indexo.dev

orthica.nl

.nl crawl

First seen 2026-06-01 · Last seen 2026-06-02 · ok HTTP/1.1 200 90 ms crawled 2026-06-02

US · 23.185.0.253 · AS54113 Fastly, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Orthica | Hét kwaliteitsmerk in supplementen van Nederlandse bodem
Description
Orthica wordt al 40 jaar geadviseerd door therapeuten. Bij ons vind je hoogwaardige voedingssupplementen voor iedere levensstijl en levensfase.
Language
nl
Canonical
https://www.orthica.nl/
Translations
  • nl

Technology

Server
nginx
CMS
Drupal

Third-party hosts loaded (4)

  • cdn.jsdelivr.net×3
  • www.google.com×3
  • cdn.polyfill.io×1
  • polyfill.io×1

Social

DNS records live

NS
  • amsdns1.nestle.com
  • aoadns1.nestle.com
  • ctrdns1.nestle.com
  • eurdns1.nestle.com
MX
  • 10 orthica-nl.mail.protection.outlook.com
TXT
  • LHAWeiZnwCzXzUZngDnl0l6qnY0gHC2Rs6vlFIzuZv8AFSWWE1McFPuVJFV3nJRT6EgzI39Ka7VEJxBWdkrB3A==
  • v5284h6s436pscpk38utaehhqc
  • Plaza Internet - https://www.plaza.nl
Verified for
  • Adobe
  • Canva
  • Google
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; rua=mailto:dmarc_agg@vali.email
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6H00H6PQqSOisQ8OhsvbLfDw+M1Bqxb2S6llA1ILAKssZbKbjrFTUG4HjCAK61sC8Ie4UQkGAagncd…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3X3bHO2ffxgcXLcGRtm81IxLxIMZ7nYycXSP5hLyfvo06N/M3MQpgvC+mf70b5aK8iLPMdD5GgVtG3yI3S…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCvYQzOWdYuB59B/zW1RHy41TIgngXdQqh6K/0/u4xdpEw6LGTAvBiS9crgKsOObrG/IzboZXYVHPlEAEBAt7bRTy…
selectors probed

Certificate (current)

R12
from 2026-04-25 to 2026-07-24
Expires in 52 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.orthica.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
script-src 'self' 'unsafe-inline' 'unsafe-eval' data-eu.orthica.nl *.googletagmanager.com chimpstatic.com *.jsdelivr.net *.highcharts.com *.gigya.com *.youtube.com *.fontawesome.com *.nestle.com *.google.com *.cookielaw.org *.recaptcha.net *.onetrust.com *.gstatic.com *.google-analytics.com *.polyfill.io *.googleapis.com polyfill.io *.facebook.net *.licdn.com; frame-ancestors 'self'; connect-src 'self' data-eu.orthica.nl *.fontawesome.com *.gigya.com *.google.com *.cookielaw.org *.recaptcha.net *.onetrust.com *.gstatic.com *.google-analytics.com *.googleapis.com *.linkedin.com *.facebook.com
strict-transport-security
max-age=1000, max-age=300

Links to (5)

Linked from (1)