indexo.dev

visitnijmegen.com

.com crawl

First seen 2026-05-20 · Last seen 2026-05-31 · ok HTTP/1.1 200 1019 ms crawled 2026-05-27

IE · 79.125.126.131 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Welkom in het Rijk van Nijmegen | Officiële Toeristische website | Visit Nijmegen
Description
Visit Nijmegen is de officiële website voor de toerist/recreant en laat je zien wat voor leuks er allemaal te beleven is in Nijmegen en omgeving. De beste tips vind je hier. Evenementen, attracties, routes, bezienswaardigheden, etc
Language
nl

Open Graph

title
Welkom in het Rijk van Nijmegen | Officiële Toeristische website
site name
Visit Nijmegen

Technology

Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • assets.plaece.nl×34
  • www.googletagmanager.com×1

Social

Registration

Registrar
Key-Systems GmbH
Created
2008-11-23
Expires
2026-11-23 175 days left
Updated
2025-11-30
Name servers
  • ns0.transip.net
  • ns1.transip.nl
  • ns2.transip.eu

DNS records live

NS
  • ns0.transip.net
  • ns1.transip.nl
  • ns2.transip.eu
MX
  • 0 visitnijmegen-com.mail.protection.outlook.com
  • 10 visitnijmegen.com
Verified for
  • Google
  • Meta
  • Microsoft 365
  • Pinterest

Email authentication strong

SPF
v=spf1 include:_spf.mlsend.com include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:vfr2zxab@rua.eu.dmarcmanager.app;
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvzRpHuulZeRTPQOB4rxynLHxwxDI+9MW63xdrzC9TgNFov1/W8H+4rbMtTKnyeXMYK3q40JyQXf7SZ…
selectors probed

Certificate (current)

R12
from 2026-05-21 to 2026-08-19
Expires in 79 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.visitnijmegen.com/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
Header values
referrer-policy
strict-origin-when-cross-origin
permissions-policy
geolocation=*, autoplay=*, accelerometer=(), camera=(), microphone=(), usb=(), gyroscope=(), magnetometer=()
x-content-type-options
nosniff
content-security-policy
default-src https: 'unsafe-inline' 'unsafe-eval' data: blob:; block-all-mixed-content; connect-src * blob:; font-src https:; frame-ancestors 'self' https://preview.plaece.nl; frame-src *; img-src https: data: blob:; media-src https: data: blob:; script-src https: 'unsafe-inline' 'unsafe-eval' blob:; style-src https: 'unsafe-inline'; report-uri /nelmio/csp/report; worker-src https: blob:
strict-transport-security
max-age=315360000

Links to (5)

Linked from (5)