Is icann.org legit?

68
/ 100
Mostly Safe
Industry: Government

While icann.org is generally a legitimate and long-established entity, the significant issues with website accessibility (HTTP 403), missing legal pages, and lack of clear contact or social media presence raise concerns about user experience and transparency. It's safe to assume the underlying organization is trustworthy, but accessing information or understanding its policies might be more challenging than expected.

Government average: 80/100 · based on 33 sites

Checked: April 18, 2026 at 8:10 AM UTC · Refresh

Is icann.org a scam? Here's what we found.

Security 90/100

The site employs robust security measures with a valid and modern TLS 1.3 certificate, strong email authentication (SPF/DMARC), and is clean according to Google Web Risk, indicating a well-protected online presence.

Identity 95/100

With a domain age approaching 28 years and professional registration through CSC Corporate Domains, the identity of icann.org is exceptionally well-established and highly credible, indicating a long-standing and significant organization.

Reputation 90/100

Its high Tranco Rank and clean DNS blacklist record signify a prominent and respected presence on the internet. This site is widely recognized and not associated with malicious activity.

Transparency 50/100

Transparency is significantly hampered by the unexpected 403 website status, making the site largely inaccessible. Furthermore, the absence of clear contact information and social media links makes it difficult for users to engage or find support.

Compliance 60/100

A major concern is the reported absence of privacy policy and terms of service pages, which are fundamental for user trust and regulatory compliance regardless of the organization's stature. This is a significant gap for such an influential entity.

Infrastructure 90/100

The site's infrastructure is sound, leveraging multiple DNS servers with DNSSEC, and proper email authentication. Fast page load times indicate a well-managed and efficient technical setup.

Signals Detected

[+]
Tranco Rank: Rank #2227

This is a well-known, high-traffic website

[?]
Structured Data: None found

No structured data markup found

[?]
Trustpilot: No Trustpilot profile

This business has no Trustpilot presence — not unusual for smaller or newer companies

[?]
Certificate Transparency: Unable to check

crt.sh returned status 429

[+]
DNS Resolution: 2 IP(s)

Resolves to: 2001:500:88:200::7, 192.0.43.7

[+]
Email (MX Records): 4 record(s)

Mail servers: pechora1.icann.org., pechora7.icann.org., pechora8.icann.org., pechora6.icann.org.

[+]
SPF Record: Present

Domain has SPF email authentication configured

[+]
DMARC Record: Present

Domain has DMARC email authentication configured

[?]
Name Servers: 4 server(s)

DNS providers: a.icann-servers.net., b.icann-servers.net., c.icann-servers.net., ns.icann.org.

[+]
Clickjacking Protection: Present

X-Frame-Options: SAMEORIGIN

[?]
Server: cloudflare

Web server: cloudflare

[+]
Google Web Risk: Clean

No threats detected by Google Web Risk

[+]
SSL Certificate: Valid

Valid certificate, expires in 262 days

[?]
Certificate Issuer: Sectigo Limited

Certificate issued by Sectigo Limited

[+]
TLS Version: TLS 1.3

Connection uses TLS 1.3

[?]
robots.txt: Not found

No robots.txt file — common for small sites

[+]
DNS Blacklists: Clean

Not found on any DNS blacklists

[?]
Branding: Basic

Site has a favicon but no social sharing metadata

[+]
Domain Age: 27 years, 11 months

Domain created 1998-09-14T04:00:00Z (27 years, 11 months ago)

[?]
Registrar: CSC Corporate Domains, Inc.

Registered through CSC Corporate Domains, Inc.

[+]
Domain Expiry: 2028-12-07T17:04:26Z

Expires in 964 days

[+]
DNSSEC: signedDelegation

DNSSEC status from WHOIS

[?]
Sitemap: Not found

No sitemap found — common for smaller sites

[?]
Web Archive: Unable to check

Could not query Wayback Machine

[~]
Website Status: HTTP 403

Website returned status 403

[~]
Contact Info: Not found

No obvious contact information found on homepage

[-]
Legal Pages: Missing

No privacy policy or terms of service found

[~]
Social Media Presence: None found

No social media links found on homepage

[+]
Page Load Time: 429ms

Fast page load

Embed This Badge

Own this site? Show visitors your trust score.

Trust badge for icann.org
<a href="https://verified.fyi/review/icann.org"><img src="https://verified.fyi/badge/icann.org?size=medium&style=full&theme=dark" alt="icann.org trust score — verified.fyi" /></a>
[![icann.org trust score](https://verified.fyi/badge/icann.org?size=medium&style=full&theme=dark)](https://verified.fyi/review/icann.org)

Stay Safe Online

Good habits to protect yourself, no matter the scan result.

Use a password manager

Never reuse passwords across sites.

Enable two-factor authentication

Add a second layer of security to your accounts.

Check before you buy

Always verify unfamiliar stores before entering payment info.

When evaluating the trustworthiness of a website like icann.org, which manages a foundational layer of the internet, you'd expect near-perfect marks across the board. Our investigation finds that while the core identity and security of ICANN are undeniably strong, some operational aspects raise red flags for everyday users. ICANN's nearly 28-year domain age and top-tier Tranco rank immediately signal its status as a critical and long-standing internet institution. Its robust security through modern TLS encryption and sophisticated email authentication are exactly what you'd expect from an organization with such a pivotal role. There's no doubt that the underlying entity is legitimate and responsible for significant internet governance. However, a major concern for users is the reported HTTP 403 status, which implies general inaccessibility when trying to reach the site. For an organization vital to global internet operations, this effectively locks out potential visitors, hindering transparency. Furthermore, the lack of readily available contact information and, more critically, the absence of basic legal pages like a privacy policy or terms of service, are significant oversights. Even for a non-commercial entity, clear policies on data handling and user interaction are paramount in today's digital landscape. These issues don't suggest malicious intent, but they certainly indicate a site that is not designed with typical user accessibility and legal clarity in mind, which is surprising for a government-adjacent organization responsible for so much internet infrastructure.