indexo.dev

vna-lease.nl

.nl crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 298 ms crawled 2026-05-30

NL · 185.146.216.146 · AS39704 CJ2 Hosting B.V.

Reputation 100/100

Classifying

HTML metadata

Title
Vereniging van Nederlandse Autoleasemaatschappijen | VNA
Description
VNA vertegenwoordigt, profileert, ondersteunt en verbind haar leden als collectief bij de ontwikkeling van de sector en de transformatie naar nieuwe vormen van duurzame mobiliteit.
Language
nl
Canonical
https://https://www.vna-lease.nl/

Technology

Server
Microsoft-IIS
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • https×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

DNS records live

NS
  • ns1.argewebhosting.eu
  • ns2.argewebhosting.com
  • ns3.argewebhosting.nl
MX
  • 10 vnalease-nl0i.mail.protection.outlook.com
TXT
  • lAcZSxB9bRcHEZIXjp6huGzxiMRGMrgquFV57CflM9sshAft4vv9S1dDdWj1s9E5fzK18SwrK140ePXddTuL8w==
  • _bgdro9jgbm6ng6qs5h7ze64a9j9ydip

Email authentication strong

SPF
v=spf1 ip4:185.146.216.146 ip4:31.149.201.12 include:spf.protection.outlook.com include:spf.vnalease.livits.net include:spf.afas.online -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:support@vna-lease.nl; ruf=mailto:support@vna-lease.nl; fo=1
policy: quarantine
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu15MS8P+VGBLFFrnf/v73en+4gl/3bawJHmE6KlQMAA8B0dNa3uENfuiPdwRK/enPf53ReEphSD/8m…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl9sRXc89vAbn2h2r9/9sVyLvusBQUwX3CsksogsAZbrx6s3w9YBwTorY6LLMak6bImMxgiVPagt9W5…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA OV R36
from 2025-10-17 to 2026-10-20
Expires in 141 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.vna-lease.nl/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), camera=(), geolocation=(self), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
x-content-type-options
nosniff
content-security-policy
frame-src 'self' *.cookiebot.com *.youtube.com *.vimeo.com https://www.google.com; form-action 'self'; default-src 'self' 'unsafe-inline' 'unsafe-eval' data: base.speakdemo.nl *.speakdemo.nl *.sharethis.com *.youtube.com *.readspeaker.com *.googleapis.com *.google.com *.google.nl https://stats.g.doubleclick.net *.doubleclick.net wss://api.qooqie.com *.bing.com *.leadinfo.com player.vimeo.com *.vimeocdn.com packages.umbraco.org our.umbraco.org *.cloudflare.com *.googletagmanager.com *.google-analytics.com *.qooqie.com *.leadinfo.net *.clarity.ms *.bind.com *.ytimg.com *.gstatic.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' base.speakdemo.nl *.googleapis.com *.sharethis.com *.readspeaker.com *.rawgit.com https://www.gstatic.com https://www.google.com https://www.googleadservices.com https://extreme-ip-lookup.com https://stats.g.doubleclick.net *.doubleclick.net wss://api.qooqie.com *.bing.com *.leadinfo.com player.vimeo.com *.vimeocdn.com packages.umbraco.org our.umbraco.org *.clo

Links to (1)

Linked from (2)