paleisamsterdam.nl

.nl crawl

First seen 2026-05-19 · Last seen 2026-05-30 · ok HTTP/1.1 200 732 ms crawled 2026-05-26

NL · 87.233.198.111 · AS15703 TrueFullstaq B.V.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Koninklijk Paleis Amsterdam - Paleis Amsterdam
Language: nl

Technology

Server: nginx
CMS: Gatsby

Social

DNS records live

NS

ns-h.dns.yourhosting.eu
ns-m.dns.yourhosting.nl
ns-x.dns.yourhosting.nu

MX

0 paleisamsterdam-nl.mail.protection.outlook.com

Verified for

Google
Meta
Microsoft 365

Email authentication partial

SPF

v=spf1 mx ip4:87.233.246.139 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuOgUWZCNBQIsEKzf9UyN6tUmUKbCLh7j1JPhTmNewOJniPron4M/EieM0TJFAqatAcHA+tiukZmOxLnLyT…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4gNtx20SY2bd9uVe+sth4fStWneLXzSwTnm35grws6a55T7LVb0pMswLO07iIv9df+8VBwTKZHtfPl8Ux…

selectors probed

Certificate (current)

R13

from 2026-04-15 to 2026-07-14

Expires in 43 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.paleisamsterdam.nl/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
weak frame protection
weak content type protection
missing Permissions Policy

Header values

referrer-policy: same-origin
x-frame-options: DENY, SAMEORIGIN
x-content-type-options: nosniff, nosniff
content-security-policy: base-uri 'none'; style-src 'self' 'unsafe-inline'; object-src 'none'; font-src 'self'; img-src 'self' data: https://i.ytimg.com https://fonts.gstatic.com/s/i/googlematerialicons/more/v6/gm_blue-48dp/1x/gm_more_gm_blue_48dp.png https://cdn.matomo.cloud/dkh.matomo.cloud/ https://www.gravatar.com/; script-src 'self' https://www.youtube.com/ https://youtube.com/iframe_api https://www.youtube.com/iframe_api https://www.youtube.com/s/player/5dd3f3b2/www-widgetapi.vflset https://s.ytimg.com https://cdn.matomo.cloud/dkh.matomo.cloud/ www.gstatic.com 'unsafe-inline' 'nonce-xpbsUCR4TbhOpPaK'; connect-src 'self' https://cdn.matomo.cloud/dkh.matomo.cloud/ https://dkh.matomo.cloud/ https://releases.wagtail.org/; frame-src 'self' https://www.youtube.com/ https://www.google.com/ https://paleisamsterdam.globalticket.nl/; default-src 'self'
strict-transport-security: max-age=31536000; includeSubDomains; preload, max-age=63072000; includeSubdomains
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp;
cross-origin-resource-policy: same-origin

Links to (2)

facebook.com×1
instagram.com×1