Green padlock - where is root certificate?

Issues by DigiCert SHA2 Extended Validation Server CA
Consider: https://www.eff.org/https-everywhere/atlas/domains/badoo.com.html
Security headers:
x-content-type-options
Header not returned

content-security-policy
Header not returned

All green here: https://www.sslshopper.com/ssl-checker.html#hostname=https://badoo.com/

Root 1 missing: http://www.webpagescreenshot.info/img/5511de1ea96207-67625056

Nameserver shows relation to markmonitor - https://www.virustotal.com/nl/domain/ccardseu1.badoo.com/information/

polonus

P.S. See here an example where all the content is secure: http://www.webpagescreenshot.info/img/5511e0280fbb36-89361793

Damian

Second example: -bakser.aaas.org - No certificates were found.
See: https://www.eff.org/https-everywhere/atlas/domains/aaas.org.html
https://asafaweb.com/Scan?Url=https%3A%2F%2Fpubs.aaas.org
Zonetransfer? → report: http://www.dnsinspect.com/aaas.org/1427235207

polonus