| Hostnames |
api.sandbox.paypal.com api-3t.sandbox.paypal.com api-3t-v2.sandbox.paypal.com api-aa.sandbox.paypal.com api-aa-3t.sandbox.paypal.com api-aa-3t-v2.sandbox.paypal.com api-aa-v2.sandbox.paypal.com api-v1.sandbox.paypal.com api-v2.sandbox.paypal.com ipnpb.sandbox.paypal.com paypalmanager.sandbox.paypal.com pointofsale.sandbox.paypal.com svcs.sandbox.paypal.com svcs-v2.sandbox.paypal.com |
| Domains | paypal.com |
| Country | United States |
| City | Los Angeles |
| Organization | PayPal, Inc. |
| ISP | PayPal, Inc. |
| ASN | AS17012 |
HTTP/1.1 200 OK Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Date: Wed, 22 Jan 2025 19:35:32 GMT Accept-Ch: sec-ch-ua-full, sec-ch-ua-arch, sec-ch-ua-model, sec-ch-ua-platform-version, sec-ch-ua-full-version, sec-ch-ua-full-version-list, sec-ch-ua-bitness, sec-ch-ua-wow64 Cache-Control: max-age=0, no-cache, no-store, must-revalidate Content-Security-Policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com https://www.youtube-nocookie.com https://www.xoom.com https://*.paypal-mktg.com; script-src 'nonce-622/BKTFSgnfPis7ponuxLBXwFdYMRLfE5vxcp86dvH9kvA3' 'self' https://*.paypal.com https://*.paypalobjects.com https://assets-cdn.s-xoom.com https://pypd.paypal-mktg.com 'unsafe-inline'; connect-src 'self' https://nominatim.openstreetmap.org https://*.paypal.com https://*.paypalobjects.com https://www.google-analytics.com https://www.analytics.google.com https://region1.google-analytics.com https://region1.analytics.google.com https://*.salesforce.com https://*.force.com https://nexus.ensighten.com https://api.paypal-retaillocator.com https://paypal.us-4.evergage.com https://browser-intake-us5-datadoghq.com; style-src 'self' https://*.paypal.com https://*.paypalobjects.com https://assets-cdn.s-xoom.com 'unsafe-inline'; font-src 'self' https://*.paypal.com https://*.paypalobjects.com https://assets-cdn.s-xoom.com data:; img-src 'self' https: data: https://www.google-analytics.com https://www.analytics.google.com https://region1.google-analytics.com https://region1.analytics.google.com; form-action 'self' https://*.paypal.com https://*.salesforce.com https://secure.opinionlab.com https://*.paypal-mktg.com https://*.paypal-corp.com https://signup.partnerize.com; base-uri 'self' https://*.paypal.com; object-src 'none'; frame-ancestors 'self' https://*.paypal.com; upgrade-insecure-requests; Etag: W/"2c347-k0PQyCMZNgyPa9XkQSu8d+GAS/E" Origin-Trial: AmF3SS0NWoXo3HaojgmIVVXavukRnZH597u+xZNXRCiKWzSKzfNPHw9NC32GmblY12+HXpkCEYeYGyvRBNkkJg0AAABbeyJvcmlnaW4iOiJodHRwczovL3BheXBhbC5jb206NDQzIiwiZmVhdHVyZSI6IlRwY2QiLCJleHBpcnkiOjE3MzUzNDM5OTksImlzU3ViZG9tYWluIjp0cnVlfQ== Paypal-Debug-Id: a2a2e9e6936bd Permissions-Policy: ch-ua-platform-version=(self "https://c.paypal.com"),ch-ua-arch=(self "https://c.paypal.com"),ch-ua-wow64=(self "https://c.paypal.com"),ch-ua-model=(self "https://c.paypal.com"),ch-ua-bitness=(self "https://c.paypal.com"),ch-ua-full-version=(self "https://c.paypal.com"),ch-ua-full-version-list=(self "https://c.paypal.com") Set-Cookie: enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Thu, 22 Jan 2026 19:35:32 GMT; Secure; SameSite=None; HttpOnly Set-Cookie: cookie_check=yes; Max-Age=315532799; Domain=.paypal.com; Path=/; Expires=Mon, 22 Jan 2035 19:35:31 GMT; HttpOnly; Secure; SameSite=None Set-Cookie: LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Thu, 23 Jan 2025 04:21:28 GMT; HttpOnly; Secure; SameSite=None Set-Cookie: tsrce=mppnodeweb; Max-Age=259199; Domain=.paypal.com; Path=/; Expires=Sat, 25 Jan 2025 19:35:31 GMT; HttpOnly; Secure; SameSite=None Set-Cookie: x-pp-s=eyJ0IjoiMTczNzU3NDUzMjgxOCIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure; SameSite=None Set-Cookie: nsid=s%3AsX4T2UCwG_14opVyUV-xf2Xck0zFekXX.tclSqwzerYVk6hMKRe%2B2mkLLYd6c4aJTo%2FNA%2Boy5Z%2BA; Path=/; HttpOnly; Secure; SameSite=None Set-Cookie: ts=vreXpYrS%3D1769110532%26vteXpYrS%3D1737576332%26vr%3D8f8344001940aac49423f76eb5cec353%26vt%3D8f8344001940aac49423f76eb5cec352%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Thu, 22 Jan 2026 19:35:32 GMT; HttpOnly; Secure; SameSite=None Set-Cookie: ts_c=vr%3D8f8344001940aac49423f76eb5cec353%26vt%3D8f8344001940aac49423f76eb5cec352; Path=/; Domain=paypal.com; Expires=Thu, 22 Jan 2026 19:35:32 GMT; Secure; SameSite=None; HttpOnly Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Traceparent: 00-0000000000000000000a2a2e9e6936bd-b23804ca7b0ae87b-01 Vary: Accept-Encoding Vary: Accept-Encoding X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block HTTP_X_PP_AZ_LOCATOR: ccg18.slc
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:fe:16:09:0c:c5:3b:d0:c9:d7:5e:c5:08:0b:2b:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
Validity
Not Before: Nov 5 00:00:00 2024 GMT
Not After : Nov 4 23:59:59 2025 GMT
Subject: C=US, ST=California, L=San Jose, O=PayPal, Inc., CN=api.sandbox.paypal.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c1:27:7c:54:9d:4a:23:ae:21:64:62:49:14:80:
24:4c:ef:c1:b3:1a:c7:b2:73:96:7e:e8:03:85:9b:
79:ea:51:e4:d6:56:5c:c9:20:56:44:c4:bb:db:bb:
4d:cb:ac:30:eb:12:5b:52:30:97:db:5f:bf:26:c4:
86:57:c7:03:2e:ad:83:4a:4c:86:0d:b0:15:4f:9e:
2e:4b:4b:95:88:a5:04:48:6a:7e:65:49:dd:2a:d4:
87:3e:fe:51:cd:9e:c5:ce:94:d3:d5:31:ff:03:38:
59:75:e0:b8:e6:07:ad:ca:82:2b:d6:8a:f9:01:83:
2d:69:ab:7c:f8:19:71:62:6b:c3:eb:5f:07:85:a3:
03:ff:d0:f8:f9:53:0d:1c:8f:3c:b6:ce:08:af:1c:
f7:41:19:d2:14:86:b6:a5:35:5e:57:3b:f4:8f:39:
58:85:66:e2:b4:e2:d8:7c:83:eb:a1:d4:e5:4d:c0:
54:b9:16:4b:3b:8a:c3:ca:d3:a2:4c:10:02:41:79:
90:aa:ef:bd:d6:08:53:dd:48:af:31:42:64:d9:1a:
af:7e:8c:ac:6d:4d:2e:aa:d6:46:63:c1:db:b5:7d:
90:3b:02:9a:40:19:4b:44:c0:2e:9f:39:6d:69:14:
8b:05:8a:5f:9c:9b:ac:30:11:74:70:b9:2f:8f:26:
72:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
51:68:FF:90:AF:02:07:75:3C:CC:D9:65:64:62:A2:12:B8:59:72:3B
X509v3 Subject Key Identifier:
76:BF:E4:3B:C7:18:B3:A3:84:F7:B6:FE:89:06:E8:23:90:54:33:0C
X509v3 Subject Alternative Name:
DNS:api.sandbox.paypal.com, DNS:svcs-v2.sandbox.paypal.com, DNS:api-3t.sandbox.paypal.com, DNS:api-aa-v2.sandbox.paypal.com, DNS:paypalmanager.sandbox.paypal.com, DNS:svcs.sandbox.paypal.com, DNS:ipnpb.sandbox.paypal.com, DNS:api-3t-v2.sandbox.paypal.com, DNS:pointofsale.sandbox.paypal.com, DNS:api-aa.sandbox.paypal.com, DNS:api-aa-3t-v2.sandbox.paypal.com, DNS:api-v1.sandbox.paypal.com, DNS:api-aa-3t.sandbox.paypal.com, DNS:api-v2.sandbox.paypal.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.2
CPS: http://www.digicert.com/CPS
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl3.digicert.com/sha2-ha-server-g6.crl
Full Name:
URI:http://crl4.digicert.com/sha2-ha-server-g6.crl
Authority Information Access:
OCSP - URI:http://ocsp.digicert.com
CA Issuers - URI:http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
X509v3 Basic Constraints: critical
CA:FALSE
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
Timestamp : Nov 5 11:08:00.512 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:B0:C1:C0:A8:35:1C:3E:3D:D2:F6:B4:
1B:61:C8:37:5F:46:AB:4D:01:A9:FF:B2:84:B0:BB:BF:
D5:98:6B:CB:8F:02:21:00:9D:93:76:B0:A6:7D:67:8C:
3B:F8:5E:C8:A9:7E:D2:22:D6:C8:04:94:48:A2:51:07:
A3:C7:41:97:A9:5B:D4:00
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
Timestamp : Nov 5 11:08:00.462 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:EE:58:17:87:33:55:04:EA:C0:50:9B:
A9:97:B0:F6:7D:A1:51:53:59:A2:70:96:AA:D1:B5:FF:
19:02:DD:BC:C3:02:20:22:80:AA:A9:B0:D0:6F:E0:9A:
4E:C7:B6:4F:99:FE:9A:DB:33:0F:B3:7C:D2:1E:41:7F:
09:D1:5F:7A:09:DF:32
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Nov 5 11:08:00.441 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:11:CE:51:43:79:15:44:B0:4C:D7:DE:BC:
CE:A5:BA:49:22:24:13:5E:05:B4:4F:B0:50:91:8A:36:
6B:AB:E9:00:02:21:00:CD:3E:31:31:FE:F4:8C:92:1F:
5B:9A:07:6E:8F:FB:DB:E1:FC:BE:D5:69:56:F4:16:2A:
61:F4:B0:DD:F2:2E:6A
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
9a:6f:cf:73:38:58:67:7a:58:d9:48:75:c7:43:d0:40:ec:da:
34:2b:36:40:aa:54:29:1a:b7:9c:83:09:41:e2:c2:ae:67:25:
84:e9:9e:db:69:06:08:a7:2f:32:07:c6:45:f8:01:de:86:e1:
05:24:a2:7a:f1:da:25:c3:a9:66:10:26:58:d3:99:60:5f:65:
7f:e9:d4:e0:7d:c2:62:80:16:d4:6d:08:81:0e:17:a4:42:a1:
01:02:c8:45:2e:56:e2:f3:f6:42:9e:3d:5b:c1:63:c4:50:b7:
db:fc:58:68:0a:84:70:3a:4c:6d:ce:3f:7c:60:5b:fc:ff:15:
0e:6c:5f:45:e8:e6:ea:4e:4d:4f:34:3b:b1:3b:ca:4d:8e:44:
f2:2d:06:e3:d5:cd:1c:ab:44:b1:f1:ec:2f:bf:0b:3d:de:9d:
31:31:7b:e1:bf:34:1e:e1:13:12:74:56:19:42:37:ed:e5:15:
68:13:85:56:fb:f3:26:cb:e2:30:75:9f:f1:4a:e9:96:c2:fd:
f2:6e:2f:1e:dd:2f:8a:57:f2:7f:82:a6:67:db:22:5d:5e:ef:
8d:85:09:65:8e:8a:20:0f:8c:5b:09:41:79:2c:e6:04:91:05:
d7:75:c0:c2:98:1a:9f:7e:b7:92:de:c3:bf:3f:b0:32:bd:c6:
b7:64:1f:33