Connection: close
Expires: -1
X-Content-Type-Options: nosniff
Pragma: no-cache,n-cache
Set-Cookie: IB=8e5a1b69-dafc-2d16-2b82-8353571a5e16; path=/; secure; HttpOnly
HTTP/1.1 200 OK
Server: BLUE-SKY WEB SERVER
Content-Type: text/html; charset=utf-8
pics-label: (pics-1.1 'http://www.icra.org/ratingsv02.html' labels ratings (nz 1 vz 1 lz 1 oz 1 cz 1))
Cache-Control: no-cache, must-revalidate,no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Public-Key-Pins: pin-sha256="gBxcu+iKJYaqE/0hgBQMp3uiw0+X5Z9w6mtm00oOE3M="; pin-sha256="eXw/bHNE5jiV1ONHpdm4T7icI8YF4nHv0IFgVt3cEsY="; max-age=7889231; report-uri="https://hpkp.naszbank.pl/"
Strict-Transport-Security: max-age=31536000; preload;
Content-Length: 29284
Content-Security-Policy-Report-Only: default-src https: 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; connect-src 'self'; img-src 'self' data:; style-src 'self' 'unsafe-inline'; font-src 'self'; report-uri /WS.asmx/CSP
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src https: 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' maps.googleapis.com; connect-src 'self'; img-src 'self' maps.googleapis.com maps.gstatic.com csi.gstatic.com data:; style-src 'self' 'unsafe-inline' fonts.googleapis.com; font-src 'self' fonts.gstatic.com;
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
Date: Sun, 31 Dec 2017 01:21:26 GMT