avarian.de - TLS / STARTTLS Test

Discover if the mail servers for avarian.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Fri, 10 Jan 2025 17:52:27 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of avarian.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @avarian.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mail.avarian.de 188.68.47.41	10	supported	avarian.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2025-01-10 7 s
mx2f29.netcup.net 188.68.47.41 Results incomplete	50	supported	*.netcup.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2025-01-10 4 s

Outgoing Mails

We have not received any emails from a @avarian.de address so far. Test mail delivery

Certificates

First seen at: 2025-01-10

CN=avarian.de

Certificate chain

avarian.de
- 2025-04-03 remaining
- 4096 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

avarian.de

Alternative Names

*.avarian.de
avarian.de

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2025-01-03
Not valid after: 2025-04-03

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 9D:54:2A:96:7F:E7:2B:C4:B9:09:68:DE:B5:34:0C:73:EB:CC:9B:EC:D7:46:07:02:61:91:3E:69:D5:39:CE:40
SHA1: DE:84:33:38:F7:EF:8B:93:D8:00:C1:19:BB:F5:F0:C4:D8:49:1E:CE

X509v3 extensions

subjectKeyIdentifier

E7:B6:D4:F6:4C:70:7C:16:46:BA:A4:2F:95:CC:98:1C:CD:C4:2F:2F

authorityKeyIdentifier

keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8

authorityInfoAccess

OCSP - URI:http://r10.o.lencr.org
CA Issuers - URI:http://r10.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Jan 4 00:06:30.255 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:E7:62:21:BE:0B:57:5C:F8:1A:4A:43:
37:4A:8E:37:11:46:29:41:CD:FA:07:AB:4B:4B:6D:55:
C2:D1:06:0C:D0:02:20:43:5E:C3:00:B7:52:7E:E4:C3:
E4:64:C7:C3:8D:9B:2B:EC:98:62:7E:D5:98:A6:BF:E5:
B6:09:2C:FD:EC:04:83
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
Timestamp : Jan 4 00:06:30.520 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:10:9B:5B:07:E8:9E:A8:97:AE:96:F1:11:
C9:78:8A:50:63:7A:3F:3C:0C:84:AB:CF:F4:B7:66:D8:
DF:69:32:35:02:20:32:83:9A:3C:0C:88:FF:51:41:24:
42:C3:C9:28:D5:08:E0:93:99:BE:EB:F0:29:54:BA:48:
C2:24:C9:2E:FB:84

First seen at: 2024-09-26

CN=*.netcup.net

Certificate chain

*.netcup.net
- 2025-09-15 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

*.netcup.net

Alternative Names

*.netcup.net
netcup.net

Issuer

Country (C)

Organization (O)

DigiCert Inc

Organizational Unit (OU)

www.digicert.com

Common Name (CN)

RapidSSL TLS RSA CA G1

validity period

Not valid before: 2024-09-16
Not valid after: 2025-09-15

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: AD:F1:75:D0:25:78:24:9A:89:61:7F:45:78:3A:39:7E:72:FE:A7:4A:15:AE:F2:6A:8E:C3:44:6A:73:77:0F:36
SHA1: 0D:5D:FD:F5:15:2F:2B:5F:B6:86:EE:08:A0:A7:0C:61:22:B0:EA:19

X509v3 extensions

authorityKeyIdentifier

keyid:0C:DB:6C:82:49:0F:4A:67:0A:B8:14:EE:7A:C4:48:52:88:EB:56:38

subjectKeyIdentifier

EA:D7:B6:20:A8:5D:53:51:0D:5B:24:EB:07:67:13:21:0A:BD:2F:E4

certificatePolicies

Policy: 2.23.140.1.2.1
CPS: http://www.digicert.com/CPS

crlDistributionPoints

Full Name:
URI:http://cdp.rapidssl.com/RapidSSLTLSRSACAG1.crl

authorityInfoAccess

OCSP - URI:http://status.rapidssl.com
CA Issuers - URI:http://cacerts.rapidssl.com/RapidSSLTLSRSACAG1.crt

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
Timestamp : Sep 16 11:03:04.377 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:06:34:DA:A9:EF:EF:E9:39:DB:F7:F3:D2:
74:9B:99:2A:A2:90:F5:E3:30:63:7D:30:A2:11:63:50:
93:07:87:00:02:20:5D:FB:30:C5:5E:3F:B2:40:13:8B:
F8:1E:38:68:7C:FA:35:2F:59:4E:97:2D:6A:66:B4:23:
01:1E:6D:C7:22:B3
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : Sep 16 11:03:04.254 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:6F:10:DB:B9:07:29:56:D7:12:E2:4E:9D:
54:BE:6C:D5:32:50:5D:73:76:5D:4B:C1:B8:C3:DE:3F:
00:82:64:E3:02:20:19:D6:CF:24:A4:BA:78:33:2C:7A:
39:86:2E:94:02:53:90:D9:0B:44:2C:16:4B:E8:7A:C3:
E2:31:ED:13:2F:2A
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
Timestamp : Sep 16 11:03:04.278 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:1A:04:C5:4A:44:92:CC:4E:20:0A:BB:39:
F1:4C:28:84:07:8B:6B:DF:F9:02:67:BC:10:BE:CC:09:
03:FD:A5:E4:02:20:2F:54:19:9A:9F:76:71:C4:BF:EE:
25:C7:25:83:DA:64:20:C0:E0:35:B4:14:7B:BB:1F:3F:
E2:AB:4C:5A:FA:F3

SSL check results of avarian.de

Summary

The mailservers of avarian.de can be reached through a secure connection.

Servers

Incoming Mails

Outgoing Mails

Certificates

CN=avarian.de

CN=*.netcup.net