SSL-Tools

SSL check results of centinated.ch

NEW You can also bulk check multiple servers.

Discover if the mail servers for centinated.ch can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Tue, 22 Oct 2024 11:18:16 +0000

The mailservers of centinated.ch can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @centinated.ch addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx1.centinated.ch
195.137.172.91
 10
supported
mx1.centinated.ch
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s

Outgoing Mails

We have received emails from these servers with @centinated.ch sender addresses. Test mail delivery

Host TLS Version & Cipher
unknown (195.137.172.91)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384

Certificates

First seen at:

CN=mx1.centinated.ch

Certificate chain
  • mx1.centinated.ch
    • remaining
    • 256 bit
    • ecdsa-with-SHA384
      • E5
        • remaining
        • 384 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mx1.centinated.ch
Alternative Names
  • mx1.centinated.ch
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • E5
validity period
Not valid before
2024-10-21
Not valid after
2025-01-19
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
5E:46:B9:55:6C:EB:49:5E:C8:B6:E5:4E:63:2F:DD:74:02:90:6A:88:D8:B9:90:93:BC:8C:E7:C5:79:C4:C4:40
SHA1
F9:C8:A6:AD:F9:97:14:67:AE:92:3D:10:88:8A:98:7F:8D:55:C0:5B
X509v3 extensions
subjectKeyIdentifier
  • D1:1E:8C:75:4A:99:D3:AB:8C:DF:FA:D4:B6:97:27:68:64:88:C0:37
authorityKeyIdentifier
  • keyid:9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D
authorityInfoAccess
  • OCSP - URI:http://e5.o.lencr.org
  • CA Issuers - URI:http://e5.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
  • D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
  • Timestamp : Oct 21 17:09:35.645 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:EE:58:5B:AD:8D:8C:44:CA:58:2C:40:
  • 2B:BE:D6:8F:B9:A3:3C:11:59:69:DE:50:84:F5:8F:87:
  • 64:EF:AD:C0:51:02:20:70:44:3E:69:7B:AE:FC:51:F8:
  • 9A:1F:EC:B8:C2:F6:A8:1D:84:FC:75:33:48:B4:1A:F0:
  • B7:6E:70:FF:7D:AD:A8
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
  • 87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
  • Timestamp : Oct 21 17:09:35.651 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:39:9C:04:0C:80:37:74:0D:CC:2E:A0:4E:
  • DF:95:7D:A2:FD:4E:34:C1:FD:94:6E:08:A0:4E:B0:36:
  • 37:DD:FB:BE:02:20:59:86:04:1D:48:BD:0B:93:EF:14:
  • F6:2F:B2:C0:3A:76:C5:75:B8:29:4B:0E:5B:81:A7:CC:
  • DA:12:F1:74:8E:AA