indexo.dev

lafayetteco.gov

.gov user

First seen 2026-05-19 · Last seen 2026-05-19 · ok HTTP/1.1 200 1265 ms crawled 2026-06-03

US · 208.90.190.31 · AS36489 IP Pathways, LLC

Reputation 100/100

sector government type homepage

HTML metadata

Title
Lafayette, CO - Official Website | Official Website
Language
en

Technology

Server
Microsoft-IIS
jQuery
3.7.1
Stack
ASP.NET
Analytics
  • Google Tag Manager

Third-party hosts loaded (4)

  • docaccess.com×1
  • siteimproveanalytics.com×1
  • www.facebook.com×1
  • www.googletagmanager.com×1

Social

Contact

Phone

Registration

Registrar
get.gov
Created
2020-09-23
Expires
2026-08-25 75 days left
Updated
2025-08-30
Name servers
  • chris.ns.cloudflare.com
  • lina.ns.cloudflare.com

DNS records live

NS
  • chris.ns.cloudflare.com
  • lina.ns.cloudflare.com
MX
  • 0 d228383a.ess.barracudanetworks.com
  • 10 d228383b.ess.barracudanetworks.com
Verified for
  • Google
  • Microsoft 365

Email authentication strong

SPF
v=spf1 ip4:63.239.129.174 ip4:63.239.129.173 ip4:173.8.250.220 ip4:173.8.250.210 ip4:209.210.174.38 include:spf.protection.outlook.com include:spf.ess.barracudanetworks.com include:spf.constantcontact.com include:spf.mandrillapp.com google-site-verification=TLXfKbo5L-f29Wi4IGrmB4HzpnPu01xi5Amxb6vCsHQ -all
strict (-all)
DMARC
v=DMARC1; p=reject; sp=reject; fo=1; rua=mailto:3e9a8d247e1247dcabfc6751e11c0c68@dmarc-reports.cloudflare.net,mailto:7vmitf9y@ag.us.dmarcian.com, mailto:rua+lafayetteco.gov@dmarc.barracudanetworks.com; ruf=mailto:ruf+lafayetteco.gov@dmarc.barracudanetworks.com, mailto:7vmitf9y@fr.us.dmarcian.com
policy: reject (enforced) · sp=reject
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzb19H7bP5gL8gjhXxX93+YlONAQjaXMdx9kMQeEzEBHktthJ0GZY0V7PoR9n/GI7My1pZk14ZFFR64…
selectors probed

Certificate (current)

R12
from 2026-05-17 to 2026-08-15
Expires in 66 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://lafayetteco.gov/

present
  • content-security-policy
  • x-content-type-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self' https://*.granicus.com https://platform.civicplus.com https://account.civicplus.com https://analytics.civicplus.com; img-src * data: blob:; worker-src * data: blob: 'unsafe-eval' 'unsafe-inline'; script-src * about: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; media-src * blob:; font-src * data:; default-src *

Links to (6)

Use this data via API

Everything on this page for lafayetteco.gov is available as JSON from the indexo.dev REST & MCP API.

curl "https://indexo.dev/api/v1/domains/lafayetteco.gov" \
  -H "X-API-Key: idx_..."

Read the docs & get a free key →