HTTP/2 200 
alt-svc: h3=":443"; ma=2592000
content-security-policy: default-src 'self'; script-src 'self' 'nonce-+reOfZjv4Pkm4CgbLF1Bdg==' https://challenges.cloudflare.com https://static.cloudflareinsights.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' data: https:; font-src 'self' data: https://fonts.gstatic.com; connect-src 'self' https:; frame-src https://challenges.cloudflare.com https://agent.tap365.org https://sub-lb35.tap365.org; frame-ancestors 'none'; base-uri 'self'; form-action 'self'
content-type: application/json; charset=utf-8
date: Sat, 16 May 2026 00:45:09 GMT
referrer-policy: strict-origin-when-cross-origin
via: 1.1 Caddy
x-content-type-options: nosniff
x-frame-options: DENY
x-request-id: bb9824f0-0388-4e2d-9380-e4b50ebafab9
content-length: 658