tag/?id=11017&user_id=5107433826326377396
52.86.27.6200 OK 43 B URL HTTP/2 bpi.rtactivate.com/tag/?id=11017&user_id=5107433826326377396
IP 52.86.27.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /tag/?id=11017&user_id=5107433826326377396 HTTP/1.1
Host: bpi.rtactivate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: awselb/2.0
date: Sat, 04 Feb 2023 14:52:38 GMT
content-type: image/gif
content-length: 43
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=aNOY3wl8yr6yWbaKkGJozW&lm=0&ts=1675522393695&dn=RCIV&iso=0&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=aNOY3wl8yr6yWbaKkGJozW&lm=0&ts=1675522393695&dn=RCIV&iso=0&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=aNOY3wl8yr6yWbaKkGJozW&lm=0&ts=1675522393695&dn=RCIV&iso=0&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 04 Feb 2023 14:52:38 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
x.dlx.addthis.com/e/rocketfuel_sync?na_exid=5107433826326377396
184.24.45.23200 OK 43 B URL HTTP/2 x.dlx.addthis.com/e/rocketfuel_sync?na_exid=5107433826326377396
IP 184.24.45.23:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /e/rocketfuel_sync?na_exid=5107433826326377396 HTTP/1.1
Host: x.dlx.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
expires: Sat, 04 Feb 2023 14:52:38 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 04 Feb 2023 14:52:38 GMT
strict-transport-security: max-age=2628000
X-Firefox-Spdy: h2
sync-tm.everesttech.net/ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Y95xNgAEkxVZlwAh
151.101.130.49200 OK 85 B URL HTTP/2 sync-tm.everesttech.net/ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Y95xNgAEkxVZlwAh
IP 151.101.130.49:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 5bec6606b8392065f9da9898ca6f7b14
73ac5b01b5e3293fb792179626e7f8369cdb944d
acccc501aa6afa3cfac15e8ddccf1561deed2ed08c2f7d652abbdbe9aa71609a
GET /ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Y95xNgAEkxVZlwAh HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20836203p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Sat, 04 Feb 2023 14:52:38 GMT
via: 1.1 varnish
age: 2893
x-served-by: cache-bma1670-BMA
x-cache: HIT
x-cache-hits: 6481
x-timer: S1675522359.937588,VS0,VE0
cache-control: no-cache
pragma: no-cache
content-length: 85
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=119&user_id=5107433826326377396&expires=30
18.184.182.132200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=119&user_id=5107433826326377396&expires=30
IP 18.184.182.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=119&user_id=5107433826326377396&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20836203p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:38 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?adv_id=7180&uid=5107433826326377396&img=1&__user_check__=1&sync_id=91859b07-a49b-11ed-bd7a-1348667f0306
185.94.180.126200 OK 43 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7180&uid=5107433826326377396&img=1&__user_check__=1&sync_id=91859b07-a49b-11ed-bd7a-1348667f0306
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /partner?adv_id=7180&uid=5107433826326377396&img=1&__user_check__=1&sync_id=91859b07-a49b-11ed-bd7a-1348667f0306 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20836203p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 14:52:38 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=91b0921f-a49b-11ed-9c7f-155da6fd0106; expires=Sat, 04-Mar-2023 14:52:38 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 91
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5107433826326377396&redir=
52.16.89.208200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5107433826326377396&redir=
IP 52.16.89.208:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5107433826326377396&redir= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20836203p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v045-093556e0f.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: 1BopjnyCRNw=
Content-Length: 59
Connection: keep-alive
ocsp.usertrust.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 235d9e63fde94bc91cc1d143aebccba9
21ee12ac07c972573307a2ae7fc7d2d6249631c7
3c1d5bbfebf0233cb343476de60fd1efea8396da48c1769d0d1c887e84989d6a
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 09:01:04 GMT
Expires: Wed, 08 Feb 2023 09:01:03 GMT
Etag: "21ee12ac07c972573307a2ae7fc7d2d6249631c7"
Cache-Control: max-age=602078,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 214
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79443b381a74b51d-OSL
ic.tynt.com/b/p?id=aNOY3wl8yr6yWbaKkGJozW&lm=0&ts=1675522393695&dn=RCIV&iso=0&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=aNOY3wl8yr6yWbaKkGJozW&lm=0&ts=1675522393695&dn=RCIV&iso=0&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=aNOY3wl8yr6yWbaKkGJozW&lm=0&ts=1675522393695&dn=RCIV&iso=0&pu=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 04 Feb 2023 14:52:39 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ps.eyeota.net/match?uid=5134455420973940363&bid=omt9pi0
3.120.214.218200 OK 0 B URL HTTP/1.1 ps.eyeota.net/match?uid=5134455420973940363&bid=omt9pi0
IP 3.120.214.218:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?uid=5134455420973940363&bid=omt9pi0 HTTP/1.1
Host: ps.eyeota.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20836203p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Set-Cookie: SERVERID=22580~DM; Domain=eyeota.net; Path=/; Expires=Sat, 04 Feb 2023 15:02:39 GMT; Secure; SameSite=None;
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR SAMo BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", policyref="http://ps.eyeota.net/w3c/p3p.xml"
Content-Length: 0
Date: Sat, 04 Feb 2023 14:52:39 GMT
lightboxapi.azurewebsites.net/z9gd/42408/rollcall.com/jsonp/z?cb=1675522394420&callback=jQuery1710763076816680052_1675522394405&_=1675522394421
20.40.202.0200 OK 494 B URL HTTP/1.1 lightboxapi.azurewebsites.net/z9gd/42408/rollcall.com/jsonp/z?cb=1675522394420&callback=jQuery1710763076816680052_1675522394405&_=1675522394421
IP 20.40.202.0:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (436), with no line terminators
Hash 5d522ca523edb2ba99f065d45cb692d2
3460c481aa13430d5d9c61bbad79bed6e59178da
44915f5fb6db1369c58de330d1d6347a860782deac0d477d9e3bc0b27923551c
GET /z9gd/42408/rollcall.com/jsonp/z?cb=1675522394420&callback=jQuery1710763076816680052_1675522394405&_=1675522394421 HTTP/1.1
Host: lightboxapi.azurewebsites.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Sat, 04 Feb 2023 14:52:38 GMT
Server: Microsoft-IIS/10.0
Content-Encoding: gzip
Set-Cookie: TiPMix=70.95426104186569; path=/; HttpOnly; Domain=lightboxapi.azurewebsites.net; Max-Age=3600; Secure; SameSite=None
x-ms-routing-name=self; path=/; HttpOnly; Domain=lightboxapi.azurewebsites.net; Max-Age=3600; Secure; SameSite=None
Transfer-Encoding: chunked
Vary: Accept-Encoding
X-Powered-By: ASP.NET
a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
193.0.160.129200 OK 42 B URL HTTP/1.1 a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
IP 193.0.160.129:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /cm?pub=445&in=0&forward=&google_error=3 HTTP/1.1
Host: a.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20836203p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:39 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rud=H4sIAAAAAAAA_-MSNjU0sDSzMDUzMjMwM7c0tDAwMBHiM9QtSA-ozEwscQqLCisFADpMjx8lAAAA; Path=/; Domain=.rfihub.com; Expires=Thu, 29 Feb 2024 14:52:39 GMT; Secure; SameSite=None
eud=H4sIAAAAAAAA_-NicjUO4jU0Mzc1NTIyNrU0MrMAAIncK5ATAAAA; Path=/; Domain=.rfihub.com; Expires=Thu, 29 Feb 2024 14:52:39 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0sDSzMDUzMjMwM7c0tDAwMBHiM9QtSA-ozEwscQqLCisFADpMjx8lAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
euds=H4sIAAAAAAAA_-NicjUGAEAxo38EAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
Cache-Control: no-cache
Content-Type: image/gif
Content-Length: 42
Server: Jetty(9.3.29.v20201019)
pagead2.googlesyndication.com/pagead/js/dv3.js
142.250.74.34200 OK 28 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/dv3.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (2314)
Hash a9b764530f2038275feda5cd4cde6cc3
7908a44cf18084368358906b4bf749c862e2817b
10d21dc8c464597ab1328e5bab0dad1c008bde4b4ce62faec6ca21ff6ff742b3
GET /pagead/js/dv3.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 04 Feb 2023 14:52:39 GMT
expires: Sat, 04 Feb 2023 14:52:39 GMT
cache-control: private, max-age=600
content-type: text/javascript; charset=UTF-8
etag: 3677590245327912432
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 27790
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.lightboxcdn.com/vendor/eba8a9c6-62bc-4f0f-974c-73a43da9c976/lightbox/5a05c4dc-9f42-468d-a135-e3fd121c9940/settings.js?cb=637904161864529138
104.19.212.131200 OK 3.8 kB URL HTTP/2 www.lightboxcdn.com/vendor/eba8a9c6-62bc-4f0f-974c-73a43da9c976/lightbox/5a05c4dc-9f42-468d-a135-e3fd121c9940/settings.js?cb=637904161864529138
IP 104.19.212.131:0
File type ASCII text, with very long lines (5094), with no line terminators
Hash e16b4ce1b0a400af34ccd4efa3e9fdeb
0028b4ac9fd889b3d778f8cbc7a0a3d0afc14ee2
2af52b274be66993dd64e9bbb1d7021e5a51e72f5104f72ab5da84b010d5e8a2
GET /vendor/eba8a9c6-62bc-4f0f-974c-73a43da9c976/lightbox/5a05c4dc-9f42-468d-a135-e3fd121c9940/settings.js?cb=637904161864529138 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:39 GMT
content-type: application/javascript
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=5098
content-md5: +OdHokImDbcJvya63XJ66Q==
last-modified: Wed, 13 Apr 2022 13:51:43 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 40c57dd1-b01e-0039-2c7d-7c5894000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 95600
expires: Sun, 04 Feb 2024 14:52:39 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 79443b39dca9b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 2cc647e206ce7b50f4948b2cf4a733e7
3b5c2df2426096306b1b1e380258840ba22f1735
962fe00e49661c9a5dd814f960442d339a909b5035e5ba72a14959f7f6885493
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 04 Feb 2023 14:52:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 04 Feb 2023 03:27:11 GMT
Expires: Sun, 05 Feb 2023 03:27:11 GMT
ETag: "3b5c2df2426096306b1b1e380258840ba22f1735"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5107433826326377396&forward=
185.80.36.245302 Found 0 B URL HTTP/1.1 dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5107433826326377396&forward=
IP 185.80.36.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=57&external_user_id=5107433826326377396&forward= HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sat, 04 Feb 2023 14:52:39 GMT
Server: Apache
Cache-Control: no-cache
Expires: 0
Location: /rum?cm_dsp_id=57&external_user_id=5107433826326377396&forward=&C=1
P3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Pragma: no-cache
Content-Length: 0
Set-Cookie: CMID=Y95xN40UTR8IvXtt-TOM5wAA; Path=/; Domain=casalemedia.com; Expires=Sun, 04 Feb 2024 14:52:39 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=1851; Path=/; Domain=casalemedia.com; Expires=Fri, 05 May 2023 14:52:39 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=1851; Path=/; Domain=casalemedia.com; Expires=Fri, 05 May 2023 14:52:39 GMT; Max-Age=7776000; Secure; SameSite=None
Keep-Alive: timeout=1, max=500
Connection: Keep-Alive
dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5107433826326377396&forward=&C=1
185.80.36.245200 OK 43 B URL HTTP/1.1 dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5107433826326377396&forward=&C=1
IP 185.80.36.245:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=57&external_user_id=5107433826326377396&forward=&C=1 HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20836203p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:39 GMT
Server: Apache
Cache-Control: no-cache
Content-Type: image/gif
Expires: 0
Pragma: no-cache
Content-Length: 43
Keep-Alive: timeout=1, max=499
Connection: Keep-Alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ea3c87317916cb5dda2fb170883f73ed
fc685911946826035f28c05d24647f9a81cadb2a
d196560f62262eed8127229586add6cfe54a3a53b660b7e9fa2d661152c0deee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D196560F62262EED8127229586ADD6CFE54A3A53B660B7E9FA2D661152C0DEEE"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16861
Expires: Sat, 04 Feb 2023 19:33:40 GMT
Date: Sat, 04 Feb 2023 14:52:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ea3c87317916cb5dda2fb170883f73ed
fc685911946826035f28c05d24647f9a81cadb2a
d196560f62262eed8127229586add6cfe54a3a53b660b7e9fa2d661152c0deee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D196560F62262EED8127229586ADD6CFE54A3A53B660B7E9FA2D661152C0DEEE"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16861
Expires: Sat, 04 Feb 2023 19:33:40 GMT
Date: Sat, 04 Feb 2023 14:52:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ea3c87317916cb5dda2fb170883f73ed
fc685911946826035f28c05d24647f9a81cadb2a
d196560f62262eed8127229586add6cfe54a3a53b660b7e9fa2d661152c0deee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D196560F62262EED8127229586ADD6CFE54A3A53B660B7E9FA2D661152C0DEEE"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16861
Expires: Sat, 04 Feb 2023 19:33:40 GMT
Date: Sat, 04 Feb 2023 14:52:39 GMT
Connection: keep-alive
www.lightboxcdn.com/vendor/eba8a9c6-62bc-4f0f-974c-73a43da9c976/lightbox_builder.js?cb=637904161864529138
104.19.212.131200 OK 49 kB URL HTTP/2 www.lightboxcdn.com/vendor/eba8a9c6-62bc-4f0f-974c-73a43da9c976/lightbox_builder.js?cb=637904161864529138
IP 104.19.212.131:0
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (4758)
Hash b8c4c879f0404006aee2d78ceda56948
d9b872af2b7df5a7fcc09e5150ebfd27ccb17678
c77ebd20299417cf6e75a303f8abf4fa622d23d14acd6c47acda802074f8a163
GET /vendor/eba8a9c6-62bc-4f0f-974c-73a43da9c976/lightbox_builder.js?cb=637904161864529138 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:39 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=435541
content-md5: ozzO164AZ/WWqVF/asvgyA==
last-modified: Fri, 10 Jun 2022 00:03:06 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: fb9ebeff-c01e-001f-6f60-7cc320000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 101083
expires: Sun, 04 Feb 2024 14:52:39 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 79443b3bdf1bb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
hal9000.redintelligence.net/zone/7lb6qbnvrhza?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCHcyUNnHeY-DRCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QE_0NGptlaSLPCQgXiRwCEkOEjBfRHfTpoK5TNjKfUf9bXAeuCkYjWYPzk4dYFGR5TTzFUHv91h8pjDTHU_HxAZA6-QKcZy_S31bLlzt85CSyrE7N_fF-Ah879PRtcAxi7BuS00yWscZX3bQCIhds3TWWsx-iUlbPwlFed1cDDMYLZg1JP1vB5nTFasC9Cl3_jXj31TtoyM5c8OlVKkHtFi7xpO8vvHAQF2Kwor8xBvK07FgJMSHh1YBhliQjaEgNCzMQTAd4rMFDa-fZNpATYuKp9Jm9s51mlUoUuL0odo5nO8ndbKgGAyGEuEBsiya2UFh8M6_3DfcEJVbFAJH9ulK1shz9l9l3X0SuK06lwXs5Ak2hwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_1OlpNg2nf3qWV7kbkmQwrqIZ4LEw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-DehfptCHDC741CeLI9XHkcXsgpWKnF8hVdya4wXbp5EkmOIRe7MUF95XAlnaBSpYF19SlWXor5P7O-VXG8AVg8mUchguetdL9EdwZ6ZrA3ekgE7swQb9ZdNP49f4Od0dLUrzhQSzvm7KkMk4FJ2tNmF-tVB8rcS_apZBwO8Y8XlH67iD4%26cry%3D1%26dbm_d%3DAKAmf-ACj9acjKsWWAwfTJBwXa9zTA-zpwqVQiYPwRE1yLIpzf-Yzl93zSM72FcjmPoiLIWqe6JkN7-6qXmYxPnXzjqjnHxMsMqJSXhr7ALM8SzgFSYlvo3PsGxS0kOPCb3cUGIBEe37Zh9qvcuZI8gPedLZxJF37z43WwHb1DysPoBA4qN41SYdu6Qe4Z6rtN-QNamaOMTWWKiy7OSIB0M_V3T-an41rGj8c1xXqjYH6t9dQBCFFdga48_w8Hopx70HDeawsewV_r0M9CG67HrnFCKlwt8Bl7tpxKY7F0zbyPH9uICvVWHyLzRUOtrHpvaXnLiunZErnca6rCTI5iirx9Ixsy2F7UWAUhY79C6kzJu3lVR7Zto46mhz6-_ARSKyBcyTx3SoIyyxBDCxIJmYFC06EO0HGgXQ9VTUF6jGKZvhSqEcKXYzcDN-rVqy9gPLDj_E5yoOdo_fMqC3HH1gIXyP-lSFo_gmHDYy2NNvfdSj35e3lKnDkyBSG6XTnqDYxpSanblqmSD7VxmJc2yVPg7cXNaqBN2aby3O8KiDofrb2SgybQMcsUhwa5Yu2MAAjaUqhlju4Rdm8EsnmzKvlttPOrGBzg%26adurl%3D
138.201.63.116200 OK 4.2 kB URL HTTP/1.1 hal9000.redintelligence.net/zone/7lb6qbnvrhza?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCHcyUNnHeY-DRCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QE_0NGptlaSLPCQgXiRwCEkOEjBfRHfTpoK5TNjKfUf9bXAeuCkYjWYPzk4dYFGR5TTzFUHv91h8pjDTHU_HxAZA6-QKcZy_S31bLlzt85CSyrE7N_fF-Ah879PRtcAxi7BuS00yWscZX3bQCIhds3TWWsx-iUlbPwlFed1cDDMYLZg1JP1vB5nTFasC9Cl3_jXj31TtoyM5c8OlVKkHtFi7xpO8vvHAQF2Kwor8xBvK07FgJMSHh1YBhliQjaEgNCzMQTAd4rMFDa-fZNpATYuKp9Jm9s51mlUoUuL0odo5nO8ndbKgGAyGEuEBsiya2UFh8M6_3DfcEJVbFAJH9ulK1shz9l9l3X0SuK06lwXs5Ak2hwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_1OlpNg2nf3qWV7kbkmQwrqIZ4LEw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-DehfptCHDC741CeLI9XHkcXsgpWKnF8hVdya4wXbp5EkmOIRe7MUF95XAlnaBSpYF19SlWXor5P7O-VXG8AVg8mUchguetdL9EdwZ6ZrA3ekgE7swQb9ZdNP49f4Od0dLUrzhQSzvm7KkMk4FJ2tNmF-tVB8rcS_apZBwO8Y8XlH67iD4%26cry%3D1%26dbm_d%3DAKAmf-ACj9acjKsWWAwfTJBwXa9zTA-zpwqVQiYPwRE1yLIpzf-Yzl93zSM72FcjmPoiLIWqe6JkN7-6qXmYxPnXzjqjnHxMsMqJSXhr7ALM8SzgFSYlvo3PsGxS0kOPCb3cUGIBEe37Zh9qvcuZI8gPedLZxJF37z43WwHb1DysPoBA4qN41SYdu6Qe4Z6rtN-QNamaOMTWWKiy7OSIB0M_V3T-an41rGj8c1xXqjYH6t9dQBCFFdga48_w8Hopx70HDeawsewV_r0M9CG67HrnFCKlwt8Bl7tpxKY7F0zbyPH9uICvVWHyLzRUOtrHpvaXnLiunZErnca6rCTI5iirx9Ixsy2F7UWAUhY79C6kzJu3lVR7Zto46mhz6-_ARSKyBcyTx3SoIyyxBDCxIJmYFC06EO0HGgXQ9VTUF6jGKZvhSqEcKXYzcDN-rVqy9gPLDj_E5yoOdo_fMqC3HH1gIXyP-lSFo_gmHDYy2NNvfdSj35e3lKnDkyBSG6XTnqDYxpSanblqmSD7VxmJc2yVPg7cXNaqBN2aby3O8KiDofrb2SgybQMcsUhwa5Yu2MAAjaUqhlju4Rdm8EsnmzKvlttPOrGBzg%26adurl%3D
IP 138.201.63.116:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1769), with CRLF line terminators
Hash 655190d9040bcc5a93ae03c3d4e2c54d
8cdc418e920a509304e976cc2c6482c1573d5b40
0f3efd1e39741ac48bb536fa51e6941bc210e81aba24ae0a4f38d097110a300c
GET /zone/7lb6qbnvrhza?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCHcyUNnHeY-DRCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QE_0NGptlaSLPCQgXiRwCEkOEjBfRHfTpoK5TNjKfUf9bXAeuCkYjWYPzk4dYFGR5TTzFUHv91h8pjDTHU_HxAZA6-QKcZy_S31bLlzt85CSyrE7N_fF-Ah879PRtcAxi7BuS00yWscZX3bQCIhds3TWWsx-iUlbPwlFed1cDDMYLZg1JP1vB5nTFasC9Cl3_jXj31TtoyM5c8OlVKkHtFi7xpO8vvHAQF2Kwor8xBvK07FgJMSHh1YBhliQjaEgNCzMQTAd4rMFDa-fZNpATYuKp9Jm9s51mlUoUuL0odo5nO8ndbKgGAyGEuEBsiya2UFh8M6_3DfcEJVbFAJH9ulK1shz9l9l3X0SuK06lwXs5Ak2hwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_1OlpNg2nf3qWV7kbkmQwrqIZ4LEw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-DehfptCHDC741CeLI9XHkcXsgpWKnF8hVdya4wXbp5EkmOIRe7MUF95XAlnaBSpYF19SlWXor5P7O-VXG8AVg8mUchguetdL9EdwZ6ZrA3ekgE7swQb9ZdNP49f4Od0dLUrzhQSzvm7KkMk4FJ2tNmF-tVB8rcS_apZBwO8Y8XlH67iD4%26cry%3D1%26dbm_d%3DAKAmf-ACj9acjKsWWAwfTJBwXa9zTA-zpwqVQiYPwRE1yLIpzf-Yzl93zSM72FcjmPoiLIWqe6JkN7-6qXmYxPnXzjqjnHxMsMqJSXhr7ALM8SzgFSYlvo3PsGxS0kOPCb3cUGIBEe37Zh9qvcuZI8gPedLZxJF37z43WwHb1DysPoBA4qN41SYdu6Qe4Z6rtN-QNamaOMTWWKiy7OSIB0M_V3T-an41rGj8c1xXqjYH6t9dQBCFFdga48_w8Hopx70HDeawsewV_r0M9CG67HrnFCKlwt8Bl7tpxKY7F0zbyPH9uICvVWHyLzRUOtrHpvaXnLiunZErnca6rCTI5iirx9Ixsy2F7UWAUhY79C6kzJu3lVR7Zto46mhz6-_ARSKyBcyTx3SoIyyxBDCxIJmYFC06EO0HGgXQ9VTUF6jGKZvhSqEcKXYzcDN-rVqy9gPLDj_E5yoOdo_fMqC3HH1gIXyP-lSFo_gmHDYy2NNvfdSj35e3lKnDkyBSG6XTnqDYxpSanblqmSD7VxmJc2yVPg7cXNaqBN2aby3O8KiDofrb2SgybQMcsUhwa5Yu2MAAjaUqhlju4Rdm8EsnmzKvlttPOrGBzg%26adurl%3D HTTP/1.1
Host: hal9000.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:39 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4172
Connection: close
Content-Type: text/html; charset=UTF-8
hal9000.redintelligence.net/zone/7lb6qbnvrhza?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCekruNnHeY8XTCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QWyHjAra0D778csD-Y5nIeg0Qm2tR9e6KEcFwtzLBL0UJgQEbzlKHLgsDrVBIrtzoXmBR2DA5OettUg4ov1CaEZK8LIu3XLPz46cTkFpqkhxaDj5Ijf5xyzPGEGiTu7HwhF_wCQWuqNnVAZ0C8JpU_mrKRq8OaPv6bnO6TLuhNuHRnDpvy41LKQxDJhzVh9umZJXlVclruZYTdT88zWO7MDZOOzK0DPfiE3DIJiD-uGFBG-lJ5WxQh-b9aDH35shm0toPbtoGLvpeJt1dEopMVQhX278qMXrnMaX5WIU0qjB7BJX72g7I6uTqOY1g-B_-Fg1wuOIyITsVuIkPlZm3h2ZFcmfuxA5dCAwfDT9PgsoZ1MhEwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_12Pvz-xxOF-b-h386_4S5Wy-s3-A%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-AHKD2sUSZBqPAb8W6qm4JThLo_-rwSLNQ81QAy0T86xa63rK6EXb1BogdLrNms52uFIOzzHOd_XYtXGnq9I8EYpAlQUHCTV1RZT9H4O2QeNedoYwqw5FCz6d7VeYdMsdLEz2lC7p82cuId15o9ajPwnZUI8fJ3K88Zt3euwO8ZyCMKV4o%26cry%3D1%26dbm_d%3DAKAmf-BpzlzzcDwoMLI5WlC8X5fVrRwt6Rw6BTcuFyskCFieNROoexv63wODavjPducyCgq0KfiTUpbDRgRZaKvznkpeMANx-xMozGBnrwwMeJgkevZK1G6LboxZ8MQuAmW2u6f769IPjFmiExsIhovqsK1cL3SaUnlYl3K7-UfcR-uwSCFq51hFjrgCmEoBinSiCAO1QTXbGLGGO3ty6cZmqf9Ayugnz4ZKTkd5cYore4AFoPsjNUS_kOKnqsQSXz7257VeNERxv8-ILZ_q1o063KNyw7qN9AvBhxhFCBowQ-b76315o-MjWy28gyXneM4ke8Rk8M4VdA5loSZ9aaCgj7_O-19FO4jdvgsEGNmtb_QLl7__GWz-ejyMZC2WTlCTAlzrk7HmijjC9jS9U-4Azg3rcjGtJXG8Ia_cFdNyZqonFrCYvqFnIj1lAVL2uplWTIE4QmSq9kHulJO9sbSYJb_j9sOSu3ZVbP7UR70PwcgPD1GWY8dqXgkDuLEm01aVIM3FVdd609HGUhO21OU0XBOqxld9u5sDnA5KIEgk-rQxNiWntNgXCqMbGhKuemjQ_XWjaPrsxANFtzgVU00ZrfqdhXOrLQ%26adurl%3D
138.201.63.116200 OK 4.2 kB URL HTTP/1.1 hal9000.redintelligence.net/zone/7lb6qbnvrhza?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCekruNnHeY8XTCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QWyHjAra0D778csD-Y5nIeg0Qm2tR9e6KEcFwtzLBL0UJgQEbzlKHLgsDrVBIrtzoXmBR2DA5OettUg4ov1CaEZK8LIu3XLPz46cTkFpqkhxaDj5Ijf5xyzPGEGiTu7HwhF_wCQWuqNnVAZ0C8JpU_mrKRq8OaPv6bnO6TLuhNuHRnDpvy41LKQxDJhzVh9umZJXlVclruZYTdT88zWO7MDZOOzK0DPfiE3DIJiD-uGFBG-lJ5WxQh-b9aDH35shm0toPbtoGLvpeJt1dEopMVQhX278qMXrnMaX5WIU0qjB7BJX72g7I6uTqOY1g-B_-Fg1wuOIyITsVuIkPlZm3h2ZFcmfuxA5dCAwfDT9PgsoZ1MhEwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_12Pvz-xxOF-b-h386_4S5Wy-s3-A%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-AHKD2sUSZBqPAb8W6qm4JThLo_-rwSLNQ81QAy0T86xa63rK6EXb1BogdLrNms52uFIOzzHOd_XYtXGnq9I8EYpAlQUHCTV1RZT9H4O2QeNedoYwqw5FCz6d7VeYdMsdLEz2lC7p82cuId15o9ajPwnZUI8fJ3K88Zt3euwO8ZyCMKV4o%26cry%3D1%26dbm_d%3DAKAmf-BpzlzzcDwoMLI5WlC8X5fVrRwt6Rw6BTcuFyskCFieNROoexv63wODavjPducyCgq0KfiTUpbDRgRZaKvznkpeMANx-xMozGBnrwwMeJgkevZK1G6LboxZ8MQuAmW2u6f769IPjFmiExsIhovqsK1cL3SaUnlYl3K7-UfcR-uwSCFq51hFjrgCmEoBinSiCAO1QTXbGLGGO3ty6cZmqf9Ayugnz4ZKTkd5cYore4AFoPsjNUS_kOKnqsQSXz7257VeNERxv8-ILZ_q1o063KNyw7qN9AvBhxhFCBowQ-b76315o-MjWy28gyXneM4ke8Rk8M4VdA5loSZ9aaCgj7_O-19FO4jdvgsEGNmtb_QLl7__GWz-ejyMZC2WTlCTAlzrk7HmijjC9jS9U-4Azg3rcjGtJXG8Ia_cFdNyZqonFrCYvqFnIj1lAVL2uplWTIE4QmSq9kHulJO9sbSYJb_j9sOSu3ZVbP7UR70PwcgPD1GWY8dqXgkDuLEm01aVIM3FVdd609HGUhO21OU0XBOqxld9u5sDnA5KIEgk-rQxNiWntNgXCqMbGhKuemjQ_XWjaPrsxANFtzgVU00ZrfqdhXOrLQ%26adurl%3D
IP 138.201.63.116:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1769), with CRLF line terminators
Hash eaeb4807ab1af9cc3baca429f69af776
ab2cec3f7907c8dcf591965d77a598c88ba72311
1aa80b027b3c57969d85a302dc8dbba67ad9c96cae89d61a3d6e3e9dd5d8562b
GET /zone/7lb6qbnvrhza?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCekruNnHeY8XTCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QWyHjAra0D778csD-Y5nIeg0Qm2tR9e6KEcFwtzLBL0UJgQEbzlKHLgsDrVBIrtzoXmBR2DA5OettUg4ov1CaEZK8LIu3XLPz46cTkFpqkhxaDj5Ijf5xyzPGEGiTu7HwhF_wCQWuqNnVAZ0C8JpU_mrKRq8OaPv6bnO6TLuhNuHRnDpvy41LKQxDJhzVh9umZJXlVclruZYTdT88zWO7MDZOOzK0DPfiE3DIJiD-uGFBG-lJ5WxQh-b9aDH35shm0toPbtoGLvpeJt1dEopMVQhX278qMXrnMaX5WIU0qjB7BJX72g7I6uTqOY1g-B_-Fg1wuOIyITsVuIkPlZm3h2ZFcmfuxA5dCAwfDT9PgsoZ1MhEwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_12Pvz-xxOF-b-h386_4S5Wy-s3-A%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-AHKD2sUSZBqPAb8W6qm4JThLo_-rwSLNQ81QAy0T86xa63rK6EXb1BogdLrNms52uFIOzzHOd_XYtXGnq9I8EYpAlQUHCTV1RZT9H4O2QeNedoYwqw5FCz6d7VeYdMsdLEz2lC7p82cuId15o9ajPwnZUI8fJ3K88Zt3euwO8ZyCMKV4o%26cry%3D1%26dbm_d%3DAKAmf-BpzlzzcDwoMLI5WlC8X5fVrRwt6Rw6BTcuFyskCFieNROoexv63wODavjPducyCgq0KfiTUpbDRgRZaKvznkpeMANx-xMozGBnrwwMeJgkevZK1G6LboxZ8MQuAmW2u6f769IPjFmiExsIhovqsK1cL3SaUnlYl3K7-UfcR-uwSCFq51hFjrgCmEoBinSiCAO1QTXbGLGGO3ty6cZmqf9Ayugnz4ZKTkd5cYore4AFoPsjNUS_kOKnqsQSXz7257VeNERxv8-ILZ_q1o063KNyw7qN9AvBhxhFCBowQ-b76315o-MjWy28gyXneM4ke8Rk8M4VdA5loSZ9aaCgj7_O-19FO4jdvgsEGNmtb_QLl7__GWz-ejyMZC2WTlCTAlzrk7HmijjC9jS9U-4Azg3rcjGtJXG8Ia_cFdNyZqonFrCYvqFnIj1lAVL2uplWTIE4QmSq9kHulJO9sbSYJb_j9sOSu3ZVbP7UR70PwcgPD1GWY8dqXgkDuLEm01aVIM3FVdd609HGUhO21OU0XBOqxld9u5sDnA5KIEgk-rQxNiWntNgXCqMbGhKuemjQ_XWjaPrsxANFtzgVU00ZrfqdhXOrLQ%26adurl%3D HTTP/1.1
Host: hal9000.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:39 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4174
Connection: close
Content-Type: text/html; charset=UTF-8
hal9000.redintelligence.net/zone/iy8ik46abdx9?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCoDdANnHeY97SCvOWxdwP57evuAfJuaKcabyvzc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSaAk_QGsa1O_pMuu3jwHTa0sv4UQT4ZheKu5O9I-zVl9qsvxmNRmvDj9jxkn-D5l0UP6TKz1VMQQUVio_opHxs_jlJPC4-us_btD59t3NF6xKj__xRR9JAnBlRfR7xQFITqq-ccaI_bWv6wU8-aSMOEaBlW5TPLhvTDLu1sN6JqAutxilT5xsAcEx-BuVBmheOulRlPD4CQmSJSQIfEEn9u02SU80C_uNB1Bf7BsTa9unTskwGUnri5ZuFXSGyKpgKwoNhfipQHuymrMeK2jATI1DsKnmkoZZDP1qrEkdgh9om66XgYMB6EZp1ua2A7864vnjYdI7EG8nFbmLlTdeJBN3L9JqwY5kA5eiwsxCTF9xwtfw1JbmcA1BU2MAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_38qNiStEzv-NDrU8QqpjfHs0cKRw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-CiD7JR3R-zbBmGrB8SFOjt4sV5MmVjtMxecRUxA92chk8edCly3RJ6ISRfi7Zv_th_HefAqtv4Z7xmrU9FkptaKSFLMgqWhXgaaHArguc9Sy1Gl4IUckQsxMEUw1F0S8TWJGcuFMYb2K76tUAI0nFVcKoflsbh8RhU5brNO3fJ3vzylDU%26cry%3D1%26dbm_d%3DAKAmf-A-kDYjFq7xGdcK-QHbZLDY14-NyvWIkZ_9BIbcf_grv3l0AeuSyPVyLHdyr1jqkVxptyYXWoqFBtOPo8S_XH24PyNUJ9R1ZJEZkILFnTLVWoENDakXwDvwleVa6AxRKuDN5IMs6yIztkc3fstLSrJRGrYzFszVX0xay8Q_kYrR2ia4WZVNBc6SbpX8IhtZmwsOnUbFHMVlRgb8q7WdrVz-PJym9cQXfEgIx_AkNm8Pw_Qma5XzbWc9mtlEnaAdi8k0W78mYmoIh4dtgmT_1M9LUumfNw-WFUtE-lTFze5HlJ-4AQOFfdENUKxcrfXgkN4rHOSGyoAE3TQsHCpMYUijDZzQ_uQxGOxI5-NiQrLOPB3aoc5xwCQ-3f3O2F5Kqo7jxRQT9-oW-6bcgAt0qKZbLhRuMIEqEUUK2MsCGAOzSsc-pL9NvG94Vugm1ugzlUMG58rN9B_l068mN-hE64q15VSCTWEN8ItBGHf7Lof-3z3RwpDHlVzfXsCYon01DgZfZmXvg8hBACdaaC1En4G0F1FpLk5pK0G-WLjmPAIQhpTwAbNmvzbSo47PaZHoJUGXPebGlBSqG6wM3HGiRthzOMO02A%26adurl%3D
138.201.63.116200 OK 4.2 kB URL HTTP/1.1 hal9000.redintelligence.net/zone/iy8ik46abdx9?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCoDdANnHeY97SCvOWxdwP57evuAfJuaKcabyvzc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSaAk_QGsa1O_pMuu3jwHTa0sv4UQT4ZheKu5O9I-zVl9qsvxmNRmvDj9jxkn-D5l0UP6TKz1VMQQUVio_opHxs_jlJPC4-us_btD59t3NF6xKj__xRR9JAnBlRfR7xQFITqq-ccaI_bWv6wU8-aSMOEaBlW5TPLhvTDLu1sN6JqAutxilT5xsAcEx-BuVBmheOulRlPD4CQmSJSQIfEEn9u02SU80C_uNB1Bf7BsTa9unTskwGUnri5ZuFXSGyKpgKwoNhfipQHuymrMeK2jATI1DsKnmkoZZDP1qrEkdgh9om66XgYMB6EZp1ua2A7864vnjYdI7EG8nFbmLlTdeJBN3L9JqwY5kA5eiwsxCTF9xwtfw1JbmcA1BU2MAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_38qNiStEzv-NDrU8QqpjfHs0cKRw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-CiD7JR3R-zbBmGrB8SFOjt4sV5MmVjtMxecRUxA92chk8edCly3RJ6ISRfi7Zv_th_HefAqtv4Z7xmrU9FkptaKSFLMgqWhXgaaHArguc9Sy1Gl4IUckQsxMEUw1F0S8TWJGcuFMYb2K76tUAI0nFVcKoflsbh8RhU5brNO3fJ3vzylDU%26cry%3D1%26dbm_d%3DAKAmf-A-kDYjFq7xGdcK-QHbZLDY14-NyvWIkZ_9BIbcf_grv3l0AeuSyPVyLHdyr1jqkVxptyYXWoqFBtOPo8S_XH24PyNUJ9R1ZJEZkILFnTLVWoENDakXwDvwleVa6AxRKuDN5IMs6yIztkc3fstLSrJRGrYzFszVX0xay8Q_kYrR2ia4WZVNBc6SbpX8IhtZmwsOnUbFHMVlRgb8q7WdrVz-PJym9cQXfEgIx_AkNm8Pw_Qma5XzbWc9mtlEnaAdi8k0W78mYmoIh4dtgmT_1M9LUumfNw-WFUtE-lTFze5HlJ-4AQOFfdENUKxcrfXgkN4rHOSGyoAE3TQsHCpMYUijDZzQ_uQxGOxI5-NiQrLOPB3aoc5xwCQ-3f3O2F5Kqo7jxRQT9-oW-6bcgAt0qKZbLhRuMIEqEUUK2MsCGAOzSsc-pL9NvG94Vugm1ugzlUMG58rN9B_l068mN-hE64q15VSCTWEN8ItBGHf7Lof-3z3RwpDHlVzfXsCYon01DgZfZmXvg8hBACdaaC1En4G0F1FpLk5pK0G-WLjmPAIQhpTwAbNmvzbSo47PaZHoJUGXPebGlBSqG6wM3HGiRthzOMO02A%26adurl%3D
IP 138.201.63.116:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1775), with CRLF line terminators
Hash d990c3649268b8ba49d7366e560e4dcd
e8d4ba915c89504f35eeafcbd9500faac3b4851f
95a564ce3295fc79997045cdc52a0c725a6e4b92d111849385cdebdecf48cf51
GET /zone/iy8ik46abdx9?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCoDdANnHeY97SCvOWxdwP57evuAfJuaKcabyvzc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSaAk_QGsa1O_pMuu3jwHTa0sv4UQT4ZheKu5O9I-zVl9qsvxmNRmvDj9jxkn-D5l0UP6TKz1VMQQUVio_opHxs_jlJPC4-us_btD59t3NF6xKj__xRR9JAnBlRfR7xQFITqq-ccaI_bWv6wU8-aSMOEaBlW5TPLhvTDLu1sN6JqAutxilT5xsAcEx-BuVBmheOulRlPD4CQmSJSQIfEEn9u02SU80C_uNB1Bf7BsTa9unTskwGUnri5ZuFXSGyKpgKwoNhfipQHuymrMeK2jATI1DsKnmkoZZDP1qrEkdgh9om66XgYMB6EZp1ua2A7864vnjYdI7EG8nFbmLlTdeJBN3L9JqwY5kA5eiwsxCTF9xwtfw1JbmcA1BU2MAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_38qNiStEzv-NDrU8QqpjfHs0cKRw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-CiD7JR3R-zbBmGrB8SFOjt4sV5MmVjtMxecRUxA92chk8edCly3RJ6ISRfi7Zv_th_HefAqtv4Z7xmrU9FkptaKSFLMgqWhXgaaHArguc9Sy1Gl4IUckQsxMEUw1F0S8TWJGcuFMYb2K76tUAI0nFVcKoflsbh8RhU5brNO3fJ3vzylDU%26cry%3D1%26dbm_d%3DAKAmf-A-kDYjFq7xGdcK-QHbZLDY14-NyvWIkZ_9BIbcf_grv3l0AeuSyPVyLHdyr1jqkVxptyYXWoqFBtOPo8S_XH24PyNUJ9R1ZJEZkILFnTLVWoENDakXwDvwleVa6AxRKuDN5IMs6yIztkc3fstLSrJRGrYzFszVX0xay8Q_kYrR2ia4WZVNBc6SbpX8IhtZmwsOnUbFHMVlRgb8q7WdrVz-PJym9cQXfEgIx_AkNm8Pw_Qma5XzbWc9mtlEnaAdi8k0W78mYmoIh4dtgmT_1M9LUumfNw-WFUtE-lTFze5HlJ-4AQOFfdENUKxcrfXgkN4rHOSGyoAE3TQsHCpMYUijDZzQ_uQxGOxI5-NiQrLOPB3aoc5xwCQ-3f3O2F5Kqo7jxRQT9-oW-6bcgAt0qKZbLhRuMIEqEUUK2MsCGAOzSsc-pL9NvG94Vugm1ugzlUMG58rN9B_l068mN-hE64q15VSCTWEN8ItBGHf7Lof-3z3RwpDHlVzfXsCYon01DgZfZmXvg8hBACdaaC1En4G0F1FpLk5pK0G-WLjmPAIQhpTwAbNmvzbSo47PaZHoJUGXPebGlBSqG6wM3HGiRthzOMO02A%26adurl%3D HTTP/1.1
Host: hal9000.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:39 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4175
Connection: close
Content-Type: text/html; charset=UTF-8
cdn.jsdelivr.net/fancybox/2.1.5/fancybox_sprite.png
151.101.193.229200 OK 1.4 kB URL HTTP/2 cdn.jsdelivr.net/fancybox/2.1.5/fancybox_sprite.png
IP 151.101.193.229:0
File type PNG image data, 44 x 152, 8-bit colormap, non-interlaced\012- data
Hash 783d4031fe50c3d83c960911e1fbc705
17df19f97628e77be09c352bf27425faea248251
b9d6fddb0988440902fcfc72f371ecfa80ee2eb36073f9eebc17449ee41c886f
GET /fancybox/2.1.5/fancybox_sprite.png HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/png
etag: W/"552-F98Z+XYo53vgnDUr8nQl+uokglE"
accept-ranges: bytes
date: Sat, 04 Feb 2023 14:52:39 GMT
age: 2736935
x-served-by: cache-fra-eddf8230025-FRA, cache-bma1646-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1362
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.21.226:0
Hash 3f1298a3f4c8e95b2e34cb93bfec5618
1266b23eb82c477097f64121f7024bb35f71a97a
820b85857612bb493339ad04e8fa9918051c493bd6137a884b2b27bf1e21dda7
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:39 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "83483EA3232B710F0672FDAC1EA996F25EF4D05D"
Expires: Sun, 05 Feb 2023 01:00:00 GMT
Last-Modified: Sat, 04 Feb 2023 13:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2928
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79443b3d580bfab4-OSL
ping.chartbeat.net/ping?h=rollcall.com&p=%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&u=Ml2iBCHiGWdCoCeuK&d=rollcall.com&g=46806&g0=Policy&g1=Emily%20Kopp&n=1&f=00001&c=0.04&x=0&m=0&y=8923&o=1268&w=939&j=30&R=1&W=0&I=0&E=1&e=1&r=&PA=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&b=4278&t=CzublaDPuQUHC5dDxnDf0tG0C-59y7&V=139&tz=0&_vi=N95%20masks%20are%20piling%20up%20as%20nurses%20reuse%20PPE&_vp=GrnuZCHr&_vdd=video%40rollcall.com&_vs=s1&_vt=ct&_vap=&_vtn=https%3A%2F%2Fcdn.jwplayer.com%2Fv2%2Fmedia%2FGrnuZCHr%2Fposter.jpg%3Fwidth%3D720&sn=2&sv=CTmNHpCQ1A9tBOZA3qCiTABLCNhGrX&sd=1&im=067b2ff3&_
18.213.167.233200 OK 43 B URL HTTP/2 ping.chartbeat.net/ping?h=rollcall.com&p=%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&u=Ml2iBCHiGWdCoCeuK&d=rollcall.com&g=46806&g0=Policy&g1=Emily%20Kopp&n=1&f=00001&c=0.04&x=0&m=0&y=8923&o=1268&w=939&j=30&R=1&W=0&I=0&E=1&e=1&r=&PA=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&b=4278&t=CzublaDPuQUHC5dDxnDf0tG0C-59y7&V=139&tz=0&_vi=N95%20masks%20are%20piling%20up%20as%20nurses%20reuse%20PPE&_vp=GrnuZCHr&_vdd=video%40rollcall.com&_vs=s1&_vt=ct&_vap=&_vtn=https%3A%2F%2Fcdn.jwplayer.com%2Fv2%2Fmedia%2FGrnuZCHr%2Fposter.jpg%3Fwidth%3D720&sn=2&sv=CTmNHpCQ1A9tBOZA3qCiTABLCNhGrX&sd=1&im=067b2ff3&_
IP 18.213.167.233:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /ping?h=rollcall.com&p=%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&u=Ml2iBCHiGWdCoCeuK&d=rollcall.com&g=46806&g0=Policy&g1=Emily%20Kopp&n=1&f=00001&c=0.04&x=0&m=0&y=8923&o=1268&w=939&j=30&R=1&W=0&I=0&E=1&e=1&r=&PA=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&b=4278&t=CzublaDPuQUHC5dDxnDf0tG0C-59y7&V=139&tz=0&_vi=N95%20masks%20are%20piling%20up%20as%20nurses%20reuse%20PPE&_vp=GrnuZCHr&_vdd=video%40rollcall.com&_vs=s1&_vt=ct&_vap=&_vtn=https%3A%2F%2Fcdn.jwplayer.com%2Fv2%2Fmedia%2FGrnuZCHr%2Fposter.jpg%3Fwidth%3D720&sn=2&sv=CTmNHpCQ1A9tBOZA3qCiTABLCNhGrX&sd=1&im=067b2ff3&_ HTTP/1.1
Host: ping.chartbeat.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:40 GMT
content-type: image/gif
content-length: 43
cross-origin-resource-policy: cross-origin
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
www.lightboxcdn.com/vendor/eba8a9c6-62bc-4f0f-974c-73a43da9c976/user.js?cb=638100992747644098
104.19.212.131200 OK 160 kB URL HTTP/2 www.lightboxcdn.com/vendor/eba8a9c6-62bc-4f0f-974c-73a43da9c976/user.js?cb=638100992747644098
IP 104.19.212.131:0
File type ASCII text, with very long lines (17948)
Size 160 kB (159741 bytes)
Hash 3f52d5cc52bb34784b845110a1ea69be
62dee714d3366ba40f8707c8e9a05138fe73fbfb
1ef2e56a2b313463022855153a96b8152662376bbebbc1c368bac630270690e9
GET /vendor/eba8a9c6-62bc-4f0f-974c-73a43da9c976/user.js?cb=638100992747644098 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:38 GMT
content-type: application/javascript
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=1234533
content-md5: ySfA6q43ypyUnTslU+3ClQ==
last-modified: Fri, 10 Jun 2022 00:03:06 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 4a2a6b61-201e-003c-2b67-2faceb000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 411547
expires: Sun, 04 Feb 2024 14:52:38 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 79443b332c36b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=158314
2.18.172.200200 OK 5.6 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=158314
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15889), with no line terminators
Hash 18a6bc0e051c0767f814f63ff07e65f9
8fbe4eb399d8501b90276723d38c9ffb4ab483fa
26341482a8d6c8384b2cb91aba95833ac2002bd284ff690adbd2009bf76cb95b
GET /AdServer/js/user_sync.html?kdntuid=1&p=158314 HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 06:36:49 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5554
content-type: text/html
cache-control: max-age=156479
expires: Mon, 06 Feb 2023 10:20:39 GMT
date: Sat, 04 Feb 2023 14:52:40 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
hal90005.redintelligence.net/request.php?zone=7lb6qbnvrhza&nw=20&renderingType=javascript&namespace=ff70011fff&subid=&uid=07974b6025108802&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=728x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCHcyUNnHeY-DRCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QE_0NGptlaSLPCQgXiRwCEkOEjBfRHfTpoK5TNjKfUf9bXAeuCkYjWYPzk4dYFGR5TTzFUHv91h8pjDTHU_HxAZA6-QKcZy_S31bLlzt85CSyrE7N_fF-Ah879PRtcAxi7BuS00yWscZX3bQCIhds3TWWsx-iUlbPwlFed1cDDMYLZg1JP1vB5nTFasC9Cl3_jXj31TtoyM5c8OlVKkHtFi7xpO8vvHAQF2Kwor8xBvK07FgJMSHh1YBhliQjaEgNCzMQTAd4rMFDa-fZNpATYuKp9Jm9s51mlUoUuL0odo5nO8ndbKgGAyGEuEBsiya2UFh8M6_3DfcEJVbFAJH9ulK1shz9l9l3X0SuK06lwXs5Ak2hwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_1OlpNg2nf3qWV7kbkmQwrqIZ4LEw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-DehfptCHDC741CeLI9XHkcXsgpWKnF8hVdya4wXbp5EkmOIRe7MUF95XAlnaBSpYF19SlWXor5P7O-VXG8AVg8mUchguetdL9EdwZ6ZrA3ekgE7swQb9ZdNP49f4Od0dLUrzhQSzvm7KkMk4FJ2tNmF-tVB8rcS_apZBwO8Y8XlH67iD4%26cry%3D1%26dbm_d%3DAKAmf-ACj9acjKsWWAwfTJBwXa9zTA-zpwqVQiYPwRE1yLIpzf-Yzl93zSM72FcjmPoiLIWqe6JkN7-6qXmYxPnXzjqjnHxMsMqJSXhr7ALM8SzgFSYlvo3PsGxS0kOPCb3cUGIBEe37Zh9qvcuZI8gPedLZxJF37z43WwHb1DysPoBA4qN41SYdu6Qe4Z6rtN-QNamaOMTWWKiy7OSIB0M_V3T-an41rGj8c1xXqjYH6t9dQBCFFdga48_w8Hopx70HDeawsewV_r0M9CG67HrnFCKlwt8Bl7tpxKY7F0zbyPH9uICvVWHyLzRUOtrHpvaXnLiunZErnca6rCTI5iirx9Ixsy2F7UWAUhY79C6kzJu3lVR7Zto46mhz6-_ARSKyBcyTx3SoIyyxBDCxIJmYFC06EO0HGgXQ9VTUF6jGKZvhSqEcKXYzcDN-rVqy9gPLDj_E5yoOdo_fMqC3HH1gIXyP-lSFo_gmHDYy2NNvfdSj35e3lKnDkyBSG6XTnqDYxpSanblqmSD7VxmJc2yVPg7cXNaqBN2aby3O8KiDofrb2SgybQMcsUhwa5Yu2MAAjaUqhlju4Rdm8EsnmzKvlttPOrGBzg%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=3487928759106&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
138.201.63.165302 Found 0 B URL HTTP/1.1 hal90005.redintelligence.net/request.php?zone=7lb6qbnvrhza&nw=20&renderingType=javascript&namespace=ff70011fff&subid=&uid=07974b6025108802&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=728x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCHcyUNnHeY-DRCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QE_0NGptlaSLPCQgXiRwCEkOEjBfRHfTpoK5TNjKfUf9bXAeuCkYjWYPzk4dYFGR5TTzFUHv91h8pjDTHU_HxAZA6-QKcZy_S31bLlzt85CSyrE7N_fF-Ah879PRtcAxi7BuS00yWscZX3bQCIhds3TWWsx-iUlbPwlFed1cDDMYLZg1JP1vB5nTFasC9Cl3_jXj31TtoyM5c8OlVKkHtFi7xpO8vvHAQF2Kwor8xBvK07FgJMSHh1YBhliQjaEgNCzMQTAd4rMFDa-fZNpATYuKp9Jm9s51mlUoUuL0odo5nO8ndbKgGAyGEuEBsiya2UFh8M6_3DfcEJVbFAJH9ulK1shz9l9l3X0SuK06lwXs5Ak2hwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_1OlpNg2nf3qWV7kbkmQwrqIZ4LEw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-DehfptCHDC741CeLI9XHkcXsgpWKnF8hVdya4wXbp5EkmOIRe7MUF95XAlnaBSpYF19SlWXor5P7O-VXG8AVg8mUchguetdL9EdwZ6ZrA3ekgE7swQb9ZdNP49f4Od0dLUrzhQSzvm7KkMk4FJ2tNmF-tVB8rcS_apZBwO8Y8XlH67iD4%26cry%3D1%26dbm_d%3DAKAmf-ACj9acjKsWWAwfTJBwXa9zTA-zpwqVQiYPwRE1yLIpzf-Yzl93zSM72FcjmPoiLIWqe6JkN7-6qXmYxPnXzjqjnHxMsMqJSXhr7ALM8SzgFSYlvo3PsGxS0kOPCb3cUGIBEe37Zh9qvcuZI8gPedLZxJF37z43WwHb1DysPoBA4qN41SYdu6Qe4Z6rtN-QNamaOMTWWKiy7OSIB0M_V3T-an41rGj8c1xXqjYH6t9dQBCFFdga48_w8Hopx70HDeawsewV_r0M9CG67HrnFCKlwt8Bl7tpxKY7F0zbyPH9uICvVWHyLzRUOtrHpvaXnLiunZErnca6rCTI5iirx9Ixsy2F7UWAUhY79C6kzJu3lVR7Zto46mhz6-_ARSKyBcyTx3SoIyyxBDCxIJmYFC06EO0HGgXQ9VTUF6jGKZvhSqEcKXYzcDN-rVqy9gPLDj_E5yoOdo_fMqC3HH1gIXyP-lSFo_gmHDYy2NNvfdSj35e3lKnDkyBSG6XTnqDYxpSanblqmSD7VxmJc2yVPg7cXNaqBN2aby3O8KiDofrb2SgybQMcsUhwa5Yu2MAAjaUqhlju4Rdm8EsnmzKvlttPOrGBzg%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=3487928759106&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
IP 138.201.63.165:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /request.php?zone=7lb6qbnvrhza&nw=20&renderingType=javascript&namespace=ff70011fff&subid=&uid=07974b6025108802&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=728x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCHcyUNnHeY-DRCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QE_0NGptlaSLPCQgXiRwCEkOEjBfRHfTpoK5TNjKfUf9bXAeuCkYjWYPzk4dYFGR5TTzFUHv91h8pjDTHU_HxAZA6-QKcZy_S31bLlzt85CSyrE7N_fF-Ah879PRtcAxi7BuS00yWscZX3bQCIhds3TWWsx-iUlbPwlFed1cDDMYLZg1JP1vB5nTFasC9Cl3_jXj31TtoyM5c8OlVKkHtFi7xpO8vvHAQF2Kwor8xBvK07FgJMSHh1YBhliQjaEgNCzMQTAd4rMFDa-fZNpATYuKp9Jm9s51mlUoUuL0odo5nO8ndbKgGAyGEuEBsiya2UFh8M6_3DfcEJVbFAJH9ulK1shz9l9l3X0SuK06lwXs5Ak2hwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_1OlpNg2nf3qWV7kbkmQwrqIZ4LEw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-DehfptCHDC741CeLI9XHkcXsgpWKnF8hVdya4wXbp5EkmOIRe7MUF95XAlnaBSpYF19SlWXor5P7O-VXG8AVg8mUchguetdL9EdwZ6ZrA3ekgE7swQb9ZdNP49f4Od0dLUrzhQSzvm7KkMk4FJ2tNmF-tVB8rcS_apZBwO8Y8XlH67iD4%26cry%3D1%26dbm_d%3DAKAmf-ACj9acjKsWWAwfTJBwXa9zTA-zpwqVQiYPwRE1yLIpzf-Yzl93zSM72FcjmPoiLIWqe6JkN7-6qXmYxPnXzjqjnHxMsMqJSXhr7ALM8SzgFSYlvo3PsGxS0kOPCb3cUGIBEe37Zh9qvcuZI8gPedLZxJF37z43WwHb1DysPoBA4qN41SYdu6Qe4Z6rtN-QNamaOMTWWKiy7OSIB0M_V3T-an41rGj8c1xXqjYH6t9dQBCFFdga48_w8Hopx70HDeawsewV_r0M9CG67HrnFCKlwt8Bl7tpxKY7F0zbyPH9uICvVWHyLzRUOtrHpvaXnLiunZErnca6rCTI5iirx9Ixsy2F7UWAUhY79C6kzJu3lVR7Zto46mhz6-_ARSKyBcyTx3SoIyyxBDCxIJmYFC06EO0HGgXQ9VTUF6jGKZvhSqEcKXYzcDN-rVqy9gPLDj_E5yoOdo_fMqC3HH1gIXyP-lSFo_gmHDYy2NNvfdSj35e3lKnDkyBSG6XTnqDYxpSanblqmSD7VxmJc2yVPg7cXNaqBN2aby3O8KiDofrb2SgybQMcsUhwa5Yu2MAAjaUqhlju4Rdm8EsnmzKvlttPOrGBzg%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=3487928759106&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0 HTTP/1.1
Host: hal90005.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sat, 04 Feb 2023 14:52:40 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 04 Feb 2023 14:52:40 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=f8e842c05c4c7c5d; expires=Fri, 05-May-2023 14:52:40 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
Location: request.php?zone=7lb6qbnvrhza&nw=20&renderingType=javascript&namespace=ff70011fff&subid=&uid=07974b6025108802&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=728x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCHcyUNnHeY-DRCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QE_0NGptlaSLPCQgXiRwCEkOEjBfRHfTpoK5TNjKfUf9bXAeuCkYjWYPzk4dYFGR5TTzFUHv91h8pjDTHU_HxAZA6-QKcZy_S31bLlzt85CSyrE7N_fF-Ah879PRtcAxi7BuS00yWscZX3bQCIhds3TWWsx-iUlbPwlFed1cDDMYLZg1JP1vB5nTFasC9Cl3_jXj31TtoyM5c8OlVKkHtFi7xpO8vvHAQF2Kwor8xBvK07FgJMSHh1YBhliQjaEgNCzMQTAd4rMFDa-fZNpATYuKp9Jm9s51mlUoUuL0odo5nO8ndbKgGAyGEuEBsiya2UFh8M6_3DfcEJVbFAJH9ulK1shz9l9l3X0SuK06lwXs5Ak2hwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_1OlpNg2nf3qWV7kbkmQwrqIZ4LEw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-DehfptCHDC741CeLI9XHkcXsgpWKnF8hVdya4wXbp5EkmOIRe7MUF95XAlnaBSpYF19SlWXor5P7O-VXG8AVg8mUchguetdL9EdwZ6ZrA3ekgE7swQb9ZdNP49f4Od0dLUrzhQSzvm7KkMk4FJ2tNmF-tVB8rcS_apZBwO8Y8XlH67iD4%26cry%3D1%26dbm_d%3DAKAmf-ACj9acjKsWWAwfTJBwXa9zTA-zpwqVQiYPwRE1yLIpzf-Yzl93zSM72FcjmPoiLIWqe6JkN7-6qXmYxPnXzjqjnHxMsMqJSXhr7ALM8SzgFSYlvo3PsGxS0kOPCb3cUGIBEe37Zh9qvcuZI8gPedLZxJF37z43WwHb1DysPoBA4qN41SYdu6Qe4Z6rtN-QNamaOMTWWKiy7OSIB0M_V3T-an41rGj8c1xXqjYH6t9dQBCFFdga48_w8Hopx70HDeawsewV_r0M9CG67HrnFCKlwt8Bl7tpxKY7F0zbyPH9uICvVWHyLzRUOtrHpvaXnLiunZErnca6rCTI5iirx9Ixsy2F7UWAUhY79C6kzJu3lVR7Zto46mhz6-_ARSKyBcyTx3SoIyyxBDCxIJmYFC06EO0HGgXQ9VTUF6jGKZvhSqEcKXYzcDN-rVqy9gPLDj_E5yoOdo_fMqC3HH1gIXyP-lSFo_gmHDYy2NNvfdSj35e3lKnDkyBSG6XTnqDYxpSanblqmSD7VxmJc2yVPg7cXNaqBN2aby3O8KiDofrb2SgybQMcsUhwa5Yu2MAAjaUqhlju4Rdm8EsnmzKvlttPOrGBzg%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=3487928759106&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
hal900017.redintelligence.net/request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=1273da29db&subid=&uid=c72e0f4a0b4455b7&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCoDdANnHeY97SCvOWxdwP57evuAfJuaKcabyvzc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSaAk_QGsa1O_pMuu3jwHTa0sv4UQT4ZheKu5O9I-zVl9qsvxmNRmvDj9jxkn-D5l0UP6TKz1VMQQUVio_opHxs_jlJPC4-us_btD59t3NF6xKj__xRR9JAnBlRfR7xQFITqq-ccaI_bWv6wU8-aSMOEaBlW5TPLhvTDLu1sN6JqAutxilT5xsAcEx-BuVBmheOulRlPD4CQmSJSQIfEEn9u02SU80C_uNB1Bf7BsTa9unTskwGUnri5ZuFXSGyKpgKwoNhfipQHuymrMeK2jATI1DsKnmkoZZDP1qrEkdgh9om66XgYMB6EZp1ua2A7864vnjYdI7EG8nFbmLlTdeJBN3L9JqwY5kA5eiwsxCTF9xwtfw1JbmcA1BU2MAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_38qNiStEzv-NDrU8QqpjfHs0cKRw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-CiD7JR3R-zbBmGrB8SFOjt4sV5MmVjtMxecRUxA92chk8edCly3RJ6ISRfi7Zv_th_HefAqtv4Z7xmrU9FkptaKSFLMgqWhXgaaHArguc9Sy1Gl4IUckQsxMEUw1F0S8TWJGcuFMYb2K76tUAI0nFVcKoflsbh8RhU5brNO3fJ3vzylDU%26cry%3D1%26dbm_d%3DAKAmf-A-kDYjFq7xGdcK-QHbZLDY14-NyvWIkZ_9BIbcf_grv3l0AeuSyPVyLHdyr1jqkVxptyYXWoqFBtOPo8S_XH24PyNUJ9R1ZJEZkILFnTLVWoENDakXwDvwleVa6AxRKuDN5IMs6yIztkc3fstLSrJRGrYzFszVX0xay8Q_kYrR2ia4WZVNBc6SbpX8IhtZmwsOnUbFHMVlRgb8q7WdrVz-PJym9cQXfEgIx_AkNm8Pw_Qma5XzbWc9mtlEnaAdi8k0W78mYmoIh4dtgmT_1M9LUumfNw-WFUtE-lTFze5HlJ-4AQOFfdENUKxcrfXgkN4rHOSGyoAE3TQsHCpMYUijDZzQ_uQxGOxI5-NiQrLOPB3aoc5xwCQ-3f3O2F5Kqo7jxRQT9-oW-6bcgAt0qKZbLhRuMIEqEUUK2MsCGAOzSsc-pL9NvG94Vugm1ugzlUMG58rN9B_l068mN-hE64q15VSCTWEN8ItBGHf7Lof-3z3RwpDHlVzfXsCYon01DgZfZmXvg8hBACdaaC1En4G0F1FpLk5pK0G-WLjmPAIQhpTwAbNmvzbSo47PaZHoJUGXPebGlBSqG6wM3HGiRthzOMO02A%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=5212413183761&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
159.69.70.9302 Found 0 B URL HTTP/1.1 hal900017.redintelligence.net/request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=1273da29db&subid=&uid=c72e0f4a0b4455b7&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCoDdANnHeY97SCvOWxdwP57evuAfJuaKcabyvzc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSaAk_QGsa1O_pMuu3jwHTa0sv4UQT4ZheKu5O9I-zVl9qsvxmNRmvDj9jxkn-D5l0UP6TKz1VMQQUVio_opHxs_jlJPC4-us_btD59t3NF6xKj__xRR9JAnBlRfR7xQFITqq-ccaI_bWv6wU8-aSMOEaBlW5TPLhvTDLu1sN6JqAutxilT5xsAcEx-BuVBmheOulRlPD4CQmSJSQIfEEn9u02SU80C_uNB1Bf7BsTa9unTskwGUnri5ZuFXSGyKpgKwoNhfipQHuymrMeK2jATI1DsKnmkoZZDP1qrEkdgh9om66XgYMB6EZp1ua2A7864vnjYdI7EG8nFbmLlTdeJBN3L9JqwY5kA5eiwsxCTF9xwtfw1JbmcA1BU2MAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_38qNiStEzv-NDrU8QqpjfHs0cKRw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-CiD7JR3R-zbBmGrB8SFOjt4sV5MmVjtMxecRUxA92chk8edCly3RJ6ISRfi7Zv_th_HefAqtv4Z7xmrU9FkptaKSFLMgqWhXgaaHArguc9Sy1Gl4IUckQsxMEUw1F0S8TWJGcuFMYb2K76tUAI0nFVcKoflsbh8RhU5brNO3fJ3vzylDU%26cry%3D1%26dbm_d%3DAKAmf-A-kDYjFq7xGdcK-QHbZLDY14-NyvWIkZ_9BIbcf_grv3l0AeuSyPVyLHdyr1jqkVxptyYXWoqFBtOPo8S_XH24PyNUJ9R1ZJEZkILFnTLVWoENDakXwDvwleVa6AxRKuDN5IMs6yIztkc3fstLSrJRGrYzFszVX0xay8Q_kYrR2ia4WZVNBc6SbpX8IhtZmwsOnUbFHMVlRgb8q7WdrVz-PJym9cQXfEgIx_AkNm8Pw_Qma5XzbWc9mtlEnaAdi8k0W78mYmoIh4dtgmT_1M9LUumfNw-WFUtE-lTFze5HlJ-4AQOFfdENUKxcrfXgkN4rHOSGyoAE3TQsHCpMYUijDZzQ_uQxGOxI5-NiQrLOPB3aoc5xwCQ-3f3O2F5Kqo7jxRQT9-oW-6bcgAt0qKZbLhRuMIEqEUUK2MsCGAOzSsc-pL9NvG94Vugm1ugzlUMG58rN9B_l068mN-hE64q15VSCTWEN8ItBGHf7Lof-3z3RwpDHlVzfXsCYon01DgZfZmXvg8hBACdaaC1En4G0F1FpLk5pK0G-WLjmPAIQhpTwAbNmvzbSo47PaZHoJUGXPebGlBSqG6wM3HGiRthzOMO02A%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=5212413183761&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
IP 159.69.70.9:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=1273da29db&subid=&uid=c72e0f4a0b4455b7&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCoDdANnHeY97SCvOWxdwP57evuAfJuaKcabyvzc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSaAk_QGsa1O_pMuu3jwHTa0sv4UQT4ZheKu5O9I-zVl9qsvxmNRmvDj9jxkn-D5l0UP6TKz1VMQQUVio_opHxs_jlJPC4-us_btD59t3NF6xKj__xRR9JAnBlRfR7xQFITqq-ccaI_bWv6wU8-aSMOEaBlW5TPLhvTDLu1sN6JqAutxilT5xsAcEx-BuVBmheOulRlPD4CQmSJSQIfEEn9u02SU80C_uNB1Bf7BsTa9unTskwGUnri5ZuFXSGyKpgKwoNhfipQHuymrMeK2jATI1DsKnmkoZZDP1qrEkdgh9om66XgYMB6EZp1ua2A7864vnjYdI7EG8nFbmLlTdeJBN3L9JqwY5kA5eiwsxCTF9xwtfw1JbmcA1BU2MAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_38qNiStEzv-NDrU8QqpjfHs0cKRw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-CiD7JR3R-zbBmGrB8SFOjt4sV5MmVjtMxecRUxA92chk8edCly3RJ6ISRfi7Zv_th_HefAqtv4Z7xmrU9FkptaKSFLMgqWhXgaaHArguc9Sy1Gl4IUckQsxMEUw1F0S8TWJGcuFMYb2K76tUAI0nFVcKoflsbh8RhU5brNO3fJ3vzylDU%26cry%3D1%26dbm_d%3DAKAmf-A-kDYjFq7xGdcK-QHbZLDY14-NyvWIkZ_9BIbcf_grv3l0AeuSyPVyLHdyr1jqkVxptyYXWoqFBtOPo8S_XH24PyNUJ9R1ZJEZkILFnTLVWoENDakXwDvwleVa6AxRKuDN5IMs6yIztkc3fstLSrJRGrYzFszVX0xay8Q_kYrR2ia4WZVNBc6SbpX8IhtZmwsOnUbFHMVlRgb8q7WdrVz-PJym9cQXfEgIx_AkNm8Pw_Qma5XzbWc9mtlEnaAdi8k0W78mYmoIh4dtgmT_1M9LUumfNw-WFUtE-lTFze5HlJ-4AQOFfdENUKxcrfXgkN4rHOSGyoAE3TQsHCpMYUijDZzQ_uQxGOxI5-NiQrLOPB3aoc5xwCQ-3f3O2F5Kqo7jxRQT9-oW-6bcgAt0qKZbLhRuMIEqEUUK2MsCGAOzSsc-pL9NvG94Vugm1ugzlUMG58rN9B_l068mN-hE64q15VSCTWEN8ItBGHf7Lof-3z3RwpDHlVzfXsCYon01DgZfZmXvg8hBACdaaC1En4G0F1FpLk5pK0G-WLjmPAIQhpTwAbNmvzbSo47PaZHoJUGXPebGlBSqG6wM3HGiRthzOMO02A%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=5212413183761&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0 HTTP/1.1
Host: hal900017.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sat, 04 Feb 2023 14:52:40 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 04 Feb 2023 14:52:40 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=1d0fe2eb6f3a2e36; expires=Fri, 05-May-2023 14:52:40 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
Location: request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=1273da29db&subid=&uid=c72e0f4a0b4455b7&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCoDdANnHeY97SCvOWxdwP57evuAfJuaKcabyvzc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSaAk_QGsa1O_pMuu3jwHTa0sv4UQT4ZheKu5O9I-zVl9qsvxmNRmvDj9jxkn-D5l0UP6TKz1VMQQUVio_opHxs_jlJPC4-us_btD59t3NF6xKj__xRR9JAnBlRfR7xQFITqq-ccaI_bWv6wU8-aSMOEaBlW5TPLhvTDLu1sN6JqAutxilT5xsAcEx-BuVBmheOulRlPD4CQmSJSQIfEEn9u02SU80C_uNB1Bf7BsTa9unTskwGUnri5ZuFXSGyKpgKwoNhfipQHuymrMeK2jATI1DsKnmkoZZDP1qrEkdgh9om66XgYMB6EZp1ua2A7864vnjYdI7EG8nFbmLlTdeJBN3L9JqwY5kA5eiwsxCTF9xwtfw1JbmcA1BU2MAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_38qNiStEzv-NDrU8QqpjfHs0cKRw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-CiD7JR3R-zbBmGrB8SFOjt4sV5MmVjtMxecRUxA92chk8edCly3RJ6ISRfi7Zv_th_HefAqtv4Z7xmrU9FkptaKSFLMgqWhXgaaHArguc9Sy1Gl4IUckQsxMEUw1F0S8TWJGcuFMYb2K76tUAI0nFVcKoflsbh8RhU5brNO3fJ3vzylDU%26cry%3D1%26dbm_d%3DAKAmf-A-kDYjFq7xGdcK-QHbZLDY14-NyvWIkZ_9BIbcf_grv3l0AeuSyPVyLHdyr1jqkVxptyYXWoqFBtOPo8S_XH24PyNUJ9R1ZJEZkILFnTLVWoENDakXwDvwleVa6AxRKuDN5IMs6yIztkc3fstLSrJRGrYzFszVX0xay8Q_kYrR2ia4WZVNBc6SbpX8IhtZmwsOnUbFHMVlRgb8q7WdrVz-PJym9cQXfEgIx_AkNm8Pw_Qma5XzbWc9mtlEnaAdi8k0W78mYmoIh4dtgmT_1M9LUumfNw-WFUtE-lTFze5HlJ-4AQOFfdENUKxcrfXgkN4rHOSGyoAE3TQsHCpMYUijDZzQ_uQxGOxI5-NiQrLOPB3aoc5xwCQ-3f3O2F5Kqo7jxRQT9-oW-6bcgAt0qKZbLhRuMIEqEUUK2MsCGAOzSsc-pL9NvG94Vugm1ugzlUMG58rN9B_l068mN-hE64q15VSCTWEN8ItBGHf7Lof-3z3RwpDHlVzfXsCYon01DgZfZmXvg8hBACdaaC1En4G0F1FpLk5pK0G-WLjmPAIQhpTwAbNmvzbSo47PaZHoJUGXPebGlBSqG6wM3HGiRthzOMO02A%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=5212413183761&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
yeet.revcontent.com/yeet/events/page-view
54.194.226.232200 OK 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/page-view
IP 54.194.226.232:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /yeet/events/page-view HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://rollcall.com/
Origin: https://rollcall.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 04 Feb 2023 14:52:40 GMT
Content-Length: 0
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
yeet.revcontent.com/yeet/events/widget-loaded
54.194.226.232200 OK 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/widget-loaded
IP 54.194.226.232:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /yeet/events/widget-loaded HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://rollcall.com/
Origin: https://rollcall.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 04 Feb 2023 14:52:40 GMT
Content-Length: 0
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
ocsp.pki.goog/s/gts1d4/fXs_L39cqkM
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/fXs_L39cqkM
IP 216.58.211.3:0
Hash e75461242229c63cf6c17140a5466321
d558305ae15b4a5d5257c6d3f6a86f97e46146b7
8312b7d2ee487470fd181362e6c32dbb61c0ef3c465e9ef5cc52d8f03dcd18ae
POST /s/gts1d4/fXs_L39cqkM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:40 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.rlcdn.com/api/identity/envelope?pid=13781
34.120.133.55401 Unauthorized 19 B URL HTTP/2 api.rlcdn.com/api/identity/envelope?pid=13781
IP 34.120.133.55:0
Hash 63dfbd2b39fe4f536a04e7b32ada47b4
207298c4a215ad5d97d888522927910ae772ba48
26e51290d12b4fea0bb98da3ed118837b744555ba723061771ab3df30000b6b7
GET /api/identity/envelope?pid=13781 HTTP/1.1
Host: api.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 401 Unauthorized
content-type: text/plain; charset=utf-8
x-content-type-options: nosniff
date: Sat, 04 Feb 2023 14:52:40 GMT
content-length: 19
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d3a8825102d4d677483b0adecb3e8157
2ac9e91e32e882c72da03e07d88b9fb38cd758c9
070018f9f3a0f4970e5e6aa86dde278775450bd1b289d86fa73216b3021fc346
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "070018F9F3A0F4970E5E6AA86DDE278775450BD1B289D86FA73216B3021FC346"
Last-Modified: Thu, 02 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8656
Expires: Sat, 04 Feb 2023 17:16:56 GMT
Date: Sat, 04 Feb 2023 14:52:40 GMT
Connection: keep-alive
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 08f36196c660c0dc71ce73631ddaf18a
10924fc2c83997edf819ba37c89d7e101f47de24
a2b873784510c380ccff2191263251e82fdf6bb871a3839cdf6092c264af104a
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 08 Feb 2023 13:08:12 GMT
ETag: "10924fc2c83997edf819ba37c89d7e101f47de24"
Last-Modified: Sat, 04 Feb 2023 13:08:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1946
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79443b3fe9c7fab4-OSL
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Frollcall.com%2F&domain=rollcall.com&bundle=uUSDzl93RXFmeXZUd0kzM05hbFZ5TGdOSmtvTWpoVDVuRiUyRlZxYU5MeHZLNzZOdUJtZUk0aXpNb0RuU2U0ck9PYWV6TzdvYnVvb3NtalFGJTJCRWpUcXklMkI3b0dIWmU3NjA4c3BHdE45S0Q4a2ZQbkpVNXZhTHhEQk54N0JXJTJGRlA4U2VWVnJG&cw=1&lsw=1
178.250.0.157200 OK 57 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Frollcall.com%2F&domain=rollcall.com&bundle=uUSDzl93RXFmeXZUd0kzM05hbFZ5TGdOSmtvTWpoVDVuRiUyRlZxYU5MeHZLNzZOdUJtZUk0aXpNb0RuU2U0ck9PYWV6TzdvYnVvb3NtalFGJTJCRWpUcXklMkI3b0dIWmU3NjA4c3BHdE45S0Q4a2ZQbkpVNXZhTHhEQk54N0JXJTJGRlA4U2VWVnJG&cw=1&lsw=1
IP 178.250.0.157:0
Hash 1d4df08b9a43daef646c22be0fd5eebd
c750931ee6b03761d24c1aa7aaf76fc4a205153a
202498b19655839f21d8263242cc7c7972ff932291066b13e15e6c497bdaacca
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Frollcall.com%2F&domain=rollcall.com&bundle=uUSDzl93RXFmeXZUd0kzM05hbFZ5TGdOSmtvTWpoVDVuRiUyRlZxYU5MeHZLNzZOdUJtZUk0aXpNb0RuU2U0ck9PYWV6TzdvYnVvb3NtalFGJTJCRWpUcXklMkI3b0dIWmU3NjA4c3BHdE45S0Q4a2ZQbkpVNXZhTHhEQk54N0JXJTJGRlA4U2VWVnJG&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://rollcall.com/
Origin: https://rollcall.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:39 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://rollcall.com
server-processing-duration-in-ticks: 503776
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
yeet.revcontent.com/yeet/events/widget-loaded
54.194.226.232204 No Content 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/widget-loaded
IP 54.194.226.232:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yeet/events/widget-loaded HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Content-Type: application/json
Origin: https://rollcall.com
Content-Length: 220
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Sat, 04 Feb 2023 14:52:40 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: *
vary: Origin
yeet.revcontent.com/yeet/events/page-view
54.194.226.232204 No Content 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/page-view
IP 54.194.226.232:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yeet/events/page-view HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Content-Type: application/json
Origin: https://rollcall.com
Content-Length: 180
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Sat, 04 Feb 2023 14:52:40 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: *
vary: Origin
id5-sync.com/g/v2/1285.json
162.19.138.116200 216 B URL HTTP/1.1 id5-sync.com/g/v2/1285.json
IP 162.19.138.116:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9b57638d4b14a36ef8786dadee37adeb
8fd39917c89f5f4df0223753a4cd82e03d1b648c
831927a65d9889f406701fd3f38cdc79eccac77ac15e38d1ceb6e64357558d3a
POST /g/v2/1285.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 242
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://rollcall.com
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Sat, 04 Feb 2023 14:52:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
acdn.adnxs.com/dmp/async_usersync.html
151.101.1.108200 OK 17 kB URL HTTP/1.1 acdn.adnxs.com/dmp/async_usersync.html
IP 151.101.1.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Hash 9c6b5ce6b3452e98573e6409c34dd73c
de607fadef62e36945a409a838eb8fc36d819b42
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc
GET /dmp/async_usersync.html HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 17053
Server: nginx/1.18.0 (Ubuntu)
Content-Type: text/html
Last-Modified: Fri, 25 Mar 2022 16:06:02 GMT
ETag: W/"623de86a-cf34"
Expires: Wed, 18 Jan 2023 06:44:40 GMT
Cache-Control: max-age=86402
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 14:52:40 GMT
Age: 40206
X-Served-By: cache-lga13626-LGA, cache-bma1657-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 20, 102740
X-Timer: S1675522360.360140,VS0,VE0
Vary: Accept-Encoding
eb2.3lift.com/sync?
76.223.111.18200 OK 37 B IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /sync? HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:40 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
lexicon.33across.com/v1/envelope?pid=0013300001kQgaMAAS&gdpr=0
35.244.193.51200 OK 49 B URL HTTP/2 lexicon.33across.com/v1/envelope?pid=0013300001kQgaMAAS&gdpr=0
IP 35.244.193.51:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c466bd434db29cf02793f8522fde5f3a
f39a01bb0264479dbe9a4bfb0b80ae0b3b0e8154
d0d2e098cd489ef7bc528c86de8ab5c51b5d6cdf9b76a8b08766036992f0d2f4
GET /v1/envelope?pid=0013300001kQgaMAAS&gdpr=0 HTTP/1.1
Host: lexicon.33across.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: private, must-revalidate, max-age=28800
content-type: application/json
content-length: 49
date: Sat, 04 Feb 2023 14:52:39 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
match.adsrvr.org/track/rid?ttd_pid=pubmatic&fmt=json
35.71.131.137200 OK 63 B URL HTTP/2 match.adsrvr.org/track/rid?ttd_pid=pubmatic&fmt=json
IP 35.71.131.137:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f36e4615ff7d86fa43f66909e1836448
a7af545b7cb1e24ce5c44994daad657fd4ec5ecd
fe792b35ecc48e5fd5ee2e072fbc86f28cd1f22fbc0c257591edcb4c9924874e
GET /track/rid?ttd_pid=pubmatic&fmt=json HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:40 GMT
content-type: application/json; charset=utf-8
content-length: 63
cache-control: private
expires: Mon, 06 Mar 2023 14:52:40 GMT
vary: Origin
access-control-allow-origin: https://rollcall.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Content-Length, Content-Encoding, Vary, Cache-Control, Accept
x-aspnet-version: 4.0.30319
X-Firefox-Spdy: h2
x.bidswitch.net/sync?ssp=yieldmo
18.184.182.132302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?ssp=yieldmo
IP 18.184.182.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=yieldmo HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.yieldmo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 04 Feb 2023 14:52:40 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?ssp=yieldmo
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=3c870139-7d4a-459f-8d8f-530b80a203f6; path=/; expires=Sun, 04-Feb-2024 14:52:40 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675522360; path=/; expires=Sun, 04-Feb-2024 14:52:40 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675522360; path=/; expires=Sun, 04-Feb-2024 14:52:40 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675522360; path=/; expires=Sun, 04-Feb-2024 14:52:40 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ib.adnxs.com/async_usersync?cbfn=queuePixels
37.252.171.85307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/async_usersync?cbfn=queuePixels
IP 37.252.171.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 14:52:40 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: 6d36a365-4d54-462a-ace5-030429d6f724
Set-Cookie: uuid2=6258650827615181560; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 14:52:40 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
x.bidswitch.net/ul_cb/sync?ssp=yieldmo
18.184.182.132200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?ssp=yieldmo
IP 18.184.182.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?ssp=yieldmo HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.yieldmo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:40 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://ads.yieldmo.com/v000/sync?userid=$UID&pn_id=an
37.252.171.85307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://ads.yieldmo.com/v000/sync?userid=$UID&pn_id=an
IP 37.252.171.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://ads.yieldmo.com/v000/sync?userid=$UID&pn_id=an HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.yieldmo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 14:52:40 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fads.yieldmo.com%2Fv000%2Fsync%3Fuserid%3D%24UID%26pn_id%3Dan
AN-X-Request-Uuid: 3fcf248a-9f15-40f0-aa80-dff621b46c14
Set-Cookie: uuid2=3500255552180939138; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 14:52:40 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
142.250.74.106200 OK 867 B URL HTTP/2 fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
IP 142.250.74.106:0
Hash 24851c0efa2c9b66158d70795ffc379d
1b05f46bd3d99d099590ba60bbe94531c263bbd7
148325b604c4796f351380447c89a07bd90e296b35f44e205180522ac8cf844c
GET /css?family=Google%20Sans%3A400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 14:52:40 GMT
date: Sat, 04 Feb 2023 14:52:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 729cca7d7cbb6298a425ab284e07da2d
1ecf68f1210a63b000c491f443613bd0b23244db
9238059021fea591eaaaf5e5d05d2e48968e220d8cd505bbe2f66affb8bb755b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hal900017.redintelligence.net/request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=1273da29db&subid=&uid=c72e0f4a0b4455b7&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCoDdANnHeY97SCvOWxdwP57evuAfJuaKcabyvzc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSaAk_QGsa1O_pMuu3jwHTa0sv4UQT4ZheKu5O9I-zVl9qsvxmNRmvDj9jxkn-D5l0UP6TKz1VMQQUVio_opHxs_jlJPC4-us_btD59t3NF6xKj__xRR9JAnBlRfR7xQFITqq-ccaI_bWv6wU8-aSMOEaBlW5TPLhvTDLu1sN6JqAutxilT5xsAcEx-BuVBmheOulRlPD4CQmSJSQIfEEn9u02SU80C_uNB1Bf7BsTa9unTskwGUnri5ZuFXSGyKpgKwoNhfipQHuymrMeK2jATI1DsKnmkoZZDP1qrEkdgh9om66XgYMB6EZp1ua2A7864vnjYdI7EG8nFbmLlTdeJBN3L9JqwY5kA5eiwsxCTF9xwtfw1JbmcA1BU2MAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_38qNiStEzv-NDrU8QqpjfHs0cKRw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-CiD7JR3R-zbBmGrB8SFOjt4sV5MmVjtMxecRUxA92chk8edCly3RJ6ISRfi7Zv_th_HefAqtv4Z7xmrU9FkptaKSFLMgqWhXgaaHArguc9Sy1Gl4IUckQsxMEUw1F0S8TWJGcuFMYb2K76tUAI0nFVcKoflsbh8RhU5brNO3fJ3vzylDU%26cry%3D1%26dbm_d%3DAKAmf-A-kDYjFq7xGdcK-QHbZLDY14-NyvWIkZ_9BIbcf_grv3l0AeuSyPVyLHdyr1jqkVxptyYXWoqFBtOPo8S_XH24PyNUJ9R1ZJEZkILFnTLVWoENDakXwDvwleVa6AxRKuDN5IMs6yIztkc3fstLSrJRGrYzFszVX0xay8Q_kYrR2ia4WZVNBc6SbpX8IhtZmwsOnUbFHMVlRgb8q7WdrVz-PJym9cQXfEgIx_AkNm8Pw_Qma5XzbWc9mtlEnaAdi8k0W78mYmoIh4dtgmT_1M9LUumfNw-WFUtE-lTFze5HlJ-4AQOFfdENUKxcrfXgkN4rHOSGyoAE3TQsHCpMYUijDZzQ_uQxGOxI5-NiQrLOPB3aoc5xwCQ-3f3O2F5Kqo7jxRQT9-oW-6bcgAt0qKZbLhRuMIEqEUUK2MsCGAOzSsc-pL9NvG94Vugm1ugzlUMG58rN9B_l068mN-hE64q15VSCTWEN8ItBGHf7Lof-3z3RwpDHlVzfXsCYon01DgZfZmXvg8hBACdaaC1En4G0F1FpLk5pK0G-WLjmPAIQhpTwAbNmvzbSo47PaZHoJUGXPebGlBSqG6wM3HGiRthzOMO02A%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=5212413183761&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
159.69.70.9200 OK 513 B URL HTTP/1.1 hal900017.redintelligence.net/request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=1273da29db&subid=&uid=c72e0f4a0b4455b7&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCoDdANnHeY97SCvOWxdwP57evuAfJuaKcabyvzc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSaAk_QGsa1O_pMuu3jwHTa0sv4UQT4ZheKu5O9I-zVl9qsvxmNRmvDj9jxkn-D5l0UP6TKz1VMQQUVio_opHxs_jlJPC4-us_btD59t3NF6xKj__xRR9JAnBlRfR7xQFITqq-ccaI_bWv6wU8-aSMOEaBlW5TPLhvTDLu1sN6JqAutxilT5xsAcEx-BuVBmheOulRlPD4CQmSJSQIfEEn9u02SU80C_uNB1Bf7BsTa9unTskwGUnri5ZuFXSGyKpgKwoNhfipQHuymrMeK2jATI1DsKnmkoZZDP1qrEkdgh9om66XgYMB6EZp1ua2A7864vnjYdI7EG8nFbmLlTdeJBN3L9JqwY5kA5eiwsxCTF9xwtfw1JbmcA1BU2MAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_38qNiStEzv-NDrU8QqpjfHs0cKRw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-CiD7JR3R-zbBmGrB8SFOjt4sV5MmVjtMxecRUxA92chk8edCly3RJ6ISRfi7Zv_th_HefAqtv4Z7xmrU9FkptaKSFLMgqWhXgaaHArguc9Sy1Gl4IUckQsxMEUw1F0S8TWJGcuFMYb2K76tUAI0nFVcKoflsbh8RhU5brNO3fJ3vzylDU%26cry%3D1%26dbm_d%3DAKAmf-A-kDYjFq7xGdcK-QHbZLDY14-NyvWIkZ_9BIbcf_grv3l0AeuSyPVyLHdyr1jqkVxptyYXWoqFBtOPo8S_XH24PyNUJ9R1ZJEZkILFnTLVWoENDakXwDvwleVa6AxRKuDN5IMs6yIztkc3fstLSrJRGrYzFszVX0xay8Q_kYrR2ia4WZVNBc6SbpX8IhtZmwsOnUbFHMVlRgb8q7WdrVz-PJym9cQXfEgIx_AkNm8Pw_Qma5XzbWc9mtlEnaAdi8k0W78mYmoIh4dtgmT_1M9LUumfNw-WFUtE-lTFze5HlJ-4AQOFfdENUKxcrfXgkN4rHOSGyoAE3TQsHCpMYUijDZzQ_uQxGOxI5-NiQrLOPB3aoc5xwCQ-3f3O2F5Kqo7jxRQT9-oW-6bcgAt0qKZbLhRuMIEqEUUK2MsCGAOzSsc-pL9NvG94Vugm1ugzlUMG58rN9B_l068mN-hE64q15VSCTWEN8ItBGHf7Lof-3z3RwpDHlVzfXsCYon01DgZfZmXvg8hBACdaaC1En4G0F1FpLk5pK0G-WLjmPAIQhpTwAbNmvzbSo47PaZHoJUGXPebGlBSqG6wM3HGiRthzOMO02A%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=5212413183761&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
IP 159.69.70.9:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 4a06a22885eebcee7fe5d4a4a254f0a8
c0bcd39b28db9073b7009c3ee93a6eb8be1f07d0
69045cf7f17da1d20ff7e6e2ef6d09492c875e85b480b21bef9924a901bec567
GET /request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=1273da29db&subid=&uid=c72e0f4a0b4455b7&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCoDdANnHeY97SCvOWxdwP57evuAfJuaKcabyvzc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSaAk_QGsa1O_pMuu3jwHTa0sv4UQT4ZheKu5O9I-zVl9qsvxmNRmvDj9jxkn-D5l0UP6TKz1VMQQUVio_opHxs_jlJPC4-us_btD59t3NF6xKj__xRR9JAnBlRfR7xQFITqq-ccaI_bWv6wU8-aSMOEaBlW5TPLhvTDLu1sN6JqAutxilT5xsAcEx-BuVBmheOulRlPD4CQmSJSQIfEEn9u02SU80C_uNB1Bf7BsTa9unTskwGUnri5ZuFXSGyKpgKwoNhfipQHuymrMeK2jATI1DsKnmkoZZDP1qrEkdgh9om66XgYMB6EZp1ua2A7864vnjYdI7EG8nFbmLlTdeJBN3L9JqwY5kA5eiwsxCTF9xwtfw1JbmcA1BU2MAEwb2U_PMD4AQDkAYBoAZNgAesrfWfA6gHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4bqAeaBqgH89EbqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCBEIgOGAEBABGB0yAqoCOgKAQIAKA5gLAcgLAYAMAbATnKLNDtATANgTA9gUAdAVAfgWAYAXAQ%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_38qNiStEzv-NDrU8QqpjfHs0cKRw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-CiD7JR3R-zbBmGrB8SFOjt4sV5MmVjtMxecRUxA92chk8edCly3RJ6ISRfi7Zv_th_HefAqtv4Z7xmrU9FkptaKSFLMgqWhXgaaHArguc9Sy1Gl4IUckQsxMEUw1F0S8TWJGcuFMYb2K76tUAI0nFVcKoflsbh8RhU5brNO3fJ3vzylDU%26cry%3D1%26dbm_d%3DAKAmf-A-kDYjFq7xGdcK-QHbZLDY14-NyvWIkZ_9BIbcf_grv3l0AeuSyPVyLHdyr1jqkVxptyYXWoqFBtOPo8S_XH24PyNUJ9R1ZJEZkILFnTLVWoENDakXwDvwleVa6AxRKuDN5IMs6yIztkc3fstLSrJRGrYzFszVX0xay8Q_kYrR2ia4WZVNBc6SbpX8IhtZmwsOnUbFHMVlRgb8q7WdrVz-PJym9cQXfEgIx_AkNm8Pw_Qma5XzbWc9mtlEnaAdi8k0W78mYmoIh4dtgmT_1M9LUumfNw-WFUtE-lTFze5HlJ-4AQOFfdENUKxcrfXgkN4rHOSGyoAE3TQsHCpMYUijDZzQ_uQxGOxI5-NiQrLOPB3aoc5xwCQ-3f3O2F5Kqo7jxRQT9-oW-6bcgAt0qKZbLhRuMIEqEUUK2MsCGAOzSsc-pL9NvG94Vugm1ugzlUMG58rN9B_l068mN-hE64q15VSCTWEN8ItBGHf7Lof-3z3RwpDHlVzfXsCYon01DgZfZmXvg8hBACdaaC1En4G0F1FpLk5pK0G-WLjmPAIQhpTwAbNmvzbSo47PaZHoJUGXPebGlBSqG6wM3HGiRthzOMO02A%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=5212413183761&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1 HTTP/1.1
Host: hal900017.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Connection: keep-alive
Cookie: 8lcfmzhxc8d6_uid=1d0fe2eb6f3a2e36
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:40 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 04 Feb 2023 14:52:40 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=1d0fe2eb6f3a2e36; expires=Fri, 05-May-2023 14:52:40 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
X-NEORY-SubId: 69481400087394404438320012225017
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 513
Connection: close
Content-Type: application/x-javascript; charset=utf-8
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 729cca7d7cbb6298a425ab284e07da2d
1ecf68f1210a63b000c491f443613bd0b23244db
9238059021fea591eaaaf5e5d05d2e48968e220d8cd505bbe2f66affb8bb755b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hal90005.redintelligence.net/request.php?zone=7lb6qbnvrhza&nw=20&renderingType=javascript&namespace=ff70011fff&subid=&uid=07974b6025108802&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=728x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCHcyUNnHeY-DRCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QE_0NGptlaSLPCQgXiRwCEkOEjBfRHfTpoK5TNjKfUf9bXAeuCkYjWYPzk4dYFGR5TTzFUHv91h8pjDTHU_HxAZA6-QKcZy_S31bLlzt85CSyrE7N_fF-Ah879PRtcAxi7BuS00yWscZX3bQCIhds3TWWsx-iUlbPwlFed1cDDMYLZg1JP1vB5nTFasC9Cl3_jXj31TtoyM5c8OlVKkHtFi7xpO8vvHAQF2Kwor8xBvK07FgJMSHh1YBhliQjaEgNCzMQTAd4rMFDa-fZNpATYuKp9Jm9s51mlUoUuL0odo5nO8ndbKgGAyGEuEBsiya2UFh8M6_3DfcEJVbFAJH9ulK1shz9l9l3X0SuK06lwXs5Ak2hwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_1OlpNg2nf3qWV7kbkmQwrqIZ4LEw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-DehfptCHDC741CeLI9XHkcXsgpWKnF8hVdya4wXbp5EkmOIRe7MUF95XAlnaBSpYF19SlWXor5P7O-VXG8AVg8mUchguetdL9EdwZ6ZrA3ekgE7swQb9ZdNP49f4Od0dLUrzhQSzvm7KkMk4FJ2tNmF-tVB8rcS_apZBwO8Y8XlH67iD4%26cry%3D1%26dbm_d%3DAKAmf-ACj9acjKsWWAwfTJBwXa9zTA-zpwqVQiYPwRE1yLIpzf-Yzl93zSM72FcjmPoiLIWqe6JkN7-6qXmYxPnXzjqjnHxMsMqJSXhr7ALM8SzgFSYlvo3PsGxS0kOPCb3cUGIBEe37Zh9qvcuZI8gPedLZxJF37z43WwHb1DysPoBA4qN41SYdu6Qe4Z6rtN-QNamaOMTWWKiy7OSIB0M_V3T-an41rGj8c1xXqjYH6t9dQBCFFdga48_w8Hopx70HDeawsewV_r0M9CG67HrnFCKlwt8Bl7tpxKY7F0zbyPH9uICvVWHyLzRUOtrHpvaXnLiunZErnca6rCTI5iirx9Ixsy2F7UWAUhY79C6kzJu3lVR7Zto46mhz6-_ARSKyBcyTx3SoIyyxBDCxIJmYFC06EO0HGgXQ9VTUF6jGKZvhSqEcKXYzcDN-rVqy9gPLDj_E5yoOdo_fMqC3HH1gIXyP-lSFo_gmHDYy2NNvfdSj35e3lKnDkyBSG6XTnqDYxpSanblqmSD7VxmJc2yVPg7cXNaqBN2aby3O8KiDofrb2SgybQMcsUhwa5Yu2MAAjaUqhlju4Rdm8EsnmzKvlttPOrGBzg%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=3487928759106&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
138.201.63.165200 OK 513 B URL HTTP/1.1 hal90005.redintelligence.net/request.php?zone=7lb6qbnvrhza&nw=20&renderingType=javascript&namespace=ff70011fff&subid=&uid=07974b6025108802&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=728x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCHcyUNnHeY-DRCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QE_0NGptlaSLPCQgXiRwCEkOEjBfRHfTpoK5TNjKfUf9bXAeuCkYjWYPzk4dYFGR5TTzFUHv91h8pjDTHU_HxAZA6-QKcZy_S31bLlzt85CSyrE7N_fF-Ah879PRtcAxi7BuS00yWscZX3bQCIhds3TWWsx-iUlbPwlFed1cDDMYLZg1JP1vB5nTFasC9Cl3_jXj31TtoyM5c8OlVKkHtFi7xpO8vvHAQF2Kwor8xBvK07FgJMSHh1YBhliQjaEgNCzMQTAd4rMFDa-fZNpATYuKp9Jm9s51mlUoUuL0odo5nO8ndbKgGAyGEuEBsiya2UFh8M6_3DfcEJVbFAJH9ulK1shz9l9l3X0SuK06lwXs5Ak2hwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_1OlpNg2nf3qWV7kbkmQwrqIZ4LEw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-DehfptCHDC741CeLI9XHkcXsgpWKnF8hVdya4wXbp5EkmOIRe7MUF95XAlnaBSpYF19SlWXor5P7O-VXG8AVg8mUchguetdL9EdwZ6ZrA3ekgE7swQb9ZdNP49f4Od0dLUrzhQSzvm7KkMk4FJ2tNmF-tVB8rcS_apZBwO8Y8XlH67iD4%26cry%3D1%26dbm_d%3DAKAmf-ACj9acjKsWWAwfTJBwXa9zTA-zpwqVQiYPwRE1yLIpzf-Yzl93zSM72FcjmPoiLIWqe6JkN7-6qXmYxPnXzjqjnHxMsMqJSXhr7ALM8SzgFSYlvo3PsGxS0kOPCb3cUGIBEe37Zh9qvcuZI8gPedLZxJF37z43WwHb1DysPoBA4qN41SYdu6Qe4Z6rtN-QNamaOMTWWKiy7OSIB0M_V3T-an41rGj8c1xXqjYH6t9dQBCFFdga48_w8Hopx70HDeawsewV_r0M9CG67HrnFCKlwt8Bl7tpxKY7F0zbyPH9uICvVWHyLzRUOtrHpvaXnLiunZErnca6rCTI5iirx9Ixsy2F7UWAUhY79C6kzJu3lVR7Zto46mhz6-_ARSKyBcyTx3SoIyyxBDCxIJmYFC06EO0HGgXQ9VTUF6jGKZvhSqEcKXYzcDN-rVqy9gPLDj_E5yoOdo_fMqC3HH1gIXyP-lSFo_gmHDYy2NNvfdSj35e3lKnDkyBSG6XTnqDYxpSanblqmSD7VxmJc2yVPg7cXNaqBN2aby3O8KiDofrb2SgybQMcsUhwa5Yu2MAAjaUqhlju4Rdm8EsnmzKvlttPOrGBzg%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=3487928759106&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
IP 138.201.63.165:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash acf7c6edcd82e6501a60ff21246f22b2
bfa0cb7e579999940c854c1ecc6fea4f94543c65
e563450b77f6997a3eeb1ef481a19e3140a7ef7e7b1edce9d491787a232a1df8
GET /request.php?zone=7lb6qbnvrhza&nw=20&renderingType=javascript&namespace=ff70011fff&subid=&uid=07974b6025108802&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=728x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCHcyUNnHeY-DRCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QE_0NGptlaSLPCQgXiRwCEkOEjBfRHfTpoK5TNjKfUf9bXAeuCkYjWYPzk4dYFGR5TTzFUHv91h8pjDTHU_HxAZA6-QKcZy_S31bLlzt85CSyrE7N_fF-Ah879PRtcAxi7BuS00yWscZX3bQCIhds3TWWsx-iUlbPwlFed1cDDMYLZg1JP1vB5nTFasC9Cl3_jXj31TtoyM5c8OlVKkHtFi7xpO8vvHAQF2Kwor8xBvK07FgJMSHh1YBhliQjaEgNCzMQTAd4rMFDa-fZNpATYuKp9Jm9s51mlUoUuL0odo5nO8ndbKgGAyGEuEBsiya2UFh8M6_3DfcEJVbFAJH9ulK1shz9l9l3X0SuK06lwXs5Ak2hwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_1OlpNg2nf3qWV7kbkmQwrqIZ4LEw%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-DehfptCHDC741CeLI9XHkcXsgpWKnF8hVdya4wXbp5EkmOIRe7MUF95XAlnaBSpYF19SlWXor5P7O-VXG8AVg8mUchguetdL9EdwZ6ZrA3ekgE7swQb9ZdNP49f4Od0dLUrzhQSzvm7KkMk4FJ2tNmF-tVB8rcS_apZBwO8Y8XlH67iD4%26cry%3D1%26dbm_d%3DAKAmf-ACj9acjKsWWAwfTJBwXa9zTA-zpwqVQiYPwRE1yLIpzf-Yzl93zSM72FcjmPoiLIWqe6JkN7-6qXmYxPnXzjqjnHxMsMqJSXhr7ALM8SzgFSYlvo3PsGxS0kOPCb3cUGIBEe37Zh9qvcuZI8gPedLZxJF37z43WwHb1DysPoBA4qN41SYdu6Qe4Z6rtN-QNamaOMTWWKiy7OSIB0M_V3T-an41rGj8c1xXqjYH6t9dQBCFFdga48_w8Hopx70HDeawsewV_r0M9CG67HrnFCKlwt8Bl7tpxKY7F0zbyPH9uICvVWHyLzRUOtrHpvaXnLiunZErnca6rCTI5iirx9Ixsy2F7UWAUhY79C6kzJu3lVR7Zto46mhz6-_ARSKyBcyTx3SoIyyxBDCxIJmYFC06EO0HGgXQ9VTUF6jGKZvhSqEcKXYzcDN-rVqy9gPLDj_E5yoOdo_fMqC3HH1gIXyP-lSFo_gmHDYy2NNvfdSj35e3lKnDkyBSG6XTnqDYxpSanblqmSD7VxmJc2yVPg7cXNaqBN2aby3O8KiDofrb2SgybQMcsUhwa5Yu2MAAjaUqhlju4Rdm8EsnmzKvlttPOrGBzg%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=3487928759106&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1 HTTP/1.1
Host: hal90005.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Connection: keep-alive
Cookie: 8lcfmzhxc8d6_uid=1d0fe2eb6f3a2e36
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:40 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 04 Feb 2023 14:52:40 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=1d0fe2eb6f3a2e36; expires=Fri, 05-May-2023 14:52:40 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
X-NEORY-SubId: 60330100102874404438316012225005
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 513
Connection: close
Content-Type: application/x-javascript; charset=utf-8
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 729cca7d7cbb6298a425ab284e07da2d
1ecf68f1210a63b000c491f443613bd0b23244db
9238059021fea591eaaaf5e5d05d2e48968e220d8cd505bbe2f66affb8bb755b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/032301242213000/amp4ads-v0.mjs
142.250.74.1200 OK 62 kB URL HTTP/2 cdn.ampproject.org/rtv/032301242213000/amp4ads-v0.mjs
IP 142.250.74.1:0
File type Unicode text, UTF-8 text, with very long lines (65016)
Hash 705186878edb3379f1b15049e40a216c
9ee58e5d2b915d6c5c4096bd6767c2378b7e5434
eda95faff20dfc12630360b7dbd750893535823650ab06a902f00cb019667610
GET /rtv/032301242213000/amp4ads-v0.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 61701
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 00:15:56 GMT
expires: Thu, 01 Feb 2024 00:15:56 GMT
cache-control: public, max-age=31536000
etag: "fd230a11f0e5c334"
content-type: text/javascript; charset=UTF-8
age: 311804
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/032301242213000/v0/amp-ad-exit-0.1.mjs
142.250.74.1200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/032301242213000/v0/amp-ad-exit-0.1.mjs
IP 142.250.74.1:0
File type ASCII text, with very long lines (14751)
Hash 14b409217a0b2a45c78ccf0e6194d07f
cfc4e7ca7ba09aa75474d4d3bc92ecb5a20bc642
e655e124c9241cd096aef731470dace69ec92b2dda2f96d99e4bdfc066939b6f
GET /rtv/032301242213000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5218
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 00:15:56 GMT
expires: Thu, 01 Feb 2024 00:15:56 GMT
cache-control: public, max-age=31536000
etag: "ba49594f66f11825"
content-type: text/javascript; charset=UTF-8
age: 311804
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/032301242213000/v0/amp-analytics-0.1.mjs
142.250.74.1200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/032301242213000/v0/amp-analytics-0.1.mjs
IP 142.250.74.1:0
File type ASCII text, with very long lines (65534)
Hash ee931a9494b5c28839f8ffda5f4ee803
b43560b30647e0200962e52b833705e0b5fd461e
e840a2867a7f50da3f4b2d2c3c3fb03ea9882d1704a8d82750fbf974b93233c5
GET /rtv/032301242213000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28871
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 00:15:56 GMT
expires: Thu, 01 Feb 2024 00:15:56 GMT
cache-control: public, max-age=31536000
etag: "02f301facbbd58b4"
content-type: text/javascript; charset=UTF-8
age: 311804
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/032301242213000/v0/amp-fit-text-0.1.mjs
142.250.74.1200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/032301242213000/v0/amp-fit-text-0.1.mjs
IP 142.250.74.1:0
File type ASCII text, with very long lines (5021)
Hash a55d34740c5b489a185a6544d8d0048b
43e37eb3cabe3fc358eae6722d391e66f7e3511d
5accf775c4cb99b0237b7d5962a15bc8894c67e2353891598680521ee303f48b
GET /rtv/032301242213000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1920
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 00:15:56 GMT
expires: Thu, 01 Feb 2024 00:15:56 GMT
cache-control: public, max-age=31536000
etag: "2258180a38796c63"
content-type: text/javascript; charset=UTF-8
age: 311804
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/032301242213000/v0/amp-form-0.1.mjs
142.250.74.1200 OK 13 kB URL HTTP/2 cdn.ampproject.org/rtv/032301242213000/v0/amp-form-0.1.mjs
IP 142.250.74.1:0
File type Unicode text, UTF-8 text, with very long lines (41068)
Hash 6c9f946ec3339e6c892925177aad5b49
3a9deb0b13e02a25cb88ec4cf3ad5fa241031b93
77013996fda345256a8b632f49033a6b3c638199cf0bcef1b2239b15759c630e
GET /rtv/032301242213000/v0/amp-form-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12945
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 00:15:56 GMT
expires: Thu, 01 Feb 2024 00:15:56 GMT
cache-control: public, max-age=31536000
etag: "bb31e5f5c223d9c1"
content-type: text/javascript; charset=UTF-8
age: 311804
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash aa90c0091fe995b2d34666f6558601cd
b742ea6c06e57167d07dbafe5fc3a18c3396533a
1d0d138c2535f65f24b130a703f8039cef0c696ad6551e9b373c4b63f7bced64
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5868
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:40 GMT
Last-Modified: Sat, 04 Feb 2023 13:14:52 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 729cca7d7cbb6298a425ab284e07da2d
1ecf68f1210a63b000c491f443613bd0b23244db
9238059021fea591eaaaf5e5d05d2e48968e220d8cd505bbe2f66affb8bb755b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 002fa82ebebbd1a977edc8e3a43c0d79
ca06b53ec573796a982c2a4dc3f94921a67b04c5
0f5e1f4b509129c31083285e52e2cc1988ea6d951acc648f3f953600cb5104c7
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 04 Feb 2023 14:52:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 03 Feb 2023 23:05:34 GMT
Expires: Sat, 04 Feb 2023 23:05:34 GMT
ETag: "ca06b53ec573796a982c2a4dc3f94921a67b04c5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
cdn.ampproject.org/rtv/012301181928000/v0/amp-ad-exit-0.1.mjs
142.250.74.1200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-ad-exit-0.1.mjs
IP 142.250.74.1:0
File type ASCII text, with very long lines (14751)
Hash 73e00d54af81c3fab604b50e24c8e9c3
69acac1ec53fcbcf886bb240adabd050520197f9
3347e49ea6e174315c1bee3660a9988e4c7fe184a7a1176cf2aceb307c73125a
GET /rtv/012301181928000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5218
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:41 GMT
expires: Tue, 30 Jan 2024 18:04:41 GMT
cache-control: public, max-age=31536000
etag: "47662644ea8653a3"
content-type: text/javascript; charset=UTF-8
age: 420479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/amp4ads-v0.mjs
142.250.74.1200 OK 62 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/amp4ads-v0.mjs
IP 142.250.74.1:0
File type Unicode text, UTF-8 text, with very long lines (65008)
Hash c84202220125aee9bd368d2036235130
a18a7c9251c3bc1a5a96de74db84ed5af86ba618
f2f5cf1534589a8934ca4ac301eb38863fc89c48648da9a8807656a2d4a22b94
GET /rtv/012301181928000/amp4ads-v0.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 61734
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:41 GMT
expires: Tue, 30 Jan 2024 18:04:41 GMT
cache-control: public, max-age=31536000
etag: "5b4f5406239652c8"
content-type: text/javascript; charset=UTF-8
age: 420479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/v0/amp-fit-text-0.1.mjs
142.250.74.1200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-fit-text-0.1.mjs
IP 142.250.74.1:0
File type ASCII text, with very long lines (5021)
Hash 15dbec6a43680f6683938949e1b50562
fd479e89a3460ca0e48b5001aad0a2836df31dab
d08eefabc738f11545330db83c2d3e9a855add08db6b9d9217a15dd783c4f5c8
GET /rtv/012301181928000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1914
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:41 GMT
expires: Tue, 30 Jan 2024 18:04:41 GMT
cache-control: public, max-age=31536000
etag: "f13d3e1d36b26a3d"
content-type: text/javascript; charset=UTF-8
age: 420479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b2225cc2d185fde75131092ad660d637
cd30900570650f2f02b61ec691a71885f72e1974
870dd465ebcd3c268152c2f77ac12fddf0c22e4b388ff0ca1df9cf5e20724546
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5255
Cache-Control: max-age=109404
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:40 GMT
Etag: "63dd650d-1d7"
Expires: Sun, 05 Feb 2023 21:16:04 GMT
Last-Modified: Fri, 03 Feb 2023 19:48:29 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/s/gts1d4/fXs_L39cqkM
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/fXs_L39cqkM
IP 216.58.211.3:0
Hash e75461242229c63cf6c17140a5466321
d558305ae15b4a5d5257c6d3f6a86f97e46146b7
8312b7d2ee487470fd181362e6c32dbb61c0ef3c465e9ef5cc52d8f03dcd18ae
POST /s/gts1d4/fXs_L39cqkM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:40 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sync.richaudience.com/dcf3528a0b8aa83634892d50e91c306e/?ord=6621075909
162.55.236.225200 OK 71 B URL HTTP/2 sync.richaudience.com/dcf3528a0b8aa83634892d50e91c306e/?ord=6621075909
IP 162.55.236.225:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 9af1f656472ba204f9698eb7d81197de
9823372010c7362fc211fbdf67161eb22fa6501f
186b4346220e002f4ef0ee3ef13d199d6b454c6b1322838e06fcb954c3a40e11
GET /dcf3528a0b8aa83634892d50e91c306e/?ord=6621075909 HTTP/1.1
Host: sync.richaudience.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.2
date: Sat, 04 Feb 2023 14:52:40 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
content-encoding: gzip
X-Firefox-Spdy: h2
tags.srv.stackadapt.com/saq_pxl?uid=y9PmKzpFZ0BX2HzHbpN6Ew&is_js=true&landing_url=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&t=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call&tip=oh3_eH9twIGug0s2wPZpIgs4PGk_KpnPpMKg5IKe-G4&host=https://rollcall.com&sa-user-id-v2=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo&sa-user-id=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo
54.237.31.137200 OK 116 B URL HTTP/1.1 tags.srv.stackadapt.com/saq_pxl?uid=y9PmKzpFZ0BX2HzHbpN6Ew&is_js=true&landing_url=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&t=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call&tip=oh3_eH9twIGug0s2wPZpIgs4PGk_KpnPpMKg5IKe-G4&host=https://rollcall.com&sa-user-id-v2=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo&sa-user-id=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo
IP 54.237.31.137:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0ef66e309b7effc75f7429ee237598ac
0a0bd785d42efe9580c4b9b72e4e88b064060e4e
3c0bdce22dc678a425340b9056b9fba7154b8dd2993db10d7ceb3676c377e379
GET /saq_pxl?uid=y9PmKzpFZ0BX2HzHbpN6Ew&is_js=true&landing_url=https%3A%2F%2Frollcall.com%2F2021%2F03%2F01%2Fcovid-19-n95-respirator-masks%2F&t=Masks%20stack%20up%20in%20US%20warehouses%20as%20nurses%20reuse%20N95%20respirators%20-%20Roll%20Call&tip=oh3_eH9twIGug0s2wPZpIgs4PGk_KpnPpMKg5IKe-G4&host=https://rollcall.com&sa-user-id-v2=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo&sa-user-id=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: https://rollcall.com
Content-Type: text/plain; charset=utf-8
Date: Sat, 04 Feb 2023 14:52:40 GMT
Set-Cookie: sa-user-id=s%3A0-f4ca0a5e-4ca2-4579-49e4-046bb2f1c9c5.Yy3bxwD70RwG8lSjD3jnkNmNRsej8yfidq43kWhBCcU; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3A9MoKXkyiRXlJ5ARrsvHJxVtaKpo.KFIZATjI6M9egHOOqUUJjgKqLFJXiivqIAxksm8SIyE; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 116
Connection: keep-alive
hal90006.redintelligence.net/request.php?zone=7lb6qbnvrhza&nw=20&renderingType=javascript&namespace=4866554fdd&subid=&uid=4d93f7fb12124ffe&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=728x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCekruNnHeY8XTCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QWyHjAra0D778csD-Y5nIeg0Qm2tR9e6KEcFwtzLBL0UJgQEbzlKHLgsDrVBIrtzoXmBR2DA5OettUg4ov1CaEZK8LIu3XLPz46cTkFpqkhxaDj5Ijf5xyzPGEGiTu7HwhF_wCQWuqNnVAZ0C8JpU_mrKRq8OaPv6bnO6TLuhNuHRnDpvy41LKQxDJhzVh9umZJXlVclruZYTdT88zWO7MDZOOzK0DPfiE3DIJiD-uGFBG-lJ5WxQh-b9aDH35shm0toPbtoGLvpeJt1dEopMVQhX278qMXrnMaX5WIU0qjB7BJX72g7I6uTqOY1g-B_-Fg1wuOIyITsVuIkPlZm3h2ZFcmfuxA5dCAwfDT9PgsoZ1MhEwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_12Pvz-xxOF-b-h386_4S5Wy-s3-A%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-AHKD2sUSZBqPAb8W6qm4JThLo_-rwSLNQ81QAy0T86xa63rK6EXb1BogdLrNms52uFIOzzHOd_XYtXGnq9I8EYpAlQUHCTV1RZT9H4O2QeNedoYwqw5FCz6d7VeYdMsdLEz2lC7p82cuId15o9ajPwnZUI8fJ3K88Zt3euwO8ZyCMKV4o%26cry%3D1%26dbm_d%3DAKAmf-BpzlzzcDwoMLI5WlC8X5fVrRwt6Rw6BTcuFyskCFieNROoexv63wODavjPducyCgq0KfiTUpbDRgRZaKvznkpeMANx-xMozGBnrwwMeJgkevZK1G6LboxZ8MQuAmW2u6f769IPjFmiExsIhovqsK1cL3SaUnlYl3K7-UfcR-uwSCFq51hFjrgCmEoBinSiCAO1QTXbGLGGO3ty6cZmqf9Ayugnz4ZKTkd5cYore4AFoPsjNUS_kOKnqsQSXz7257VeNERxv8-ILZ_q1o063KNyw7qN9AvBhxhFCBowQ-b76315o-MjWy28gyXneM4ke8Rk8M4VdA5loSZ9aaCgj7_O-19FO4jdvgsEGNmtb_QLl7__GWz-ejyMZC2WTlCTAlzrk7HmijjC9jS9U-4Azg3rcjGtJXG8Ia_cFdNyZqonFrCYvqFnIj1lAVL2uplWTIE4QmSq9kHulJO9sbSYJb_j9sOSu3ZVbP7UR70PwcgPD1GWY8dqXgkDuLEm01aVIM3FVdd609HGUhO21OU0XBOqxld9u5sDnA5KIEgk-rQxNiWntNgXCqMbGhKuemjQ_XWjaPrsxANFtzgVU00ZrfqdhXOrLQ%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=3067293443287&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
138.201.63.164302 Found 0 B URL HTTP/1.1 hal90006.redintelligence.net/request.php?zone=7lb6qbnvrhza&nw=20&renderingType=javascript&namespace=4866554fdd&subid=&uid=4d93f7fb12124ffe&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=728x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCekruNnHeY8XTCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QWyHjAra0D778csD-Y5nIeg0Qm2tR9e6KEcFwtzLBL0UJgQEbzlKHLgsDrVBIrtzoXmBR2DA5OettUg4ov1CaEZK8LIu3XLPz46cTkFpqkhxaDj5Ijf5xyzPGEGiTu7HwhF_wCQWuqNnVAZ0C8JpU_mrKRq8OaPv6bnO6TLuhNuHRnDpvy41LKQxDJhzVh9umZJXlVclruZYTdT88zWO7MDZOOzK0DPfiE3DIJiD-uGFBG-lJ5WxQh-b9aDH35shm0toPbtoGLvpeJt1dEopMVQhX278qMXrnMaX5WIU0qjB7BJX72g7I6uTqOY1g-B_-Fg1wuOIyITsVuIkPlZm3h2ZFcmfuxA5dCAwfDT9PgsoZ1MhEwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_12Pvz-xxOF-b-h386_4S5Wy-s3-A%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-AHKD2sUSZBqPAb8W6qm4JThLo_-rwSLNQ81QAy0T86xa63rK6EXb1BogdLrNms52uFIOzzHOd_XYtXGnq9I8EYpAlQUHCTV1RZT9H4O2QeNedoYwqw5FCz6d7VeYdMsdLEz2lC7p82cuId15o9ajPwnZUI8fJ3K88Zt3euwO8ZyCMKV4o%26cry%3D1%26dbm_d%3DAKAmf-BpzlzzcDwoMLI5WlC8X5fVrRwt6Rw6BTcuFyskCFieNROoexv63wODavjPducyCgq0KfiTUpbDRgRZaKvznkpeMANx-xMozGBnrwwMeJgkevZK1G6LboxZ8MQuAmW2u6f769IPjFmiExsIhovqsK1cL3SaUnlYl3K7-UfcR-uwSCFq51hFjrgCmEoBinSiCAO1QTXbGLGGO3ty6cZmqf9Ayugnz4ZKTkd5cYore4AFoPsjNUS_kOKnqsQSXz7257VeNERxv8-ILZ_q1o063KNyw7qN9AvBhxhFCBowQ-b76315o-MjWy28gyXneM4ke8Rk8M4VdA5loSZ9aaCgj7_O-19FO4jdvgsEGNmtb_QLl7__GWz-ejyMZC2WTlCTAlzrk7HmijjC9jS9U-4Azg3rcjGtJXG8Ia_cFdNyZqonFrCYvqFnIj1lAVL2uplWTIE4QmSq9kHulJO9sbSYJb_j9sOSu3ZVbP7UR70PwcgPD1GWY8dqXgkDuLEm01aVIM3FVdd609HGUhO21OU0XBOqxld9u5sDnA5KIEgk-rQxNiWntNgXCqMbGhKuemjQ_XWjaPrsxANFtzgVU00ZrfqdhXOrLQ%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=3067293443287&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
IP 138.201.63.164:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /request.php?zone=7lb6qbnvrhza&nw=20&renderingType=javascript&namespace=4866554fdd&subid=&uid=4d93f7fb12124ffe&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=728x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCekruNnHeY8XTCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QWyHjAra0D778csD-Y5nIeg0Qm2tR9e6KEcFwtzLBL0UJgQEbzlKHLgsDrVBIrtzoXmBR2DA5OettUg4ov1CaEZK8LIu3XLPz46cTkFpqkhxaDj5Ijf5xyzPGEGiTu7HwhF_wCQWuqNnVAZ0C8JpU_mrKRq8OaPv6bnO6TLuhNuHRnDpvy41LKQxDJhzVh9umZJXlVclruZYTdT88zWO7MDZOOzK0DPfiE3DIJiD-uGFBG-lJ5WxQh-b9aDH35shm0toPbtoGLvpeJt1dEopMVQhX278qMXrnMaX5WIU0qjB7BJX72g7I6uTqOY1g-B_-Fg1wuOIyITsVuIkPlZm3h2ZFcmfuxA5dCAwfDT9PgsoZ1MhEwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_12Pvz-xxOF-b-h386_4S5Wy-s3-A%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-AHKD2sUSZBqPAb8W6qm4JThLo_-rwSLNQ81QAy0T86xa63rK6EXb1BogdLrNms52uFIOzzHOd_XYtXGnq9I8EYpAlQUHCTV1RZT9H4O2QeNedoYwqw5FCz6d7VeYdMsdLEz2lC7p82cuId15o9ajPwnZUI8fJ3K88Zt3euwO8ZyCMKV4o%26cry%3D1%26dbm_d%3DAKAmf-BpzlzzcDwoMLI5WlC8X5fVrRwt6Rw6BTcuFyskCFieNROoexv63wODavjPducyCgq0KfiTUpbDRgRZaKvznkpeMANx-xMozGBnrwwMeJgkevZK1G6LboxZ8MQuAmW2u6f769IPjFmiExsIhovqsK1cL3SaUnlYl3K7-UfcR-uwSCFq51hFjrgCmEoBinSiCAO1QTXbGLGGO3ty6cZmqf9Ayugnz4ZKTkd5cYore4AFoPsjNUS_kOKnqsQSXz7257VeNERxv8-ILZ_q1o063KNyw7qN9AvBhxhFCBowQ-b76315o-MjWy28gyXneM4ke8Rk8M4VdA5loSZ9aaCgj7_O-19FO4jdvgsEGNmtb_QLl7__GWz-ejyMZC2WTlCTAlzrk7HmijjC9jS9U-4Azg3rcjGtJXG8Ia_cFdNyZqonFrCYvqFnIj1lAVL2uplWTIE4QmSq9kHulJO9sbSYJb_j9sOSu3ZVbP7UR70PwcgPD1GWY8dqXgkDuLEm01aVIM3FVdd609HGUhO21OU0XBOqxld9u5sDnA5KIEgk-rQxNiWntNgXCqMbGhKuemjQ_XWjaPrsxANFtzgVU00ZrfqdhXOrLQ%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=3067293443287&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0 HTTP/1.1
Host: hal90006.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sat, 04 Feb 2023 14:52:40 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 04 Feb 2023 14:52:40 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=cbc9dcee820f445f; expires=Fri, 05-May-2023 14:52:40 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
Location: request.php?zone=7lb6qbnvrhza&nw=20&renderingType=javascript&namespace=4866554fdd&subid=&uid=4d93f7fb12124ffe&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=728x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCekruNnHeY8XTCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QWyHjAra0D778csD-Y5nIeg0Qm2tR9e6KEcFwtzLBL0UJgQEbzlKHLgsDrVBIrtzoXmBR2DA5OettUg4ov1CaEZK8LIu3XLPz46cTkFpqkhxaDj5Ijf5xyzPGEGiTu7HwhF_wCQWuqNnVAZ0C8JpU_mrKRq8OaPv6bnO6TLuhNuHRnDpvy41LKQxDJhzVh9umZJXlVclruZYTdT88zWO7MDZOOzK0DPfiE3DIJiD-uGFBG-lJ5WxQh-b9aDH35shm0toPbtoGLvpeJt1dEopMVQhX278qMXrnMaX5WIU0qjB7BJX72g7I6uTqOY1g-B_-Fg1wuOIyITsVuIkPlZm3h2ZFcmfuxA5dCAwfDT9PgsoZ1MhEwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_12Pvz-xxOF-b-h386_4S5Wy-s3-A%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-AHKD2sUSZBqPAb8W6qm4JThLo_-rwSLNQ81QAy0T86xa63rK6EXb1BogdLrNms52uFIOzzHOd_XYtXGnq9I8EYpAlQUHCTV1RZT9H4O2QeNedoYwqw5FCz6d7VeYdMsdLEz2lC7p82cuId15o9ajPwnZUI8fJ3K88Zt3euwO8ZyCMKV4o%26cry%3D1%26dbm_d%3DAKAmf-BpzlzzcDwoMLI5WlC8X5fVrRwt6Rw6BTcuFyskCFieNROoexv63wODavjPducyCgq0KfiTUpbDRgRZaKvznkpeMANx-xMozGBnrwwMeJgkevZK1G6LboxZ8MQuAmW2u6f769IPjFmiExsIhovqsK1cL3SaUnlYl3K7-UfcR-uwSCFq51hFjrgCmEoBinSiCAO1QTXbGLGGO3ty6cZmqf9Ayugnz4ZKTkd5cYore4AFoPsjNUS_kOKnqsQSXz7257VeNERxv8-ILZ_q1o063KNyw7qN9AvBhxhFCBowQ-b76315o-MjWy28gyXneM4ke8Rk8M4VdA5loSZ9aaCgj7_O-19FO4jdvgsEGNmtb_QLl7__GWz-ejyMZC2WTlCTAlzrk7HmijjC9jS9U-4Azg3rcjGtJXG8Ia_cFdNyZqonFrCYvqFnIj1lAVL2uplWTIE4QmSq9kHulJO9sbSYJb_j9sOSu3ZVbP7UR70PwcgPD1GWY8dqXgkDuLEm01aVIM3FVdd609HGUhO21OU0XBOqxld9u5sDnA5KIEgk-rQxNiWntNgXCqMbGhKuemjQ_XWjaPrsxANFtzgVU00ZrfqdhXOrLQ%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=3067293443287&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/5fccada0800921-95154354.jpg
151.139.128.10200 OK 4.6 kB URL HTTP/2 images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/5fccada0800921-95154354.jpg
IP 151.139.128.10:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 150x150, segment length 16, baseline, precision 8, 300x225, components 3\012- data
Hash 3f55c32362885015eb45e1184da985d7
58be8a55779e2ce37cbd17f4def493ce2f274c82
58e290cdbfec4bfa183af79904cc2203ba223f0d5b009c83e6122629f0b7ee81
GET /revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/5fccada0800921-95154354.jpg HTTP/1.1
Host: images.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:40 GMT
content-length: 4564
content-type: image/jpeg
last-modified: Thu, 11 Nov 2021 17:47:25 GMT
accept-ranges: bytes
etag: "3f55c32362885015eb45e1184da985d7"
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=604800
server-timing: fastly;dur=2;cpu=1;start=2022-10-13T11:25:25.611Z;desc=hit,rtt;dur=1
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
x-hw: 1675522360.cds221.sk1.hn,1675522360.cds015.sk1.c
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/v0/amp-analytics-0.1.mjs
142.250.74.1200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-analytics-0.1.mjs
IP 142.250.74.1:0
File type ASCII text, with very long lines (65534)
Hash 71f3ba24b0a01ade500d97ad0b8f3617
508b7affbf3e3c2b8bf4f46ebcb69ea29855bf9a
34c90f195073264a8f3e51bb9582b73665f65d7b053a031400c48bf627ca9d69
GET /rtv/012301181928000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28817
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:41 GMT
expires: Tue, 30 Jan 2024 18:04:41 GMT
cache-control: public, max-age=31536000
etag: "6eb387830c268337"
content-type: text/javascript; charset=UTF-8
age: 420479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/04c83ed9568d7ce067e358e7e920e121.jpg
151.139.128.10200 OK 5.4 kB URL HTTP/2 images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/04c83ed9568d7ce067e358e7e920e121.jpg
IP 151.139.128.10:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, baseline, precision 8, 300x225, components 3\012- data
Hash 752b33b71a4b7db69dfa050ae79620d4
d338acd36dc0acab76289e81c1d52225b5a4c07a
2186d715bc7dbc529df5cbb213fbdd5d7a6e3c3cac56a898eafc8ac0044229d7
GET /revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/04c83ed9568d7ce067e358e7e920e121.jpg HTTP/1.1
Host: images.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:40 GMT
content-length: 5449
content-type: image/jpeg
last-modified: Thu, 11 Nov 2021 17:50:30 GMT
accept-ranges: bytes
etag: "752b33b71a4b7db69dfa050ae79620d4"
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=604800
server-timing: fastly;dur=1;cpu=0;start=2022-04-05T15:47:04.062Z;desc=hit,rtt;dur=1
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
x-hw: 1675522360.cds221.sk1.hn,1675522360.cds257.sk1.c
X-Firefox-Spdy: h2
id.crwdcntrl.net/id
52.211.54.102200 OK 43 B IP 52.211.54.102:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 90eeff5111bbbdce769d4130cc3cca3c
d62886c1a85d51814cb7f124761c5e6aca6d8933
a96e1e97d62ab9747678b947bdf0a0ea5f81790b1e3a1df2d4607a86bf802596
GET /id HTTP/1.1
Host: id.crwdcntrl.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:40 GMT
content-type: application/json;charset=utf-8
content-length: 43
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.21.233
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
server: Jetty(9.4.38.v20210224)
X-Firefox-Spdy: h2
images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/0826dd1df7707869501de88914afdaee.jpg
151.139.128.10200 OK 6.5 kB URL HTTP/2 images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/0826dd1df7707869501de88914afdaee.jpg
IP 151.139.128.10:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 150x150, segment length 16, baseline, precision 8, 300x225, components 3\012- data
Hash c2405b85a717de6dc339448405d54099
75aa5f2ac3dc2b237d986fd0027a905641e80d5a
ee0103912502295fc1a47921c0a1cf001bbf3a8785c92e41028c5d39935a90c8
GET /revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/0826dd1df7707869501de88914afdaee.jpg HTTP/1.1
Host: images.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:40 GMT
content-length: 6477
content-type: image/jpeg
last-modified: Wed, 20 Jul 2022 16:16:30 GMT
accept-ranges: bytes
etag: "c2405b85a717de6dc339448405d54099"
x-request-id: 5bd2b164b8e4bd07b9612e4327bbb9d3
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=604800
server-timing: fastly;dur=1;start=2022-07-20T16:37:49.748Z;desc=hit,rtt;dur=1
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
x-hw: 1675522360.cds221.sk1.hn,1675522360.cds071.sk1.c
X-Firefox-Spdy: h2
images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/7fab516522f33cdeea57b2c088fe6143.jpg
151.139.128.10200 OK 7.5 kB URL HTTP/2 images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/7fab516522f33cdeea57b2c088fe6143.jpg
IP 151.139.128.10:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, baseline, precision 8, 300x225, components 3\012- data
Hash b5138cca785922281176548381135785
7db5bf3fdbce4c53bd00f86aa65240d419632c1f
3c1724d0e0546a35d6b35d39aad7cc66c49560de978c5e713dd275b81b420bac
GET /revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/7fab516522f33cdeea57b2c088fe6143.jpg HTTP/1.1
Host: images.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:40 GMT
content-length: 7506
content-type: image/jpeg
last-modified: Thu, 11 Nov 2021 17:43:22 GMT
accept-ranges: bytes
etag: "b5138cca785922281176548381135785"
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=604800
server-timing: fastly;dur=1;cpu=0;start=2022-04-05T17:58:16.759Z;desc=hit,rtt;dur=1
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
x-hw: 1675522360.cds221.sk1.hn,1675522360.cds264.sk1.c
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Frollcall.com%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F
104.18.33.19302 Found 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Frollcall.com%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F
IP 104.18.33.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch?d=https%3A%2F%2Frollcall.com%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js-sec.indexww.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 14:52:40 GMT
content-length: 0
location: /usermatch?d=https%3A%2F%2Frollcall.com%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
cf-ray: 79443b42e9a20afa-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y95xOBbzpP.r4MTQtF7sYgAA; Path=/; Domain=casalemedia.com; Expires=Sun, 04 Feb 2024 14:52:40 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=676; Path=/; Domain=casalemedia.com; Expires=Fri, 05 May 2023 14:52:40 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=676; Path=/; Domain=casalemedia.com; Expires=Fri, 05 May 2023 14:52:40 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F4CvO3%2BNEv62R%2BTqiRkOtGQyo259nIA0i0N%2BpmsNtsoCZ4hrqXBHxi5XJku%2FQybgmS3P6CjDXIwfYAl83%2BQRnnxIkibSkjWchrUgvEU1%2BCzXzk0q37umOVGOHbr47oGu4uEgRYJV6GjXeg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/8490c5d3f3ae029804f6b4517ffd951c.jpg
151.139.128.10200 OK 7.9 kB URL HTTP/2 images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/8490c5d3f3ae029804f6b4517ffd951c.jpg
IP 151.139.128.10:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x225, components 3\012- data
Hash 4e520824f3926f03aa1193726babd6cf
a6996b45d3f6324b3916013807eb14c2eac1c24a
b236d5b0875d799913fdff2212b0dde72a25d2a53c3d2a07cbc2e04e177e3a1f
GET /revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/8490c5d3f3ae029804f6b4517ffd951c.jpg HTTP/1.1
Host: images.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:40 GMT
content-length: 7931
content-type: image/jpeg
last-modified: Thu, 11 Nov 2021 17:39:36 GMT
accept-ranges: bytes
etag: "4e520824f3926f03aa1193726babd6cf"
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=604800
server-timing: fastly;dur=1;cpu=0;start=2022-08-29T21:57:46.748Z;desc=hit,rtt;dur=0
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
x-hw: 1675522360.cds221.sk1.hn,1675522360.cds235.sk1.c
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ca7eb3eb74686ef2eb28c3a7549b108a
363791801891aea07faa7c609b032eb9818d5ba7
b604e0190b1fbb920488126650b022851f344df518fe33649450619581903969
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5782
Cache-Control: max-age=133337
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:40 GMT
Etag: "63ddc07b-1d7"
Expires: Mon, 06 Feb 2023 03:54:57 GMT
Last-Modified: Sat, 04 Feb 2023 02:18:35 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash d5c1c16910d3863e0e96917075b0b675
9b971a2c0ff758ddd319b5c1373ab9a9e1144ed0
794ceb68060fe4281f128225b917a38b92c611b81156f7bd18bacecf1807e53a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c1.adform.net/serving/cookie/match?party=1283
37.157.6.242302 Found 0 B URL HTTP/2 c1.adform.net/serving/cookie/match?party=1283
IP 37.157.6.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /serving/cookie/match?party=1283 HTTP/1.1
Host: c1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.yieldmo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 14:52:40 GMT
content-length: 0
location: https://c1.adform.net/serving/cookie/match?CC=1&party=1283
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
set-cookie: C=1; expires=Sat, 04 Mar 2023 14:52:40 GMT; domain=adform.net; path=/
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/be379355b4acc8d21f52897760458fde.jpg
151.139.128.10200 OK 7.3 kB URL HTTP/2 images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/be379355b4acc8d21f52897760458fde.jpg
IP 151.139.128.10:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, baseline, precision 8, 300x225, components 1\012- data
Hash 436a75728f3515350b68084540a39681
883092731691f2e306fdd5c74c18971f2186d050
215b92830674428158cbdadab285b895a1fcd4dd19ee858a35e62eb0a6f1bae7
GET /revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/be379355b4acc8d21f52897760458fde.jpg HTTP/1.1
Host: images.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:40 GMT
content-length: 7280
content-type: image/jpeg
last-modified: Thu, 11 Nov 2021 17:39:19 GMT
accept-ranges: bytes
etag: "436a75728f3515350b68084540a39681"
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=604800
server-timing: fastly;dur=501;cpu=0;start=2022-06-28T16:26:46.281Z;desc=hit,rtt;dur=0
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
x-hw: 1675522360.cds221.sk1.hn,1675522360.cds237.sk1.c
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
142.250.74.35200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Hash 53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08
GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 14:34:21 GMT
expires: Fri, 02 Feb 2024 14:34:21 GMT
cache-control: public, max-age=31536000
age: 173899
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash aa90c0091fe995b2d34666f6558601cd
b742ea6c06e57167d07dbafe5fc3a18c3396533a
1d0d138c2535f65f24b130a703f8039cef0c696ad6551e9b373c4b63f7bced64
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5868
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:40 GMT
Last-Modified: Sat, 04 Feb 2023 13:14:52 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
sync.srv.stackadapt.com/sync?nid=21
54.85.61.80302 Found 128 B URL HTTP/1.1 sync.srv.stackadapt.com/sync?nid=21
IP 54.85.61.80:0
File type HTML document, ASCII text
Hash 0a55dbcad1486c2454c24bb0b359681b
ad6288a00d8ab084b8b4ba81b8978c0cd70225f7
90e060766bdedb5a5a65572d7ad231a9ab24dc039c29f319c1935a19de805c8b
GET /sync?nid=21 HTTP/1.1
Host: sync.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.yieldmo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Sat, 04 Feb 2023 14:52:40 GMT
Location: https://ads.yieldmo.com/sync?pn_id=stk&userid=JqcezC26R8pveCx11ptMIltaKpo&gdpr=&gdpr_consent=
Set-Cookie: sa-user-id=s%3A0-26a71ecc-2dba-47ca-6f78-2c75d69b4c22.wwxwi%2BXknA5zLFNE5zFt%2B44AHb85IyxXJ4VUTFdnrvY; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AJqcezC26R8pveCx11ptMIltaKpo.u3zjmGlPFGkuuzB1tduF8I8RgdMgmenr3ZCLu74%2FZIs; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 128
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
b1sync.zemanta.com/usersync/yieldmo/?cb=https%3A%2F%2Fads.yieldmo.com%2Fv000%2Fsync%3Fpn_id%3Dz%26userid%3D__ZUID__
64.74.236.191302 Found 76 B URL HTTP/1.1 b1sync.zemanta.com/usersync/yieldmo/?cb=https%3A%2F%2Fads.yieldmo.com%2Fv000%2Fsync%3Fpn_id%3Dz%26userid%3D__ZUID__
IP 64.74.236.191:0
File type HTML document, ASCII text
Hash e80e910ca2fd15f952aeaf7cfc8f5044
b2f21b388408b5877247430b7a8a1954bdf48bfd
96f5e718924d2a760110aa7444eadf7b0c5eaf105d0cd486adabd8f6e6f09de9
GET /usersync/yieldmo/?cb=https%3A%2F%2Fads.yieldmo.com%2Fv000%2Fsync%3Fpn_id%3Dz%26userid%3D__ZUID__ HTTP/1.1
Host: b1sync.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.yieldmo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Content-Length: 76
Cache-Control: no-cache, no-store, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Location: https://ads.yieldmo.com/v000/sync?pn_id=z&userid=
Pragma: no-cache
Date: Sat, 04 Feb 2023 14:52:40 GMT
ads.yieldmo.com/v000/sync?userid=0&pn_id=an
52.30.8.210200 OK 0 B URL HTTP/2 ads.yieldmo.com/v000/sync?userid=0&pn_id=an
IP 52.30.8.210:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v000/sync?userid=0&pn_id=an HTTP/1.1
Host: ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.yieldmo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:41 GMT
content-length: 0
X-Firefox-Spdy: h2
ads.yieldmo.com/sync?pn_id=stk&userid=JqcezC26R8pveCx11ptMIltaKpo&gdpr=&gdpr_consent=
52.30.8.210200 OK 43 B URL HTTP/2 ads.yieldmo.com/sync?pn_id=stk&userid=JqcezC26R8pveCx11ptMIltaKpo&gdpr=&gdpr_consent=
IP 52.30.8.210:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?pn_id=stk&userid=JqcezC26R8pveCx11ptMIltaKpo&gdpr=&gdpr_consent= HTTP/1.1
Host: ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.yieldmo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:41 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=g734eddfca3e71dd6389%7C1675522361098%7C0%7C; Domain=.yieldmo.com; Expires=Sun, 04-Feb-2024 14:52:41 GMT; Path=/; Secure; SameSite=None; Secure
ptrstk=JqcezC26R8pveCx11ptMIltaKpo; Domain=ads.yieldmo.com; Expires=Sun, 04-Feb-2024 14:52:41 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Frollcall.com%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
104.18.33.19200 OK 144 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Frollcall.com%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
IP 104.18.33.19:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 65a79b34a0fa69b0f930db6835341e17
884152423b1ebc54fe56f241beed71f8ed9508c1
334f0ec074dff789cc852eb338513a5c8aa141039a542d39582c940110e5b157
GET /usermatch?d=https%3A%2F%2Frollcall.com%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1 HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://js-sec.indexww.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:40 GMT
content-type: text/html
cf-ray: 79443b435a190afa-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lMFu%2FwAgSSCeXbIIi5LvQtRFyE%2Fgcp%2BbAt5p3OneGkqzB3f0HXdPieCzsddgiGD7HFgWJYcsOxkJ%2FqLlmS9zWhHK1qYv66uQUOMtUB%2F7fi4eLF8XmD317zTnqeWhpdE80kcXq2F5sBcxQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DF16586E5-3816-4C5E-92DA-D853F84B23B2%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
2.18.172.200200 OK 953 B URL HTTP/2 ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DF16586E5-3816-4C5E-92DA-D853F84B23B2%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1720), with no line terminators
Hash 499546dec064c08e4c7c354bab138f7f
f155d071d071e4e7c1d45e22943915df9d9f2b75
1a9219bc3962479cfa6ff0ca64e2f810aab8b816ae4f937b252d0ca044d693b4
GET /AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DF16586E5-3816-4C5E-92DA-D853F84B23B2%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://simage4.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2016 09:36:32 GMT
etag: "fa18f0-6b8-53a413358bd01"
server: Apache/2.2.15 (CentOS)
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 953
content-type: text/html; charset=UTF-8
cache-control: max-age=145411
expires: Mon, 06 Feb 2023 07:16:12 GMT
date: Sat, 04 Feb 2023 14:52:41 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 37a66277f22182478d3c90c9d0fd0c3b
3af6019daf5dbed4a989c834f00b4653771934a6
93963f3c139c76a93d0e40cc0e847a4c3cbb282d20aa128f1c6a5486c2ef6880
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1355
Cache-Control: max-age=131817
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 14:52:41 GMT
Etag: "63ddcbd7-118"
Expires: Mon, 06 Feb 2023 03:29:38 GMT
Last-Modified: Sat, 04 Feb 2023 03:07:03 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
c1.adform.net/serving/cookie/match?CC=1&party=1283
37.157.6.242200 OK 78 B URL HTTP/2 c1.adform.net/serving/cookie/match?CC=1&party=1283
IP 37.157.6.242:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash acb70d3c079bca42d48a0604015a6ba5
5ef02eef5fb59faa9a6d1516d75979dcff1ed80a
8d4078612876c374d3bf2559ecf750a2483479972458d50410d86d640bb3cf46
GET /serving/cookie/match?CC=1&party=1283 HTTP/1.1
Host: c1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.yieldmo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:41 GMT
content-type: image/gif
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
hal90006.redintelligence.net/request.php?zone=7lb6qbnvrhza&nw=20&renderingType=javascript&namespace=4866554fdd&subid=&uid=4d93f7fb12124ffe&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=728x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCekruNnHeY8XTCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QWyHjAra0D778csD-Y5nIeg0Qm2tR9e6KEcFwtzLBL0UJgQEbzlKHLgsDrVBIrtzoXmBR2DA5OettUg4ov1CaEZK8LIu3XLPz46cTkFpqkhxaDj5Ijf5xyzPGEGiTu7HwhF_wCQWuqNnVAZ0C8JpU_mrKRq8OaPv6bnO6TLuhNuHRnDpvy41LKQxDJhzVh9umZJXlVclruZYTdT88zWO7MDZOOzK0DPfiE3DIJiD-uGFBG-lJ5WxQh-b9aDH35shm0toPbtoGLvpeJt1dEopMVQhX278qMXrnMaX5WIU0qjB7BJX72g7I6uTqOY1g-B_-Fg1wuOIyITsVuIkPlZm3h2ZFcmfuxA5dCAwfDT9PgsoZ1MhEwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_12Pvz-xxOF-b-h386_4S5Wy-s3-A%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-AHKD2sUSZBqPAb8W6qm4JThLo_-rwSLNQ81QAy0T86xa63rK6EXb1BogdLrNms52uFIOzzHOd_XYtXGnq9I8EYpAlQUHCTV1RZT9H4O2QeNedoYwqw5FCz6d7VeYdMsdLEz2lC7p82cuId15o9ajPwnZUI8fJ3K88Zt3euwO8ZyCMKV4o%26cry%3D1%26dbm_d%3DAKAmf-BpzlzzcDwoMLI5WlC8X5fVrRwt6Rw6BTcuFyskCFieNROoexv63wODavjPducyCgq0KfiTUpbDRgRZaKvznkpeMANx-xMozGBnrwwMeJgkevZK1G6LboxZ8MQuAmW2u6f769IPjFmiExsIhovqsK1cL3SaUnlYl3K7-UfcR-uwSCFq51hFjrgCmEoBinSiCAO1QTXbGLGGO3ty6cZmqf9Ayugnz4ZKTkd5cYore4AFoPsjNUS_kOKnqsQSXz7257VeNERxv8-ILZ_q1o063KNyw7qN9AvBhxhFCBowQ-b76315o-MjWy28gyXneM4ke8Rk8M4VdA5loSZ9aaCgj7_O-19FO4jdvgsEGNmtb_QLl7__GWz-ejyMZC2WTlCTAlzrk7HmijjC9jS9U-4Azg3rcjGtJXG8Ia_cFdNyZqonFrCYvqFnIj1lAVL2uplWTIE4QmSq9kHulJO9sbSYJb_j9sOSu3ZVbP7UR70PwcgPD1GWY8dqXgkDuLEm01aVIM3FVdd609HGUhO21OU0XBOqxld9u5sDnA5KIEgk-rQxNiWntNgXCqMbGhKuemjQ_XWjaPrsxANFtzgVU00ZrfqdhXOrLQ%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=3067293443287&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
138.201.63.164200 OK 512 B URL HTTP/1.1 hal90006.redintelligence.net/request.php?zone=7lb6qbnvrhza&nw=20&renderingType=javascript&namespace=4866554fdd&subid=&uid=4d93f7fb12124ffe&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=728x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCekruNnHeY8XTCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QWyHjAra0D778csD-Y5nIeg0Qm2tR9e6KEcFwtzLBL0UJgQEbzlKHLgsDrVBIrtzoXmBR2DA5OettUg4ov1CaEZK8LIu3XLPz46cTkFpqkhxaDj5Ijf5xyzPGEGiTu7HwhF_wCQWuqNnVAZ0C8JpU_mrKRq8OaPv6bnO6TLuhNuHRnDpvy41LKQxDJhzVh9umZJXlVclruZYTdT88zWO7MDZOOzK0DPfiE3DIJiD-uGFBG-lJ5WxQh-b9aDH35shm0toPbtoGLvpeJt1dEopMVQhX278qMXrnMaX5WIU0qjB7BJX72g7I6uTqOY1g-B_-Fg1wuOIyITsVuIkPlZm3h2ZFcmfuxA5dCAwfDT9PgsoZ1MhEwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_12Pvz-xxOF-b-h386_4S5Wy-s3-A%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-AHKD2sUSZBqPAb8W6qm4JThLo_-rwSLNQ81QAy0T86xa63rK6EXb1BogdLrNms52uFIOzzHOd_XYtXGnq9I8EYpAlQUHCTV1RZT9H4O2QeNedoYwqw5FCz6d7VeYdMsdLEz2lC7p82cuId15o9ajPwnZUI8fJ3K88Zt3euwO8ZyCMKV4o%26cry%3D1%26dbm_d%3DAKAmf-BpzlzzcDwoMLI5WlC8X5fVrRwt6Rw6BTcuFyskCFieNROoexv63wODavjPducyCgq0KfiTUpbDRgRZaKvznkpeMANx-xMozGBnrwwMeJgkevZK1G6LboxZ8MQuAmW2u6f769IPjFmiExsIhovqsK1cL3SaUnlYl3K7-UfcR-uwSCFq51hFjrgCmEoBinSiCAO1QTXbGLGGO3ty6cZmqf9Ayugnz4ZKTkd5cYore4AFoPsjNUS_kOKnqsQSXz7257VeNERxv8-ILZ_q1o063KNyw7qN9AvBhxhFCBowQ-b76315o-MjWy28gyXneM4ke8Rk8M4VdA5loSZ9aaCgj7_O-19FO4jdvgsEGNmtb_QLl7__GWz-ejyMZC2WTlCTAlzrk7HmijjC9jS9U-4Azg3rcjGtJXG8Ia_cFdNyZqonFrCYvqFnIj1lAVL2uplWTIE4QmSq9kHulJO9sbSYJb_j9sOSu3ZVbP7UR70PwcgPD1GWY8dqXgkDuLEm01aVIM3FVdd609HGUhO21OU0XBOqxld9u5sDnA5KIEgk-rQxNiWntNgXCqMbGhKuemjQ_XWjaPrsxANFtzgVU00ZrfqdhXOrLQ%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=3067293443287&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
IP 138.201.63.164:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 0619a2dfdb9b21c45db2d05fba630e42
34d8e244431d6f68ba054e8ab5b0263314153856
0b7362a4b574e98aeddc5146a69177b1478804fedf5eeb319ca2f3319f902e85
GET /request.php?zone=7lb6qbnvrhza&nw=20&renderingType=javascript&namespace=4866554fdd&subid=&uid=4d93f7fb12124ffe&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=728x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCekruNnHeY8XTCvOWxdwP57evuAfJuaKcaby0zc7VD_AuEAEg_MPYLmDDhICAmBjIAQmpAt5wzfFwHLI-qAMBqgSWAk_QWyHjAra0D778csD-Y5nIeg0Qm2tR9e6KEcFwtzLBL0UJgQEbzlKHLgsDrVBIrtzoXmBR2DA5OettUg4ov1CaEZK8LIu3XLPz46cTkFpqkhxaDj5Ijf5xyzPGEGiTu7HwhF_wCQWuqNnVAZ0C8JpU_mrKRq8OaPv6bnO6TLuhNuHRnDpvy41LKQxDJhzVh9umZJXlVclruZYTdT88zWO7MDZOOzK0DPfiE3DIJiD-uGFBG-lJ5WxQh-b9aDH35shm0toPbtoGLvpeJt1dEopMVQhX278qMXrnMaX5WIU0qjB7BJX72g7I6uTqOY1g-B_-Fg1wuOIyITsVuIkPlZm3h2ZFcmfuxA5dCAwfDT9PgsoZ1MhEwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSTADUE5ymCeR95si5oBRG2ERLO2Rn_XRdj8l5ZabWqhI9Geq2KaX3Eg4wRWGvjkCwM8XkE9eYb59esbr767skxlaFQOaybsHLPbuzszwYAQ%26sig%3DAOD64_12Pvz-xxOF-b-h386_4S5Wy-s3-A%26client%3Dca-pub-3455698866695363%26dbm_c%3DAKAmf-AHKD2sUSZBqPAb8W6qm4JThLo_-rwSLNQ81QAy0T86xa63rK6EXb1BogdLrNms52uFIOzzHOd_XYtXGnq9I8EYpAlQUHCTV1RZT9H4O2QeNedoYwqw5FCz6d7VeYdMsdLEz2lC7p82cuId15o9ajPwnZUI8fJ3K88Zt3euwO8ZyCMKV4o%26cry%3D1%26dbm_d%3DAKAmf-BpzlzzcDwoMLI5WlC8X5fVrRwt6Rw6BTcuFyskCFieNROoexv63wODavjPducyCgq0KfiTUpbDRgRZaKvznkpeMANx-xMozGBnrwwMeJgkevZK1G6LboxZ8MQuAmW2u6f769IPjFmiExsIhovqsK1cL3SaUnlYl3K7-UfcR-uwSCFq51hFjrgCmEoBinSiCAO1QTXbGLGGO3ty6cZmqf9Ayugnz4ZKTkd5cYore4AFoPsjNUS_kOKnqsQSXz7257VeNERxv8-ILZ_q1o063KNyw7qN9AvBhxhFCBowQ-b76315o-MjWy28gyXneM4ke8Rk8M4VdA5loSZ9aaCgj7_O-19FO4jdvgsEGNmtb_QLl7__GWz-ejyMZC2WTlCTAlzrk7HmijjC9jS9U-4Azg3rcjGtJXG8Ia_cFdNyZqonFrCYvqFnIj1lAVL2uplWTIE4QmSq9kHulJO9sbSYJb_j9sOSu3ZVbP7UR70PwcgPD1GWY8dqXgkDuLEm01aVIM3FVdd609HGUhO21OU0XBOqxld9u5sDnA5KIEgk-rQxNiWntNgXCqMbGhKuemjQ_XWjaPrsxANFtzgVU00ZrfqdhXOrLQ%26adurl%3D&documentReferer=https%3A%2F%2Frollcall.com%2F&ancestorOrigins=null&random=3067293443287&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1 HTTP/1.1
Host: hal90006.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Connection: keep-alive
Cookie: 8lcfmzhxc8d6_uid=cbc9dcee820f445f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:41 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 04 Feb 2023 14:52:41 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=cbc9dcee820f445f; expires=Fri, 05-May-2023 14:52:41 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
X-NEORY-SubId: 59809900083649704438316012225006
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 512
Connection: close
Content-Type: application/x-javascript; charset=utf-8
hal900017.redintelligence.net/request_content.php?s=69481400087394404438320012225017&a=25733c13
159.69.70.9200 OK 2.3 kB URL HTTP/1.1 hal900017.redintelligence.net/request_content.php?s=69481400087394404438320012225017&a=25733c13
IP 159.69.70.9:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash c3d95618d110cccd8ebfeb68858ecac3
8e3d16a4ea89f0ba8dd3fbac4d26c48925f09c12
19a7d79ac1dc9f4fd7b36577f85859d0a59f6dee375ed82948b2209f4e59331a
GET /request_content.php?s=69481400087394404438320012225017&a=25733c13 HTTP/1.1
Host: hal900017.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Cookie: 8lcfmzhxc8d6_uid=cbc9dcee820f445f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:41 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 04 Feb 2023 14:52:41 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2289
Connection: close
Content-Type: text/html; charset=utf-8
hal90005.redintelligence.net/request_content.php?s=60330100102874404438316012225005&a=513ff439
138.201.63.165200 OK 1.5 kB URL HTTP/1.1 hal90005.redintelligence.net/request_content.php?s=60330100102874404438316012225005&a=513ff439
IP 138.201.63.165:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash f631ef3ec89bc3700dc3c47a7ac8d644
8469338bbd774479e75f87c16fdb29bbe8631601
daf1feeaeff2b78524037ddcf1dac1d0a6569cb3c3ea62a065b577d2db3366f2
GET /request_content.php?s=60330100102874404438316012225005&a=513ff439 HTTP/1.1
Host: hal90005.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Cookie: 8lcfmzhxc8d6_uid=cbc9dcee820f445f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:41 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 04 Feb 2023 14:52:41 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1501
Connection: close
Content-Type: text/html; charset=utf-8
ib.adnxs.com/async_usersync?cbfn=queuePixels
37.252.171.85307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/async_usersync?cbfn=queuePixels
IP 37.252.171.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 14:52:41 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: 749b0374-364d-4562-a515-1f7c572d505d
Set-Cookie: uuid2=2070885706579207032; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 14:52:41 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
hal90005.redintelligence.net/viewability?s=60330100102874404438316012225005&a=6f20ad5e&vb=m
138.201.63.165200 OK 0 B URL HTTP/1.1 hal90005.redintelligence.net/viewability?s=60330100102874404438316012225005&a=6f20ad5e&vb=m
IP 138.201.63.165:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /viewability?s=60330100102874404438316012225005&a=6f20ad5e&vb=m HTTP/1.1
Host: hal90005.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal90005.redintelligence.net/request_content.php?s=60330100102874404438316012225005&a=513ff439
Cookie: 8lcfmzhxc8d6_uid=cbc9dcee820f445f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:41 GMT
Server: Apache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
shb.richaudience.com/hb/
162.55.101.208200 OK 14 kB IP 162.55.101.208:0
ASN #24940 Hetzner Online GmbH
Hash 271818dbe8a18923ee71854be49486c2
3c71d8522f78c5bdd170224995fec17cb3d827bb
3ee14e64d852f0c92d19b154e80c82ea2c4b7491370769b7904afece10381293
POST /hb/ HTTP/1.1
Host: shb.richaudience.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 789
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Sat, 04 Feb 2023 14:52:20 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: https://rollcall.com
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
hal90006.redintelligence.net/request_content.php?s=59809900083649704438316012225006&a=abf70fbf
138.201.63.164200 OK 2.3 kB URL HTTP/1.1 hal90006.redintelligence.net/request_content.php?s=59809900083649704438316012225006&a=abf70fbf
IP 138.201.63.164:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 2f6f0a9339550c1248c792c54c811662
b30ba141c4b33ae0375eb57ea5b98ff8ff6babcb
93a8bb62a70cff3c2ca935be9e3582443ae2d84d2e0e07436a331258fac7d3f0
GET /request_content.php?s=59809900083649704438316012225006&a=abf70fbf HTTP/1.1
Host: hal90006.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2bf131e3cf8d0a80141165ef28d7cdad.safeframe.googlesyndication.com/
Cookie: 8lcfmzhxc8d6_uid=cbc9dcee820f445f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:41 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sat, 04 Feb 2023 14:52:41 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2283
Connection: close
Content-Type: text/html; charset=utf-8
cdn.contentspread.net/24i/content/soberfb/EN/S-728x90.gif
51.75.147.170200 OK 24 kB URL HTTP/1.1 cdn.contentspread.net/24i/content/soberfb/EN/S-728x90.gif
IP 51.75.147.170:0
File type GIF image data, version 89a, 728 x 90\012- data
Hash 16d604b22cf44e876b2c8f5a80b9fe18
42bc165a33da7671c208a66a0e9f3635cfe0d0bc
bb7af425c43258678e12b76bf22f6eaab51fd7dfd6e285131a86a3002d547ee9
GET /24i/content/soberfb/EN/S-728x90.gif HTTP/1.1
Host: cdn.contentspread.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal90005.redintelligence.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 14:52:41 GMT
Content-Type: image/gif
Content-Length: 24505
Last-Modified: Mon, 23 Jul 2018 15:19:29 GMT
Connection: close
ETag: "5b55f201-5fb9"
Accept-Ranges: bytes
cdn.contentspread.net/24i/content/soberfb/EN/S-300x250.gif
51.75.147.170200 OK 71 kB URL HTTP/1.1 cdn.contentspread.net/24i/content/soberfb/EN/S-300x250.gif
IP 51.75.147.170:0
File type GIF image data, version 89a, 300 x 250\012- data
Hash d6ba1ff0393a5eb5224cf2416db7ba0b
c73aed3c96fd54b634cf2f38358fb59f99484ae0
fb805ea8e0e2123c713b4613ec92e55d7c11db579417ab8bdbd070d5c18e5104
GET /24i/content/soberfb/EN/S-300x250.gif HTTP/1.1
Host: cdn.contentspread.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal900017.redintelligence.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 14:52:41 GMT
Content-Type: image/gif
Content-Length: 71110
Last-Modified: Mon, 23 Jul 2018 15:20:14 GMT
Connection: close
ETag: "5b55f22e-115c6"
Accept-Ranges: bytes
hal900017.redintelligence.net/viewability?s=69481400087394404438320012225017&a=e0e2de14&vb=m
159.69.70.9200 OK 0 B URL HTTP/1.1 hal900017.redintelligence.net/viewability?s=69481400087394404438320012225017&a=e0e2de14&vb=m
IP 159.69.70.9:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /viewability?s=69481400087394404438320012225017&a=e0e2de14&vb=m HTTP/1.1
Host: hal900017.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal900017.redintelligence.net/request_content.php?s=69481400087394404438320012225017&a=25733c13
Cookie: 8lcfmzhxc8d6_uid=cbc9dcee820f445f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:41 GMT
Server: Apache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
37.252.171.85200 OK 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP 37.252.171.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 14:52:41 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 84ba275c-4666-431b-bf68-0bd609b2bcca
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
sb.scorecardresearch.com/c2/6036424/cs.js
143.204.55.25302 Found 0 B URL HTTP/2 sb.scorecardresearch.com/c2/6036424/cs.js
IP 143.204.55.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c2/6036424/cs.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-length: 0
date: Sat, 04 Feb 2023 14:52:42 GMT
location: /internal-c2/default/cs.js
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lCO924-Laj_5LhSnb0xL4z4dBGIuljpDF136K-W1QpjfXd6milKSgw==
X-Firefox-Spdy: h2
sb.scorecardresearch.com/internal-c2/default/cs.js
143.204.55.25200 OK 0 B URL HTTP/2 sb.scorecardresearch.com/internal-c2/default/cs.js
IP 143.204.55.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /internal-c2/default/cs.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rollcall.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 0
last-modified: Mon, 01 Mar 2021 20:42:20 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 14:34:52 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JSlOIjdGZ24hb9LmFzg4tmtZOQb9Rq5BWAy1Dp07vtMVyl8KeiTTlQ==
age: 1071
X-Firefox-Spdy: h2
hal90006.redintelligence.net/viewability?s=59809900083649704438316012225006&a=bcea9b6a&vb=m
138.201.63.164200 OK 0 B URL HTTP/1.1 hal90006.redintelligence.net/viewability?s=59809900083649704438316012225006&a=bcea9b6a&vb=m
IP 138.201.63.164:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /viewability?s=59809900083649704438316012225006&a=bcea9b6a&vb=m HTTP/1.1
Host: hal90006.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal90006.redintelligence.net/request_content.php?s=59809900083649704438316012225006&a=abf70fbf
Cookie: 8lcfmzhxc8d6_uid=cbc9dcee820f445f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 14:52:42 GMT
Server: Apache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
shb.richaudience.com/hb/
162.55.101.208200 OK 0 B IP 162.55.101.208:0
ASN #24940 Hetzner Online GmbH
POST /hb/ HTTP/1.1
Host: shb.richaudience.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 788
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Sat, 04 Feb 2023 14:52:20 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: https://rollcall.com
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
www.lightboxcdn.com/static/fb_lightbox.2.1.5.css?cb=637904161864529138
104.19.212.131200 OK 0 B URL HTTP/2 www.lightboxcdn.com/static/fb_lightbox.2.1.5.css?cb=637904161864529138
IP 104.19.212.131:0
GET /static/fb_lightbox.2.1.5.css?cb=637904161864529138 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:38 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=6016
content-md5: q4B4xYJoZwx9ikt94o1nCA==
last-modified: Wed, 10 Apr 2019 19:06:17 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-cbmodifiedtime: Wed, 10 Apr 2019 18:50:43 GMT
x-ms-request-id: 48ec5fef-b01e-001b-385e-7c36a2000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 401784
expires: Tue, 07 Mar 2023 14:52:38 GMT
cache-control: public, max-age=2678400
vary: Accept-Encoding
server: cloudflare
cf-ray: 79443b345db6b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
js-sec.indexww.com/um/ixmatch.html
104.18.36.94200 OK 0 B URL HTTP/2 js-sec.indexww.com/um/ixmatch.html
IP 104.18.36.94:0
GET /um/ixmatch.html HTTP/1.1
Host: js-sec.indexww.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:40 GMT
content-type: text/html; charset=UTF-8
last-modified: Mon, 25 Jul 2022 19:18:26 GMT
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
cf-cache-status: HIT
age: 124
expires: Sat, 04 Feb 2023 18:52:40 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 79443b3fee45b511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cloudflare.com/cdn-cgi/trace
104.16.133.229200 OK 0 B URL HTTP/2 cloudflare.com/cdn-cgi/trace
IP 104.16.133.229:0
GET /cdn-cgi/trace HTTP/1.1
Host: cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:35 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 79443b211f9cb4e8-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
rollcall.com/static/media/LyonText-Semibold.5d6068f6.woff2
192.0.66.176200 OK 0 B URL HTTP/2 rollcall.com/static/media/LyonText-Semibold.5d6068f6.woff2
IP 192.0.66.176:0
GET /static/media/LyonText-Semibold.5d6068f6.woff2 HTTP/1.1
Host: rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://rollcall.com/fonts.c3c6d6de0b90e870863b.css
Cookie: _uc_referrer=direct; _pbjs_userid_consent_data=3524755945110770
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:35 GMT
content-type: font/woff2
content-length: 60768
x-powered-by: Express
last-modified: Mon, 05 Dec 2022 17:48:54 GMT
etag: W/"ed60-184e367af70"
x-rq: arn2 0 2 9980
age: 39298
x-cache: hit
vary: X-Mobile-Class
accept-ranges: bytes
expires: Sun, 04 Feb 2024 14:52:35 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
shb.richaudience.com/hb/
162.55.101.208200 OK 0 B IP 162.55.101.208:0
ASN #24940 Hetzner Online GmbH
POST /hb/ HTTP/1.1
Host: shb.richaudience.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 770
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.1
date: Sat, 04 Feb 2023 14:52:20 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: https://rollcall.com
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
shb.richaudience.com/hb/
162.55.101.208200 OK 0 B IP 162.55.101.208:0
ASN #24940 Hetzner Online GmbH
POST /hb/ HTTP/1.1
Host: shb.richaudience.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 789
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.1
date: Sat, 04 Feb 2023 14:52:20 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: https://rollcall.com
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
www.lightboxcdn.com/vendor/eba8a9c6-62bc-4f0f-974c-73a43da9c976/lightbox_inline.js?mb=1675522392489
104.19.212.131200 OK 0 B URL HTTP/2 www.lightboxcdn.com/vendor/eba8a9c6-62bc-4f0f-974c-73a43da9c976/lightbox_inline.js?mb=1675522392489
IP 104.19.212.131:0
GET /vendor/eba8a9c6-62bc-4f0f-974c-73a43da9c976/lightbox_inline.js?mb=1675522392489 HTTP/1.1
Host: www.lightboxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:37 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2379
content-md5: 0b0oG3Gn9mLV73F8RarLrA==
last-modified: Fri, 10 Jun 2022 00:03:06 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 3f8e3dbc-301e-0045-2d5e-7cc5a1000000
x-ms-version: 2009-09-19
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 79443b287f1bb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
ats.rlcdn.com/ats.js
54.230.111.92200 OK 0 B IP 54.230.111.92:0
GET /ats.js HTTP/1.1
Host: ats.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 19 Jan 2023 10:03:36 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-codebuild-content-sha256: 3efbae2e7f7f574316dfc685479946d213531c0b483ab4a61e653a0088f0cae8
x-amz-version-id: FdZQKnEndO3mqmnRp7XQ3uMfeJERmMlw
x-amz-meta-codebuild-buildarn: arn:aws:codebuild:eu-west-1:469675294282:build/ATSLibrary-prod:96f94076-69de-4a4b-8bd0-6fb739c06860
x-amz-meta-codebuild-content-md5: e16bd58aa55fcc98af3b10870aad5974
server: AmazonS3
content-encoding: gzip
date: Sat, 04 Feb 2023 08:16:51 GMT
cache-control: must-revalidate,public,max-age=86400
etag: W/"0820c3a8da5dbe428619a7328c53b95f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qDnVNFNMUK60Fx_bHKVAoey8oJjAknrLwiJ6iaIAY5PEWdxxXK-_Lw==
age: 23747
X-Firefox-Spdy: h2
static.chartbeat.com/js/chartbeat_video.js
54.230.219.187200 OK 0 B URL HTTP/2 static.chartbeat.com/js/chartbeat_video.js
IP 54.230.219.187:0
GET /js/chartbeat_video.js HTTP/1.1
Host: static.chartbeat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
date: Sat, 04 Feb 2023 01:12:04 GMT
server: nginx
last-modified: Thu, 08 Dec 2022 17:02:37 GMT
etag: W/"639218ad-11856"
cross-origin-resource-policy: cross-origin
expires: Sun, 05 Feb 2023 01:12:04 GMT
cache-control: max-age=86400
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: K0Oi4CCq9k4E6Df6bGXfRWwhSG0R1ET0rnPfysZ_LscZvFsHLEOvbQ==
age: 49232
X-Firefox-Spdy: h2
sc.tynt.com/script/sc/aNOY3wl8yr6yWbaKkGJozW.js
172.64.151.83200 OK 0 B URL HTTP/2 sc.tynt.com/script/sc/aNOY3wl8yr6yWbaKkGJozW.js
IP 172.64.151.83:0
GET /script/sc/aNOY3wl8yr6yWbaKkGJozW.js HTTP/1.1
Host: sc.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:37 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
status: 200 OK
x-rack-cache: fresh
cache-control: max-age=3600, public, s-maxage=172800
last-modified: Wed, 25 Jan 2023 15:04:20 GMT
x-xss-protection: 1; mode=block
x-request-id: 7bcb7b15-3bd3-4527-910c-95e9dca26147
x-content-digest: 813b7b3c0b2ce29b84bfabd7884e91a3dd4cc8c5
x-runtime: 0.003675
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expires: Thu, 26 Jan 2023 05:02:03 GMT
content-encoding: gzip
cf-cache-status: HIT
age: 388510
server: cloudflare
cf-ray: 79443b307dbffac4-OSL
X-Firefox-Spdy: h2
rollcall.com/2021/03/01/covid-19-n95-respirator-masks/
192.0.66.176200 OK 0 B URL HTTP/2 rollcall.com/2021/03/01/covid-19-n95-respirator-masks/
IP 192.0.66.176:0
GET /2021/03/01/covid-19-n95-respirator-masks/ HTTP/1.1
Host: rollcall.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:33 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
etag: W/"2d554-S0ZioxnzL2xZSB4Ir48sDdSod9U"
x-rq: arn2 0 2 9980
cache-control: max-age=300, must-revalidate
content-encoding: gzip
age: 0
x-cache: miss
vary: Accept-Encoding
accept-ranges: bytes
X-Firefox-Spdy: h2
simage4.pubmatic.com/AdServer/SPug?o=1&p=158314&sc=1&u=F16586E5-3816-4C5E-92DA-D853F84B23B2&rs=3&gdpr=0&gdpr_consent=&us_privacy=
198.47.127.20200 OK 0 B URL HTTP/2 simage4.pubmatic.com/AdServer/SPug?o=1&p=158314&sc=1&u=F16586E5-3816-4C5E-92DA-D853F84B23B2&rs=3&gdpr=0&gdpr_consent=&us_privacy=
IP 198.47.127.20:0
GET /AdServer/SPug?o=1&p=158314&sc=1&u=F16586E5-3816-4C5E-92DA-D853F84B23B2&rs=3&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: simage4.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 14:52:40 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
partners.tremorhub.com/sync?UIRF=5107433826326377396&r=2NOE-KGrsTuJ
3.222.71.0200 OK 0 B URL HTTP/2 partners.tremorhub.com/sync?UIRF=5107433826326377396&r=2NOE-KGrsTuJ
IP 3.222.71.0:0
GET /sync?UIRF=5107433826326377396&r=2NOE-KGrsTuJ HTTP/1.1
Host: partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20836203p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:38 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rollcall.com%2F&domain=rollcall.com&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rollcall.com%2F&domain=rollcall.com&cw=1&lsw=1
IP 178.250.0.157:0
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rollcall.com%2F&domain=rollcall.com&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:36 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://rollcall.com
server-processing-duration-in-ticks: 1187996
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
54.230.111.210200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
IP 54.230.111.210:0
GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 03 Feb 2023 23:38:11 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Fri, 03 Feb 2023 23:37:41 GMT
etag: W/"a4d296427fc806b21335359e398c025c"
cache-control: public, max-age=86400
x-amz-version-id: UbKifkjYJEpp9kioi5dZ9KFE2QW1MpFD
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: b3Ewip_FTIfYyDkllvaesq1QNuvwrY5umhcojXbqEtLbuvvytKl1kQ==
age: 54866
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Frollcall.com%2F&domain=rollcall.com&bundle=uUSDzl93RXFmeXZUd0kzM05hbFZ5TGdOSmtvTWpoVDVuRiUyRlZxYU5MeHZLNzZOdUJtZUk0aXpNb0RuU2U0ck9PYWV6TzdvYnVvb3NtalFGJTJCRWpUcXklMkI3b0dIWmU3NjA4c3BHdE45S0Q4a2ZQbkpVNXZhTHhEQk54N0JXJTJGRlA4U2VWVnJG&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Frollcall.com%2F&domain=rollcall.com&bundle=uUSDzl93RXFmeXZUd0kzM05hbFZ5TGdOSmtvTWpoVDVuRiUyRlZxYU5MeHZLNzZOdUJtZUk0aXpNb0RuU2U0ck9PYWV6TzdvYnVvb3NtalFGJTJCRWpUcXklMkI3b0dIWmU3NjA4c3BHdE45S0Q4a2ZQbkpVNXZhTHhEQk54N0JXJTJGRlA4U2VWVnJG&cw=1&lsw=1
IP 178.250.0.157:0
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Frollcall.com%2F&domain=rollcall.com&bundle=uUSDzl93RXFmeXZUd0kzM05hbFZ5TGdOSmtvTWpoVDVuRiUyRlZxYU5MeHZLNzZOdUJtZUk0aXpNb0RuU2U0ck9PYWV6TzdvYnVvb3NtalFGJTJCRWpUcXklMkI3b0dIWmU3NjA4c3BHdE45S0Q4a2ZQbkpVNXZhTHhEQk54N0JXJTJGRlA4U2VWVnJG&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:39 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://rollcall.com
server-processing-duration-in-ticks: 1379564
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
shb.richaudience.com/hb/
162.55.101.208200 OK 0 B IP 162.55.101.208:0
ASN #24940 Hetzner Online GmbH
POST /hb/ HTTP/1.1
Host: shb.richaudience.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 788
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.1
date: Sat, 04 Feb 2023 14:52:20 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: https://rollcall.com
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
shb.richaudience.com/hb/
162.55.101.208200 OK 0 B IP 162.55.101.208:0
ASN #24940 Hetzner Online GmbH
POST /hb/ HTTP/1.1
Host: shb.richaudience.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 788
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.1
date: Sat, 04 Feb 2023 14:52:20 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: https://rollcall.com
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
ads.yieldmo.com/pbcas?us_privacy=&gdpr=0&gdpr_consent=&type=iframe
52.30.8.210200 OK 0 B URL HTTP/2 ads.yieldmo.com/pbcas?us_privacy=&gdpr=0&gdpr_consent=&type=iframe
IP 52.30.8.210:0
GET /pbcas?us_privacy=&gdpr=0&gdpr_consent=&type=iframe HTTP/1.1
Host: ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rollcall.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:40 GMT
content-type: text/html;charset=utf-8
access-control-allow-origin: *
access-control-allow-headers: Cache-Control, Pragma, *
access-control-allow-methods: POST, GET, OPTIONS
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-Model,Sec-CH-UA-Architecture,Sec-CH-UA-Bitness,Sec-CH-UA-Mobile
set-cookie: yieldmo_id=g215e350463c433b98b5%7C1675522360232%7C0%7C; Domain=.yieldmo.com; Expires=Sun, 04-Feb-2024 14:52:40 GMT; Path=/; Secure; SameSite=None; Secure
rptr=adfm%3D1164397%7Cbsw%3D1164397%7Cz%3D1164397%7Cstk%3D1164397%7Can%3D1164397; Domain=ads.yieldmo.com; Expires=Sun, 04-Feb-2024 14:52:40 GMT; Path=/; Secure; SameSite=None; Secure
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
mp.4dex.io/prebid
104.18.3.114200 OK 0 B IP 104.18.3.114:0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 13036
Origin: https://rollcall.com
Connection: keep-alive
Referer: https://rollcall.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 14:52:36 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://rollcall.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Shapings: no adunits with size and seat and mapping
x-version: 3.0.0-gcp-ams
x-warn: Process Seats Booster. unable to get the seat booster engine for organization: 1281
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79443b272c1a1c0e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2