araf.fr

HTML metadata

Title: ARAF - Regroupement de crédits et prêts hypothécaires | ARAF
Description: Services financiers spécialisés en regroupement de crédits et prêts hypothécaires
Language: fr
Canonical: https://www.araf.fr

Open Graph

url: https://www.araf.fr
title: ARAF - Regroupement de crédits et prêts hypothécaires | ARAF
site name: ARAF
description: Services financiers spécialisés en regroupement de crédits et prêts hypothécaires

Technology

CMS: Next.js

Third-party hosts loaded (2)

unpkg.com×2
widget.trustpilot.com×1

Contact

Email

acprcontactcontact@araf.fr

Phone

4032469457

Address

rue Germain – CS 40324

Registration

Registrar

OVH

Created

2004-04-26

Expires

2026-09-25 128 days left

Updated

2025-10-31

Name servers

dns1.alwaysdata.com
dns2.alwaysdata.com

DNS records live

NS

dns1.alwaysdata.com
dns2.alwaysdata.com

MX

10 mx1.alwaysdata.com
20 mx2.alwaysdata.com
5 cof4srv.alwaysdata.net

TXT

Show 5 TXT records

brevo-code:495e6bbd31137febf5828ca92b4c2c41
google-site-verification=Y4hquL8HpCQl1fk8DndEpQuywo2rCIJWWXntc_s8alE
google-site-verification=GnJFwUod8GVZK73mbqn9DOVsQqX03EwHYCTDCf0ZSTY
facebook-domain-verification=frinuwsnu7366r63am52pi25vc654y
H5r5fs2wjhwt

Email authentication strong

SPF

v=spf1 include:_spf.alwaysdata.com ip4:172.246.46.77 ?all

neutral (?all)

DMARC

v=DMARC1; p=quarantine; pct=1; rua=mailto:zmoikvqi@ag.eu.dmarcadvisor.com,mailto:laurent@codeam.fr; ruf=mailto:zmoikvqi@fr.eu.dmarcadvisor.com,mailto:laurent@codeam.fr;

policy: quarantine · pct=1

DKIM

default: v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi0ScQ3G+wjdS3O2qmfEjFOhgHdlv+QD8O0Jywg8KEuusFTaLRCuRgk0nLGHYCoUJdD6l35B1P7bCTnZgtWXRr…
mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

R13

from 2026-03-29 to 2026-06-27

Expires in 39 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.araf.fr

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
permissions-policy: camera=(), microphone=(), geolocation=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' 'wasm-unsafe-eval' 'inline-speculation-rules' chrome-extension: https://widget.trustpilot.com https://www.googletagmanager.com https://connect.facebook.net https://bat.bing.com https://snap.licdn.com https://www.clarity.ms https://cdn.jsdelivr.net https://unpkg.com https://googleads.g.doubleclick.net https://www.araf.fr https://static.ia-marketing.fr; style-src 'self' 'unsafe-inline' https://widget.trustpilot.com https://cdn.jsdelivr.net https://unpkg.com https://www.araf.fr https://static.ia-marketing.fr https://fonts.googleapis.com; img-src 'self' data: https://images.pexels.com https://widget.trustpilot.com https://www.facebook.com https://bat.bing.com https://*.ads.linkedin.com https://bat.bing.net https://*.google.com https://*.google.fr https://*.googleadservices.com https://pagead2.googlesyndication.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://storage.googleapis.com https://vu
strict-transport-security: max-age=63072000; includeSubDomains; preload

Links to (1)

trustpilot.com×1

Linked from (1)

arrago.fr×1