indexo.dev

ccmaasmechelen.be

.be crawl

First seen 2026-05-28 · Last seen 2026-06-03 · ok HTTP/1.1 200 570 ms crawled 2026-05-30

BE · 185.3.217.169 · AS59943 Level 27 BVBA

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
CC Maasmechelen
Description
CC Maasmechelen is een open, bruisend cultuurhuis waar iedereen welkom is om van kunst en cultuur te genieten, om elkaar te ontmoeten, om onvergetelijke indrukken op te doen.
Language
nl
Canonical
https://www.ccmaasmechelen.be/nl/
Translations
  • nl

Open Graph

title
CC Maasmechelen
description
CC Maasmechelen is een open, bruisend cultuurhuis waar iedereen welkom is om van kunst en cultuur te genieten, om elkaar te ontmoeten, om onvergetelijke indrukken op te doen.

Technology

Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×1

Social

Contact

Email
Phone
Address
Koninginnelaan 423630 Maasmechelen (Eisden-Tuinwijk)

DNS records live

NS
  • ns.nscluster.eu
  • ns.nscluster.hk
  • ns.nscluster.lv
  • ns.nscluster.uk
  • ns.nscluster.us
MX
  • 10 mx.mailprotect.be
  • 40 mx.backup.mailprotect.be
Verified for
  • Brevo

Email authentication partial

SPF
v=spf1 include:_spf.relay.mailprotect.be include:dcube-resource.be ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com
policy: none (monitoring only)
DKIM
  • mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed

Certificate (current)

R13
from 2026-05-08 to 2026-08-06
Expires in 63 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.ccmaasmechelen.be/nl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer, strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'none'; block-all-mixed-content; child-src https://www.youtube.com/ https://youtube.com/ https://youtu.be/ https://player.vimeo.com/; connect-src 'self' https://www.youtube.com/oembed https://*.vimeo.com https://vimeo.com/api/oembed.json https://region1.google-analytics.com; font-src 'self'; frame-src https://www.youtube.com/ https://vimeo.com https://*.vimeo.com https://www.youtube.com 'self'; img-src data: 'self' https://placeholder.inventis.be https://*.ytimg.com https://img.youtube.com/ https://i.vimeocdn.com/ https://www.google-analytics.com/r/collect https://www.google-analytics.com/collect https://*.google.com https://*.google.be https://fonts.gstatic.com https://www.googletagmanager.com; manifest-src 'self'; script-src 'self' 'strict-dynamic' 'unsafe-inline' 'unsafe-eval' https://www.youtube.com/iframe_api https://*.ytimg.com https://player.vimeo.com/api/player.js 'nonce-s8UZCX/qoHtGQ6PrkAHkAQ=='; style-src 'self' 'unsafe-inline'; upgrade-insecure-requests
strict-transport-security
max-age=2592000

Links to (4)

Linked from (2)