SPF Check:
armorscreen.com

1. Specify domain name

Enter a domain to be checked for the SPF record

2. Specify IP address (optional)

Enter any IP address to check if it is authorized to send e-mails by the SPF record

Do not display in recently performed SPF lookups

What is the SPF lookup for?

With the SPF lookup you analyze the SPF record of a domain for errors, security risks and authorized IP addresses. Optionally, you can specify an IP address to check if it is authorized to send e-mail on behalf of the domain. The SPF lookup analyzes registered TXT records in real time. If you want to specify an SPF record manually, use the SPF Analyzer.

SPF check passed

Your SPF record check result

SPF record found
Syntax check: 0 errors
Email Anti-Spoofing: Good

Summary of the SPF check

Does a valid SPF record exist?
An SPF record was found for the domain armorscreen.com.
The SPF record for armorscreen.com is valid.
The syntax check of the SPF record shows no obvious errors.

Which IP-s are legitimate to send emails?
In total, 17 IP address(es) were authorized by the SPF record to send emails.

The SPF record analysis was performed on 08.01.2025 at 23:16:31 clock.

Lookup for the domain:

armorscreen.com

IP address to be checked:

no IP address specified

Solve e-mail problems sustainably

Get the help of our experts

Measurably high email deliverability for your success
Proven to meet Google and Yahoo requirements
Optimally implement SPF, DKIM, DMARC and other mechanisms
Record strong reputation and trust gains
Achieve higher conversion rates and more sales
Reliable protection for your safety – and your customers
Professional tool to monitor your email deliverability

Book now and send worry-free emails in just a few hours

Solve your problems in no time

Guaranteed measurable improvement for email deliverability and domain security

Book expert solution

Solve your problems in no time

Book expert solution

Evaluation for the domain armorscreen.com

Nameserverset:

laylah.ns.cloudflare.com
chad.ns.cloudflare.com

Determined SPF record:

v=spf1 ip4:50.221.39.116 ip4:50.221.39.126 ip4:50.221.39.114 ip4:50.221.39.117 ip4:135.84.81.0/24 ip4:135.84.83.0/24 ip4:135.84.82.0/24 a:mail.usaepay.com ip4:136.143.160.0/24 ip4:165.173.128.0/24 ip4:136.143.161.0/24 a:mx-ca4-01.usaepay.com a:mx-ca4-02.usaepay.com a:mx-ca1-01.usaepay.com a:mx-ca1-02.usaepay.com a:mx-ma1-01.usaepay.com a:mx-ma1-02.usaepay.com ~all

v=spf1 ip4:50.221.39.116 ip4:50.221.39.126 ip4:50.221.39.114 ip4:50.221.39.117 ip4:135.84.81.0/24 ip4:135.84.83.0/24 ip4:135.84.82.0/24 a:mail.usaepay.com ip4:136.143.160.0/24 ip4:165.173.128.0/24 ip4:136.143.161.0/24 a:mx-ca4-01.usaepay.com a:mx-ca4-02.usaepay.com a:mx-ca1-01.usaepay.com a:mx-ca1-02.usaepay.com a:mx-ma1-01.usaepay.com a:mx-ma1-02.usaepay.com ~all

SPF Send

Legitimated IP addresses:

17 IP addresses found

IP	Provider / ASN	DNSBL-Check
50.221.39.116	COMCAST-7922	blacklist
50.221.39.126	COMCAST-7922	blacklist
50.221.39.114	COMCAST-7922	blacklist
50.221.39.117	COMCAST-7922	blacklist
135.84.81.0/24	ZOHO-AS	blacklist
135.84.83.0/24	ZOHO-AS	blacklist
135.84.82.0/24	ZOHO-AS	blacklist
209.239.233.225	AS5033	blacklist
136.143.160.0/24	ZOHO-AS	blacklist
165.173.128.0/24	ZOHO-AS	blacklist
136.143.161.0/24	ZOHO-AS	blacklist
209.239.233.124	AS5033	blacklist
209.239.233.125	AS5033	blacklist
64.0.146.124	GC-1	blacklist
64.0.146.125	GC-1	blacklist
209.220.191.124	XO-AS15	blacklist
209.220.191.125	XO-AS15	blacklist

SPF-Syntax Check:

Syntax check passed: 0 error

(armorscreen.com) Mechanisms of SPF-Record are valid

OK for 'v' -> 'spf1'

OK for 'ip4' -> '165.173.128.0/24'

OK for 'a' -> 'mx-ma1-02.usaepay.com:'

OK for 'a' -> 'mx-ma1-01.usaepay.com:'

OK for 'a' -> 'mx-ca1-02.usaepay.com:'

OK for 'a' -> 'mx-ca1-01.usaepay.com:'

OK for 'a' -> 'mx-ca4-02.usaepay.com:'

OK for 'a' -> 'mx-ca4-01.usaepay.com:'

OK for 'ip4' -> '136.143.161.0/24'

OK for 'ip4' -> '136.143.160.0/24'

OK for 'ip4' -> '50.221.39.116'

OK for 'a' -> 'mail.usaepay.com:'

OK for 'ip4' -> '135.84.82.0/24'

OK for 'ip4' -> '135.84.83.0/24'

OK for 'ip4' -> '135.84.81.0/24'

OK for 'ip4' -> '50.221.39.117'

OK for 'ip4' -> '50.221.39.114'

OK for 'ip4' -> '50.221.39.126'

OK for 'all' -> '~'

(armorscreen.com) The DNS lookup limit was not exceeded.

The limit was not exceeded:

1: armorscreen.com - A
2: armorscreen.com - A
3: armorscreen.com - A
4: armorscreen.com - A
5: armorscreen.com - A
6: armorscreen.com - A
7: armorscreen.com - A

(armorscreen.com) The SPF consists of a permissible character set.

The SPF record of armorscreen.com contains valid characters.

Check domain risks

Analysis result of the SPF record for the domain: armorscreen.com

SPF record available?

We found an SPF record for the domain.

v=spf1

Additionally authorized A-records?

In addition to the A-records stored in the DNS, we were able to find further records authorized in the SPF-record

209.239.233.225
209.239.233.124
209.239.233.125
64.0.146.124
64.0.146.125
209.220.191.124
209.220.191.125

Additionally authorized IPv4 addresses

Explicit IPv4 addresses in the SPF record have been authorized to send

50.221.39.116
50.221.39.126
50.221.39.114
50.221.39.117
135.84.81.0/24
135.84.83.0/24
135.84.82.0/24
136.143.160.0/24
165.173.128.0/24
136.143.161.0/24

E-Mail handling

How should the checkHost() function of the e-mail server handle the e-mail? (syntax )

~all
SoftFail (non-compliant e-mails are accepted but marked)

Will be forwarded to another SPF record?

There is no reference to any other SPF record

Are the server addresses allowed to send e-mails?

In the SPF entry the mechanism 'a' has not been set.

Are the registered mail servers allowed to send e-mails?

In the SPF entry the mechanism 'mx' has not been set

Additionally authorized MX records

We could not find any other records authorized in the SPF record besides the MX records stored in the DNS

Additionally authorized IPv6 addresses

No explicit IPv6 addresses in the SPF record have been authorised to send

Additional external SPF records

We could not find any other records authorized in SPF-Record

How is the sender informed?

The exp mechanism acts as a return to the sender if the IP address was not authorized to send and notify them. None was found.

PTR (obsolete mechanism)

The ptr mechanism is deprecated, slow and insecure and should not be used

PTR:

The ptr mechanism is deprecated, slow and insecure and should not be used

Authorize IP addresses with markers

When SPF is evaluated, macros can specifically authorize Ip addresses based on the request or connection of the user or client (RFC7208 )

Receiver address

analysis.ra-missing

Amount of reports

analysis.rp-missing

Report selection

analysis.rr-missing

Unknown mechanisms

No unknown mechanisms were found in the SPF record.

Recently performed SPF lookups

Server IP Address

We have determined the following IP address for the domain:

No domain specified

Reverse address

We have determined the following name for the server IP address:

251.0.153.160.host.secureserver.net

Free whitepaper

How secure is your domain?

Practical with many examples
the basics of domain risk management summarized in 20 pages
Checklist with 53 questions on 14 risk areas

Get a first impression of the risk potential in your company

⮩ Download "Domain Risk Management" for free

SPF Check: armorscreen.com