donaldduck.nl

HTML metadata

Title: DonaldDuck.nl - Welkom in Duckstad!
Description: DonaldDuck.nl - Welkom in Duckstad!
Language: nl
Canonical: https://www.donaldduck.nl

Open Graph

url: https://www.donaldduck.nl
title: DonaldDuck.nl - Welkom in Duckstad!
locale: nl-NL
site name: DonaldDuck.nl - Welkom in Duckstad!
description: DonaldDuck.nl - Welkom in Duckstad!

Technology

CMS: Next.js

Third-party hosts loaded (1)

applets.ebxcdn.com×1

Social

Contact

Phone

810828662

Address

Van der Madeweg 40, 1114 AM, Amsterdam, Noord-Holland, NL

DNS records live

NS

eur2.akam.net
eur5.akam.net
eur6.akam.net
ns1-125.akam.net
ns1-25.akam.net
usc2.akam.net
use2.akam.net
use5.akam.net

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

klaviyo-site-verification=RTnh6b
4jm6nvv1rksorf4gqbs15vqmu0
iRcimHKXYdmfr9W8J4QW6DmzoWIm/0Z0vOW1a7NcFByE+UIq4/jXGb/xvFr7n9s+6HupC+hvwNkeJ4Kv2hg94g==

Verified for

Google
Meta
Microsoft 365

Email authentication strong

SPF

v=spf1 ip4:145.60.8.129 include:spf.crowdtech.com include:_spf.dpgmmservices.nl include:_spf.google.com include:spf.flowmailer.net -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:zurbc63x@ag.eu.dmarcadvisor.com; ruf=mailto:zurbc63x@fr.eu.dmarcadvisor.com; fo=1; pct=100

policy: reject (enforced)

DKIM

google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC7z47tjiDG2ulNbipx5Br4gcZE4cr6dITnj3eGcbG3i0PsXF1PfqQar/eouUPcQkyUMZwSA88eckDYp9wQ+f…

selectors probed

Certificate (current)

E7

from 2026-04-24 to 2026-07-23

Expires in 52 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.donaldduck.nl/

present

strict-transport-security
content-security-policy-report-only
x-frame-options
x-content-type-options
permissions-policy
cross-origin-opener-policy
cross-origin-embedder-policy

findings

missing Content Security Policy
missing Referrer Policy

Header values

x-frame-options: SAMEORIGIN
permissions-policy: ch-ua-model=*,ch-ua-platform-version=*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: same-origin
content-security-policy-report-only: default-src 'self'; base-uri 'self' https://*.cloudfront.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: blob: http://experience-eu.piano.io https://*.dpgmedia.net https://*.tiktok.com; script-src-elem 'self' 'unsafe-inline' https: blob: http://mrq.weborama.nl http://experience-eu.piano.io http://embed.typeform.com https://*.dpgmedia.net https://*.tiktok.com; style-src 'self' 'unsafe-inline' https: blob:; style-src-elem 'self' 'unsafe-inline' https: blob:; img-src 'self' data: https: blob: http://mrq.weborama.nl; font-src 'self' data: https:; connect-src 'self' https: wss: blob:; media-src 'self' https: data: blob:; worker-src 'self' https: blob:; child-src 'self' https: blob:; object-src 'none'; form-action 'self' https:; frame-ancestors 'self'; frame-src 'self' https: https://*.protechts.net *.licdn.com lnkd.demdex.net www.youtube-nocookie.com; manifest-src 'self' https://staging-access.dpgmedia.net