SSL-Tools

SSL check results of aplus.it

NEW You can also bulk check multiple servers.

Discover if the mail servers for aplus.it can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Fri, 29 Nov 2024 01:30:08 +0000

We can not guarantee a secure connection to the mailservers of aplus.it!

Please contact the operator of aplus.it and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/aplus.it

Servers

Incoming Mails

These servers are responsible for incoming mails to @aplus.it addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
email.aplus.it
80.152.155.83
Results incomplete
5
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
mail.aplus.it
2a00:12e8:600::70:6c65:736b:3034
 10
supported
mail.aplus.it
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
3 s
mail.aplus.it
194.126.239.6
 10
supported
mail.aplus.it
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @aplus.it address so far. Test mail delivery

Certificates

First seen at:

CN=mail.aplus.it

Certificate chain
  • mail.aplus.it
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
    • Expired
      • R11
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mail.aplus.it
Alternative Names
  • mail.aplus.it
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R11
validity period
Not valid before
2024-08-27
Not valid after
2024-11-25
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
0F:6A:42:0C:FA:D2:96:C4:D8:2B:7C:D0:CE:FF:3B:4F:28:23:42:A8:D2:B7:CC:81:07:4B:7B:12:50:99:E6:9F
SHA1
8A:49:01:43:9D:E2:54:48:66:65:C4:21:F6:48:6B:D5:EA:85:E7:9C
X509v3 extensions
subjectKeyIdentifier
  • E7:0B:D5:DA:21:3A:38:4A:E4:13:DD:BA:AF:D5:F4:21:21:F3:A6:05
authorityKeyIdentifier
  • keyid:C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
authorityInfoAccess
  • OCSP - URI:http://r11.o.lencr.org
  • CA Issuers - URI:http://r11.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
  • ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
  • Timestamp : Aug 27 11:13:15.088 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:F5:73:49:C1:37:C0:6E:55:6F:4F:3A:
  • 7B:34:50:7B:75:6C:EC:21:FE:77:BA:C0:30:E5:E7:29:
  • 1D:E3:BD:9D:18:02:21:00:DC:CC:66:3A:D1:9A:F0:D0:
  • 62:02:09:30:05:F7:31:DE:5A:FF:88:04:7A:45:C7:FE:
  • 01:55:88:D4:B7:45:B5:D4
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
  • 83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
  • Timestamp : Aug 27 11:13:15.104 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:74:70:E2:36:12:43:B9:D5:DF:69:1A:DA:
  • D3:70:86:55:0A:D7:09:E3:79:EB:17:7E:9F:DA:AE:E7:
  • 6E:C1:DC:C4:02:21:00:FE:66:CB:C5:B5:02:A3:CA:7B:
  • D4:6A:D1:11:1B:93:04:44:01:DC:87:C6:63:49:BC:4E:
  • F8:89:71:B9:95:B4:46