arriva.cz

.cz crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 538 ms crawled 2026-05-30

DE · 116.203.67.59 · AS24940 Hetzner Online GmbH

Reputation 75/100 listed in spam blocklist

Classifying

HTML metadata

Title: Úvodní stránka
Language: cs
Canonical: https://www.arriva.cz

Open Graph

url: https://www.arriva.cz
title: Úvodní stránka

Technology

CMS: Next.js

Analytics

Google Tag Manager

Third-party hosts loaded (1)

www.googletagmanager.com×3

Social

Contact

Email

Phone

+420725100725

DNS records live

NS

ns1.netnames.net
ns2.netnames.net

MX

0 arriva-cz.mail.protection.outlook.com

Verified for

Google
Microsoft 365

Email authentication strong

SPF

v=spf1 ip4:109.205.76.152 include:spf.protection.outlook.com include:spf.mandrillapp.com a:mailhub.arriva.cz a:arriva-www02.wds.fg.cz a:arriva-www04.do.fg.cz include:mailgate.tech.deutschebahn.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine;

policy: quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDpWotbSmPykR5lYDJsHthYPYz5esYXYev1nXkBonFQJ7yLdzJglDMI0+/5ZXcak119+oblNJymVd2dhHt2Al…

selectors probed

Certificate (current)

R12

from 2026-05-04 to 2026-08-02

Expires in 63 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.arriva.cz/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection

Header values

referrer-policy: strict-origin-when-cross-origin
permissions-policy: accelerometer=(), camera=(), fullscreen=(self "https://www.youtube.com"), geolocation=(self), gyroscope=(), magnetometer=(), microphone=(self), payment=(), usb=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' data:;script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com unpkg.com arriva.daktela.com https://*.clarity.ms/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://recaptcha.net https://*.doubleclick.net;connect-src 'self' ws: https://*.google.com https://*.google-analytics.com https://*.fg.cz https://*.fg.cz:3000 arriva.daktela.com https://*.clarity.ms https://*.doubleclick.net https://www.googletagmanager.com;img-src 'self' data: blob: www.googletagmanager.com www.google-analytics.com *.tile.openstreetmap.org *.fg.cz *.fg.cz:3000 *.arriva.cz https://www.google.cz https://*.clarity.ms https://*.bing.com/ https://*.doubleclick.net;media-src 'self' data: mediastream: blob: *.fg.cz *.fg.cz:3000;frame-src 'self' *.google.com *.youtube-nocookie.com https://www.google.com/recaptcha/ https://recaptcha.net/;style-src 'self' 'unsafe-inline' www.googletagmanager.com unpkg.com;font-src 'self' data:;frame-ancestors 'self' *.fg.
strict-transport-security: max-age=31536000