spirair.nl — domain check, WHOIS, DNS & reputation

HTML metadata

Title: Home - Spirair
Language: nl-NL
Canonical: https://spirair.nl/nl-nl

Technology

Stack: ASP.NET

Analytics

Google Tag Manager

Third-party hosts loaded (3)

maps.googleapis.com×1
spirair-luchttechniek.email-provider.eu×1
www.googletagmanager.com×1

Contact

Email

info@spirair.nl

Phone

+31332474849

DNS records live

NS

nsauth1.bit.nl
nsauth2.bit.nl
nsauth3.bit.org

MX

0 spirair-nl.mail.protection.outlook.com

TXT

Spirair BV
sophos-domain-verification=64a61010053ac7b68bde78d20fa01813815824ece08bdb26693f0b4f9bc16b9c

Verified for

Microsoft 365

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com include:spf.eu.exclaimer.net include:spf.eprov.nl include:solvisoft.net ip4:213.136.12.232 ip4:84.246.29.159 -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; sp=quarantine; adkim=s; aspf=s; pct=100

policy: quarantine · sp=quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC40jgxbsURljbN2jLE7VQrk/B2GAuWsx9x7RkzJD4sADICkN7fCp9n5G/go8ldQEMuH4N0x951AG+RdGNwxu…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA OV R36

from 2026-05-20 to 2026-12-05

Expires in 183 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://spirair.nl/nl-nl

present

strict-transport-security
content-security-policy
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
missing frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-content-type-options: nosniff
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google.com/recaptcha/api.js https://www.google-analytics.com/ https://maps.googleapis.com/maps/api/ https://www.gstatic.com/recaptcha/releases/ https://maps.googleapis.com/maps-api-v3/api/js/ https://cdnjs.cloudflare.com/ajax/libs/angular-touch/1.5.7/angular-touch.min.js https://cdnjs.cloudflare.com/ajax/libs/clipboard.js/1.5.10/clipboard.min.js https://www.feedbackcompany.com/includes/widgets/feedback-company-widget.min.js https://maps.googleapis.com/maps/vt https://www.googletagmanager.com/ https://www.googleadservices.com/ https://embed.tawk.to/ https://cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js https://spirair-luchttechniek.email-provider.eu https://snap.licdn.com/ https://www.clarity.ms/ https://cdn.leadinfo.net/ https://cdn.ldnfrpl.com/; frame-ancestors 'self';
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (2)

laposta.nl×1
email-provider.eu×1

Linked from (1)

keistadfietsfestival.nl×1