indexo.dev

toyotacertified.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 1018 ms crawled 2026-05-18

US · 76.223.71.125 · AS16509 Amazon.com, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Toyota Certified Used Vehicles | Buy Used Cars & More
Description
Learn where to buy used cars and more from your local Toyota dealer. Buy used cars, trucks, SUVs & hybrids with Toyota Certified Used Vehicles.
Language
en
Canonical
https://www.toyotacertified.com
Translations
  • en
  • es

Technology

CDN
Amazon CloudFront
Server
Apache

Third-party hosts loaded (2)

  • rum.hlx.page×1
  • www.toyotacertificados.com×1

Registration

Registrar
MarkMonitor Inc.
Created
1996-06-06
Expires
2028-06-05 746 days left
Updated
2025-12-22
Name servers
  • pdns102.ultradns.biz
  • pdns102.ultradns.com
  • pdns102.ultradns.net
  • pdns102.ultradns.org

DNS records live

NS
  • ns1.toyota.com
  • pdns102.ultradns.biz
  • pdns102.ultradns.com
  • pdns102.ultradns.net
  • pdns102.ultradns.org
MX
  • 10 mail10.toyota.com
  • 20 mail20.toyota.com
  • 30 mail30.toyota.com
  • 40 mail40.toyota.com
Verified for
  • Meta

Email authentication weak

SPF
v=spf1 ip4:63.146.199.14 ip4:63.87.74.200 ip4:69.25.174.16 ip4:69.25.174.17 a mx -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

Amazon RSA 2048 M04
from 2025-09-08 to 2026-10-08
Expires in 140 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://www.toyotacertified.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
findings
  • CSP allows unsafe inline scripts/styles
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
camera=("https://ldti.syndication.kbb.com"), display-capture=(), fullscreen=(self), geolocation=(self), microphone=(), navigation-override=()
x-content-type-options
nosniff
content-security-policy
default-src https: 'unsafe-inline' 'unsafe-eval'; font-src https: data:; img-src https: data:;
strict-transport-security
max-age=31536000; includeSubdomains;
cross-origin-opener-policy
same-origin

Linked from (3)