SSL-Tools

SSL check results of ascomail.com

NEW You can also bulk check multiple servers.

Discover if the mail servers for ascomail.com can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 26 Jun 2025 20:32:47 +0000

We can not guarantee a secure connection to the mailservers of ascomail.com!

Please contact the operator of ascomail.com and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/ascomail.com

Servers

Incoming Mails

These servers are responsible for incoming mails to @ascomail.com addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
spamfilter2.ascotlc.it
188.125.96.211
 5
supported
spamfilter2.ascotlc.it
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
3 s
pop.ascotlc.com
188.125.97.100
 10
supported
mail.ascomail.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.0
  • SSLv3
2 s
mail2.ascotlc.it
80.86.158.180
Results incomplete
20
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s

Outgoing Mails

We have not received any emails from a @ascomail.com address so far. Test mail delivery

Certificates

First seen at:

CN=spamfilter2.ascotlc.it

Certificate chain
  • spamfilter2.ascotlc.it
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R11
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • spamfilter2.ascotlc.it
Alternative Names
  • spamfilter2.ascotlc.it
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R11
validity period
Not valid before
2025-04-29
Not valid after
2025-07-28
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
E4:4C:26:26:42:22:35:7F:AD:E4:C5:A7:46:1F:0E:1B:AF:39:6C:9A:B2:BD:24:00:C9:2D:44:EB:3B:66:3A:46
SHA1
81:73:B0:97:79:1E:3B:42:C9:11:F0:4F:E8:EB:11:7D:97:CA:C3:53
X509v3 extensions
subjectKeyIdentifier
  • E2:96:EA:A0:1C:D0:36:9A:6C:02:08:2D:37:46:71:A8:0E:ED:14:24
authorityKeyIdentifier
  • keyid:C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
authorityInfoAccess
  • OCSP - URI:http://r11.o.lencr.org
  • CA Issuers - URI:http://r11.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r11.c.lencr.org/81.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
  • 87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
  • Timestamp : Apr 29 10:54:24.850 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:7A:8F:47:3A:30:41:00:9F:08:FC:2F:4A:
  • FE:1F:4C:D8:19:9B:F9:99:58:B7:E6:51:3F:34:EC:1A:
  • 86:B7:6A:18:02:20:67:36:30:2A:D2:67:91:DB:BD:F7:
  • 6B:4A:49:62:BC:51:9F:B0:C0:B7:A9:0D:96:1F:A6:A0:
  • 15:2D:CF:8E:A8:EB
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 0D:E1:F2:30:2B:D3:0D:C1:40:62:12:09:EA:55:2E:FC:
  • 47:74:7C:B1:D7:E9:30:EF:0E:42:1E:B4:7E:4E:AA:34
  • Timestamp : Apr 29 10:54:24.854 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:56:81:3A:8C:9B:EF:43:75:85:B6:71:82:
  • 2E:42:BE:38:37:44:B1:E6:3F:CC:E2:42:A4:EB:BC:90:
  • 1F:10:27:9B:02:21:00:A5:64:3C:36:5C:5E:A2:7C:1F:
  • CB:50:76:8B:6E:17:DC:3B:C6:07:3F:B1:9A:0E:DB:D6:
  • EB:D2:FE:D9:74:E9:1C
First seen at:

CN=mail.ascomail.com

Certificate chain
  • mail.ascomail.com
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
    • Hostname Mismatch
    • Expired
      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mail.ascomail.com
Alternative Names
  • mail.ascomail.com
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2024-12-09
Not valid after
2025-03-09
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
CC:1F:90:C0:90:B5:6F:07:FB:0B:DF:88:C9:AA:25:02:C3:7E:47:A8:E4:D3:45:17:59:57:F5:2E:55:ED:5C:9A
SHA1
EB:EA:77:ED:A4:0F:06:22:8F:E7:61:ED:BD:52:AA:BF:C3:F6:EE:AB
X509v3 extensions
subjectKeyIdentifier
  • FB:3C:49:31:06:D1:F7:D9:5E:91:E0:7B:EC:FE:1F:21:EA:00:E0:73
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • OCSP - URI:http://r10.o.lencr.org
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
  • 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
  • Timestamp : Dec 9 08:58:26.555 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:54:F4:E5:46:1F:F2:9C:68:94:E8:9B:C8:
  • F5:A4:50:BE:FF:1B:D4:9B:86:33:58:AD:0A:EC:EE:F6:
  • 04:8C:70:35:02:20:3E:43:3B:56:BD:A5:1D:48:AB:AB:
  • DC:79:E4:46:9F:37:E3:1C:D9:8C:87:17:7B:CC:89:C7:
  • E0:E0:42:85:F7:DA
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
  • 16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
  • Timestamp : Dec 9 08:58:26.751 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:69:7B:7A:F3:80:32:72:60:92:7B:45:82:
  • 44:2E:A6:7E:8A:7F:66:72:AC:E2:5E:49:4B:03:00:07:
  • E6:91:16:AE:02:20:4F:81:95:77:42:7D:3E:D1:E2:7D:
  • 3A:4B:D4:6D:CA:9D:D4:9A:42:47:C8:A7:C5:72:BE:6E:
  • C0:72:5E:36:14:10