indexo.dev

roc-nijmegen.nl

.nl crawl

First seen 2026-05-21 · Last seen 2026-05-27 · ok HTTP/1.1 200 4893 ms crawled 2026-05-27

NL · 77.95.249.32 · AS43190 Totaalnet Internet Works B.V.

Reputation 100/100

Classifying

HTML metadata

Title
ROC Nijmegen
Description
Bij ROC Nijmegen kun je je leven lang leren: van mavo/havo/vwo en mbo-opleidingen tot cursussen voor volwassenen. Ontdek met welke opleiding jij verder komt!
Language
nl-nl
Generator
ROC Nijmegen
Canonical
https://www.roc-nijmegen.nl/

Technology

Server
nginx
CMS
Joomla
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×1

Social

Contact

Phone
Address
Campusbaan 12, 6512 BT, Nijmegen, Nederland

DNS records live

NS
  • ns1.surfnet.nl
  • ns1.zurich.surf.net
  • ns2.surfnet.nl
  • ns3.surfnet.nl
MX
  • 0 rocnijmegen-nl0i.t-v1.mx.microsoft
TXT
  • pardot956432=7cd4fc1771c8ca9a79cb82a3a108ba5237c723a707a049e4e0dfc30afb3dd088
Verified for
  • Adobe
  • Apple
  • Google

Email authentication strong

SPF
v=spf1 ip4:195.169.153.80 ip4:195.169.153.97 ip4:195.169.153.154 ip4:195.169.153.21 include:spf.protection.outlook.com include:sparkpostmail.com include:_spf.salesforce.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; pct=100; rua=mailto:dmarc_agg@vali.email; sp=none
policy: quarantine · sp=none
DKIM
  • selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCqCkpLmbY8Hk+OG0LQX8RT//ZAeAYiFf6DbKiqH+kyH346LzpasinLvANHg0LxwoUatiG6NCjvmYdJ0yQlqo…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7knUxrmg4I9wYAvCIIgISzGWHYwlGVhPEPelijXuKSOmWJPNNaPUuDt61lx7Kh2FLXwJRP/RIQkTfL2JVV…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDWiyu48JjHRWBC9yQnHpctywTt6phJtlnVK6A0LNHyXpOHsHVfPf/p5GhONsEm+h/mj3hmRferRYZV7PqisxdQgu…
selectors probed

Certificate (current)

GEANT TLS RSA 1
from 2025-12-19 to 2026-12-19
Expires in 202 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.roc-nijmegen.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
Header values
referrer-policy
strict-origin-when-cross-origin
permissions-policy
accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' https://www.google.com; img-src 'self' data: https://*.roc-nijmegen.nl https://cdn-img.guestplan.com https://*.google-analytics.com https://*.googletagmanager.com https://*.gstatic.com https://*.google.com https://*.google.nl https://*.googleapis.com https://*.g.doubleclick.net https://*.googlesyndication.com https://*.bing.com https://i.ytimg.com https://*.facebook.com https://static.resengo.com https://px.ads.linkedin.com https://c.clarity.ms https://*.snapchat.com https://www.linkedin.com; font-src 'self' data: https://*.roc-nijmegen.nl https://fonts.gstatic.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.guestplan.com https://*.hotjar.com https://*.youtube.com https://polyfill.io https://*.google.com https://*.googletagmanager.com https://*.googleapis.com https://*.google-analytics.com https://*.gstatic.com https://*.roc-nijmegen.nl https://*.pardot.com https://*.facebook.net https://cdn.jsdelivr.net https://code.jquery.com https://*.resengo.com ht
strict-transport-security
max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy
same-origin

Links to (5)

Linked from (2)