indexo.dev

bnpparibascardif.nl

.nl crawl

First seen 2026-06-02 · Last seen 2026-06-02 · ok HTTP/1.1 200 247 ms crawled 2026-06-02

NL · 23.51.67.109 · AS16625 Akamai Technologies, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Home - bnpparibascardif.nl - Home
Language
nl-NL
Canonical
https://bnpparibascardif.nl

Technology

Stack
Java
Cookie consent
  • OneTrust

Third-party hosts loaded (1)

  • cdn.cookielaw.org×1

Social

Contact

Email
Phone

DNS records live

NS
  • ns1.bnpparibas.com
  • ns2.bnpparibas.com
  • ns3.domivesta.net
  • ns4.domivesta.com
  • ns5.bnpparibas.com
MX
  • 5 smtp-in-internet-usr-m.gslb.srv.bnpparibas
TXT
Show 4 TXT records
  • _klwmvowh73ysn18egavm5wute2i751g
  • _6bicucp3b7tcmcfszwz0pdszkisa63y
  • zscaler-verification-242570-28082025-rpIs9t
  • _c54ysf2kri1s4not3e6e63wf5idvw6d
Verified for
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:pns._spf.bnpparibas.com ip4:146.148.238.162 ip4:46.31.48.0/21 include:spf.mandrillapp.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:f1rg2pej@ag.eu.dmarcian.com; ruf=mailto:f1rg2pej@fr.eu.dmarcian.com
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

DigiCert Global G3 TLS ECC SHA384 2020 CA1
from 2026-04-30 to 2026-11-15
Expires in 165 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://bnpparibascardif.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-eval' localhost:* https://bnpparibascardif.nl https://www.bnpparibascardif.nl https://www.googletagmanager.com https://cdn.cookielaw.org https://prod.bnpparibascardif.nl https://www.google-analytics.com https://stats.g.doubleclick.net https://www.youtube-nocookie.com https://via.placeholder.com https://geolocation.onetrust.com https://privacyportal-de.onetrust.com https://bnppcardifnetherlands.112.2o7.net ; script-src 'self' 'unsafe-inline' 'unsafe-eval' localhost:* https://bnpparibascardif.nl https://www.bnpparibascardif.nl https://prod.bnpparibascardif.nl https://geolocation.onetrust.com https://assets.adobedtm.com https://code.jquery.com https://optanon.blob.core.windows.net https://www.google-analytics.com https://www.googletagmanager.com https://cdn.cookielaw.org ; style-src 'self' 'unsafe-inline' https://cdn.cookielaw.org https://preprod.bnpparibascardif.nl https://bnpparibascardif.nl https://www.bnpparibascardif.nl https://prod.bnpparibascardi
strict-transport-security
max-age=15552000; includeSubDomains

Links to (3)

Linked from (1)