blauwtrustgroep.com

.com crawl

First seen 2026-05-31 · Last seen 2026-06-01 · ok HTTP/1.1 200 557 ms crawled 2026-06-01

US · 172.67.154.66 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Blauwtrust Groep: leader in the Dutch residential mortgage market
Description: Blauwtrust Groep provides foreign investors access to the Dutch market through it's entities DMPM, Quion and ROMEO. Read more.

Technology

CDN: Cloudflare
Stack: PHP

Fonts

Adobe Fonts

Third-party hosts loaded (1)

use.typekit.net×1

Contact

Address: Blauwtrust Groep B.V.

Registration

Registrar

The Registrar Company B.V.

Created

2010-12-01

Expires

2026-12-01 182 days left

Updated

2025-11-03

Name servers

magali.ns.cloudflare.com
moura.ns.cloudflare.com

DNS records live

NS

magali.ns.cloudflare.com
moura.ns.cloudflare.com

MX

1 blauwtrustgroep-com.mail.protection.outlook.com

TXT

Show 7 TXT records

7lM9nochOkcObvOFr9Cotcgvnj+hf4PdrIJs6ZNh0QEb8Bn6Iv07Mvxu/957I1b8bDjU2EaNK8xmH9YKcZwy4g==
_icfx7izkskf54bwq25v7lsgp3k45bdy
_qg36lyxs37bmgwdynr3plpfkunebvvn
_vkcgnco11qrkm607nzqejtue30jxsba
h65x01bps6htf6ss0jbhntv13g3flm59
ms=ms58522459
quovadis=bcf934c8-9003-4fb7-b2d3-6ca0c3560798

Verified for

Atlassian

Email authentication partial

SPF: v=spf1 a mx ip4:89.188.29.33/32 ip4:89.188.29.44/32 ip4:89.188.29.128/32 include:spf.protection.outlook.com include:_spf.ichosting.nl -all
strict (-all)
DMARC: v=DMARC1; p=none; rua=mailto:cff6bf1c65e64d8dae955c28e8d2251c@dmarc-reports.cloudflare.net
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

WE1

from 2026-05-19 to 2026-08-17

Expires in 76 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.blauwtrustgroep.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), autoplay=(), camera=(), clipboard-read=(), clipboard-write=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), usb=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; frame-ancestors 'self'; style-src 'self' 'unsafe-inline' use.typekit.net; font-src 'self' use.typekit.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' www.googletagmanager.com *.google-analytics.com use.typekit.net static.cloudflareinsights.com; connect-src 'self' use.typekit.net *.google-analytics.com static.cloudflareinsights.com; img-src 'self' data: *.google-analytics.com p.typekit.net
strict-transport-security: max-age=15552000; includeSubDomains; preload

Linked from (2)

quion.com×1
romeofd.nl×1