indexo.dev

vorstin.nl

.nl crawl

First seen 2026-05-27 · Last seen 2026-06-02 · ok HTTP/1.1 200 156 ms crawled 2026-05-30

NL · 45.135.58.80 · AS206176 GreenEdge B.V.

Reputation 100/100

sector entertainment type homepage

HTML metadata

Title
Home - Vorstin
Description
De Vorstin is het poppodium van Hilversum. Laat je muzikaal verrassen en dompel je onder in al het moois dat we te bieden hebben.
Language
nl-NL
Canonical
https://vorstin.nl/

Open Graph

url
https://vorstin.nl/
title
Home
locale
nl_NL
site name
Vorstin
description
De Vorstin is het poppodium van Hilversum. Laat je muzikaal verrassen en dompel je onder in al het moois dat we te bieden hebben.

Technology

Server
nginx
Analytics
  • Google Tag Manager
  • Matomo

Third-party hosts loaded (3)

  • gmpg.org×1
  • vorstin.matomo.cloud×1
  • www.googletagmanager.com×1

Social

Contact

Email

DNS records live

NS
  • dimitris.ns.cloudflare.com
  • lara.ns.cloudflare.com
MX
  • 10 vorstin-nl.mail.protection.outlook.com
Verified for
  • Google

Email authentication strong

SPF
v=spf1 mx a ip4:77.95.102.106 ip4:145.131.99.181 include:sendgrid.net include:_spf.eu.sparkpostmail.com include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; sp=reject; rua=mailto:watchdog2@watchdog.kevlarr.io; adkim=r; aspf=r;
policy: reject (enforced) · sp=reject
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3a+OrdwLm04oyxX9yye820Vp63681aWlLClIgOjhtb2hhuSMh5wsBjiO47zCr5sX3/TYUnXOwLy9Qc…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+HaJKolJPGqBWpdkh3GhsCmnc7+qn9Swez2FQtaBEZz/OJU9c/W7XjCf6W2/ppSjanKY4Srdcp4XkAJ0/…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDNWjDMOkXHCtaAuyTiTDvWGoobhCYEMrnvmNO3qU0jb2R9GO9iPasjR4uV5CCustmcI1atGLd/qDsqglEIkyAl1K…
selectors probed

Certificate (current)

E8
from 2026-04-03 to 2026-07-02
Expires in 29 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://vorstin.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
camera=(self)
x-content-type-options
nosniff
content-security-policy
default-src 'self' ; worker-src 'self' data: blob:; report-uri https://eagerly.nl/reports/report.php; img-src 'self' * data:; media-src 'self' https://*.spotify.com https://*.youtube.com https://*.googletagmanager.com blob: data:; connect-src 'self' https://*.googlesyndication.com https://*.facebook.com https://*.googletagmanager.com https://*.gstatic.com https://*.matomo.cloud https://*.google-analytics.com; frame-src 'self' https://*.spotify.com https://*.youtube.com https://*.googletagmanager.com; child-src 'self' https://*.spotify.com https://*.youtube.com https://*.googletagmanager.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.googletagmanager.com https://*.youtube.com https://*.facebook.net https://*.matomo.cloud https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://*.googleapis.com; font-src 'self' https://*.googleapis.com https://*.gstatic.com data:; form-action 'self' ; frame-ancestors 'self' ;
strict-transport-security
max-age=31536000;

Links to (7)

Linked from (1)