SSL check results of caronte.trustitalia.it

NEW You can also bulk check multiple servers.

Discover if the mail servers for caronte.trustitalia.it can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Mon, 25 May 2020 18:04:53 +0000

The mailservers of caronte.trustitalia.it can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @caronte.trustitalia.it addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
caronte.trustitalia.it
212.210.63.61
-
supported
caronte.trustitalia.it
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
13 s

Outgoing Mails

We have received emails from these servers with @caronte.trustitalia.it sender addresses. Test mail delivery

Host TLS Version & Cipher
caronte.trustitalia.it (212.210.63.61)
Insecure - not encrypted!

Certificates

First seen at:

CN=caronte.trustitalia.it,OU=IT Services,O=Trust-Italia S.p.A.,L=Roma,ST=Roma,C=IT

Certificate chain
Subject
Country (C)
  • IT
State (ST)
  • Roma
Locality (L)
  • Roma
Organization (O)
  • Trust-Italia S.p.A.
Organizational Unit (OU)
  • IT Services
Common Name (CN)
  • caronte.trustitalia.it
Alternative Names
  • caronte.trustitalia.it
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Common Name (CN)
  • DigiCert SHA2 Secure Server CA
validity period
Not valid before
2019-07-16
Not valid after
2020-07-16
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
5D:B2:C4:4A:0A:5A:19:47:43:8B:8F:1E:D2:96:EA:F1:61:9A:69:F6:9B:8C:B5:2F:A9:89:E5:B6:4F:1B:51:F1
SHA1
C4:1F:EC:AB:72:C8:85:BE:A6:E8:18:42:F0:01:E7:18:2B:32:05:C7
X509v3 extensions
authorityKeyIdentifier
  • keyid:0F:80:61:1C:82:31:61:D5:2F:28:E7:8D:46:38:B4:2C:E1:C6:D9:E2
subjectKeyIdentifier
  • 1F:E5:53:52:33:75:93:99:3B:A9:23:E6:22:09:22:E9:65:69:E1:32
crlDistributionPoints
  • Full Name:
  • URI:http://crl3.digicert.com/ssca-sha2-g6.crl
  • Full Name:
  • URI:http://crl4.digicert.com/ssca-sha2-g6.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.1
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.2
authorityInfoAccess
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:B9:09:90:B4:18:58:14:87:BB:13:A2:CC:67:70:0A:
  • 3C:35:98:04:F9:1B:DF:B8:E3:77:CD:0E:C8:0D:DC:10
  • Timestamp : Jul 16 13:14:43.934 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:C0:E1:FE:04:75:DD:5B:40:A4:A1:78:
  • D4:15:C9:A4:26:5C:6C:CD:5E:B7:86:66:51:3B:FB:FD:
  • 66:A8:25:58:B4:02:21:00:9B:0A:90:56:79:6C:65:88:
  • 5E:49:0A:AC:03:C5:47:E2:C6:95:05:3B:1C:A5:6E:B8:
  • 1A:8A:14:C7:09:9A:0F:F2
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 87:75:BF:E7:59:7C:F8:8C:43:99:5F:BD:F3:6E:FF:56:
  • 8D:47:56:36:FF:4A:B5:60:C1:B4:EA:FF:5E:A0:83:0F
  • Timestamp : Jul 16 13:14:44.007 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:23:B3:50:69:3B:54:73:07:52:9F:4B:ED:
  • 8A:8D:8E:FB:51:5E:3C:54:6B:62:1B:68:05:B8:C8:8F:
  • 13:FF:BB:75:02:20:42:50:EE:0D:46:FA:76:E1:0A:23:
  • 8D:2E:1E:BE:5F:5C:64:01:F0:B3:07:C0:F1:42:BE:6E:
  • 16:E2:C2:FF:4A:F3