indexo.dev

fcutrecht.nl

.nl crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 328 ms crawled 2026-05-30

US · 13.107.226.67 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title
Officiële website van FC Utrecht
Description
De officiële website van FC Utrecht. Met informatie over de club, spelers en het laatste nieuws.
Canonical
https://fcutrecht.nl/

Open Graph

url
https://fcutrecht.nl/
title
Officiële website van FC Utrecht
site name
FC Utrecht
description
De officiële website van FC Utrecht. Met informatie over de club, spelers en het laatste nieuws.

Technology

CDN
Azure Front Door
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • i1.ytimg.com×2
  • www.googletagmanager.com×1

Social

DNS records live

NS
  • ns1.thepeoplesvalley.net
  • ns2.thepeoplesvalley.net
  • ns3.thepeoplesvalley.net
MX
  • 10 fcutrecht-nl.mail.protection.outlook.com
TXT
  • klaviyo-site-verification=YsghTn
Verified for
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:spf.eu.exclaimer.net include:spf.thevalley.nl include:spf.afas.online ip4:84.241.182.106 ip4:149.72.241.19 ip6:2001:1690:2:416::167 -all
strict (-all)
DMARC
v=DMARC1; p=reject
policy: reject (enforced)
DKIM
Show 4 DKIM selectors
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCtVh1ViYNLsuk0cdMe1hoJYb7/myn5lfKbR6ta76fD2BF0NLKcUZt6Lw4a0d4P59GqqipU4iH/2ttDIN6rS8…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Bt31OjZMK3xAz06oOW7B+8joyKUNt9O3l8SGZl4er55SJNN+Og5teylOy+k6yTvlg6HKtq7L3gw8dgCNq…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDvK8e2G7gm9jbLp2t5EdNyXkTFbm3zsfkI7GMa5INWkfJXN7RwW9iJEZwfcI1esORv3nMqGuhgJ78CE0uqu27WX8…
selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1
from 2026-03-11 to 2026-09-12
Expires in 103 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://fcutrecht.nl/

present
  • strict-transport-security
  • content-security-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src 'self' *.dev.local *.youtube.com *.fcutrecht.nl *.cookiebot.com *.google.com *.google.nl *.googleapis.com *.googletagmanager.com *.gstatic.com *.hcaptcha.com hcaptcha.com *.umbraco.com *.google-analytics.com *.hotjar.com *.cookiebot.com *.youtube-nocookie.com *.doubleclick.net px.ads.linkedin.com *.bootstrapcdn.com *.cloudflare.com 'unsafe-eval' 'unsafe-inline'; script-src 'self' *.dev.local *.fcutrecht.nl *.umbraco.org *.cookiebot.com *.google-analytics.com *.google.com *.google.nl *.hcaptcha.com hcaptcha.com *.umbraco.com *.hotjar.com *.cookiebot.com *.youtube.com *.youtube-nocookie.com *.gstatic.com *.googletagmanager.com cdnjs.cloudflare.com *.googleadservices.com *.googleapis.com *.cloudfront.net *.doubleclick.net px.ads.linkedin.com *.bootstrapcdn.com *.cloudflare.com 'unsafe-inline' 'unsafe-eval'; img-src 'self' *.dev.local *.ytimg.com *.umbraco.org *.cookiebot.com *.googletagmanager.com *.gstatic.com *.youtube.com *.umbraco.com *.doubleclick.net *.google.com *.goog
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (18)

Linked from (6)