SSL-Tools

SSL check results of daophi.com

NEW You can also bulk check multiple servers.

Discover if the mail servers for daophi.com can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 03 Jun 2023 04:02:52 +0000

The mailservers of daophi.com can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @daophi.com addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.daophi.com
89.58.28.79
 10
supported
mail.daophi.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @daophi.com address so far. Test mail delivery

Certificates

First seen at:

CN=mail.daophi.com

Certificate chain
Subject
Common Name (CN)
  • mail.daophi.com
Alternative Names
  • mail.daophi.com
  • mta-sts.daophi.com
Issuer
Country (C)
  • AT
Organization (O)
  • ZeroSSL
Common Name (CN)
  • ZeroSSL ECC Domain Secure Site CA
validity period
Not valid before
2023-06-02
Not valid after
2023-08-31
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
73:0C:94:27:02:09:14:16:5C:BF:76:81:45:0A:15:17:7F:87:55:E7:1D:D0:F6:CA:66:16:55:40:0B:D1:CC:E4
SHA1
1E:0A:9D:5F:0E:A4:5E:E6:4D:23:BE:5A:6B:7F:BC:BF:C8:E3:9D:C0
X509v3 extensions
authorityKeyIdentifier
  • keyid:0F:6B:E6:4B:CE:39:47:AE:F6:7E:90:1E:79:F0:30:91:92:C8:5F:A3
subjectKeyIdentifier
  • 42:5C:9D:1D:61:94:99:A6:06:41:14:B3:BE:2E:DC:F5:6C:15:CF:E7
certificatePolicies
  • Policy: 1.3.6.1.4.1.6449.1.2.2.78
  • CPS: https://sectigo.com/CPS
  • Policy: 2.23.140.1.2.1
authorityInfoAccess
  • CA Issuers - URI:http://zerossl.crt.sectigo.com/ZeroSSLECCDomainSecureSiteCA.crt
  • OCSP - URI:http://zerossl.ocsp.sectigo.com
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : AD:F7:BE:FA:7C:FF:10:C8:8B:9D:3D:9C:1E:3E:18:6A:
  • B4:67:29:5D:CF:B1:0C:24:CA:85:86:34:EB:DC:82:8A
  • Timestamp : Jun 2 10:40:20.478 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:F8:12:8B:A6:4C:FB:3A:A4:77:57:49:
  • 5C:45:96:5B:D5:74:C8:27:50:AF:3F:07:2D:89:EA:CF:
  • 15:F0:FE:4C:25:02:21:00:95:3B:5D:49:E3:AF:15:6B:
  • 97:D2:15:11:D5:6A:15:A7:E7:E3:E3:34:8D:10:3A:EC:
  • 3D:9C:D2:2C:B6:BF:43:2B
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7A:32:8C:54:D8:B7:2D:B6:20:EA:38:E0:52:1E:E9:84:
  • 16:70:32:13:85:4D:3B:D2:2B:C1:3A:57:A3:52:EB:52
  • Timestamp : Jun 2 10:40:20.583 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:5F:DF:BD:84:5D:87:92:1E:7E:77:24:39:
  • B0:BA:41:17:EF:A9:17:D8:4D:CE:9E:63:0F:44:4D:1C:
  • CF:25:CA:DE:02:20:1A:9A:DB:C5:12:87:A9:96:4B:6D:
  • F4:9B:80:57:D9:88:97:8A:05:AA:43:15:C7:49:72:6B:
  • AF:B7:9F:8D:9E:8B

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mail.daophi.com
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid