SSL-Tools

SSL check results of asca.sh

NEW You can also bulk check multiple servers.

Discover if the mail servers for asca.sh can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 30 Aug 2025 00:30:06 +0000

The mailservers of asca.sh can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @asca.sh addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.asca.sh
138.201.158.70
 10
supported
mail.asca.sh
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @asca.sh address so far. Test mail delivery

Certificates

First seen at:

CN=mail.asca.sh

Certificate chain
  • mail.asca.sh
    • remaining
    • 256 bit
    • ecdsa-with-SHA384
      • E8
        • remaining
        • 384 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mail.asca.sh
Alternative Names
  • mail.asca.sh
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • E8
validity period
Not valid before
2025-08-29
Not valid after
2025-11-27
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
E7:22:F7:5E:8E:F2:73:4E:D4:60:DB:C2:C2:77:EF:76:44:4D:62:D2:E4:63:04:DA:0B:0C:D9:1F:12:B9:B9:6C
SHA1
6F:54:4E:BF:02:AF:50:3F:24:77:03:77:60:07:9F:4D:56:38:F5:5D
X509v3 extensions
subjectKeyIdentifier
  • A7:B6:7F:45:43:2A:FC:2F:A5:19:D7:6D:6A:FD:11:A2:28:14:74:DB
authorityKeyIdentifier
  • keyid:8F:0D:13:A2:F6:2E:7E:D1:50:6C:33:18:38:5D:59:8E:23:72:91:CA
authorityInfoAccess
  • CA Issuers - URI:http://e8.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://e8.c.lencr.org/87.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : ED:3C:4B:D6:E8:06:C2:A4:A2:00:57:DB:CB:24:E2:38:
  • 01:DF:51:2F:ED:C4:86:C5:70:0F:20:DD:B7:3E:3F:E0
  • Timestamp : Aug 29 19:35:31.963 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:FE:DD:0E:8F:78:4F:1F:31:C6:CA:DA:
  • 02:99:39:6B:74:1F:38:E4:AA:A5:42:09:9E:F6:3A:13:
  • 8A:2B:FA:8D:FE:02:21:00:92:6D:8C:35:77:49:B0:77:
  • 61:6D:F1:71:F4:FE:AC:D5:55:CC:01:6A:25:C0:C4:1A:
  • BE:02:8F:82:2B:B5:16:99
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
  • F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
  • Timestamp : Aug 29 19:35:31.948 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:A3:A2:16:92:95:72:CC:74:EE:8F:55:
  • 18:2F:99:5C:BF:6A:F7:C2:A6:BD:B6:0B:A3:8D:69:9B:
  • E1:37:FC:F4:0D:02:21:00:94:F2:E1:DD:DF:5F:18:6B:
  • 81:93:F1:1C:FB:D1:54:C4:41:F5:FA:16:B3:CD:77:5F:
  • 4C:F8:1A:CF:43:95:6B:9E