dein-ip-check.de - TLS / STARTTLS Test

Discover if the mail servers for dein-ip-check.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 21 May 2022 20:13:10 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of dein-ip-check.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @dein-ip-check.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mx3.tf-network.de 2001:4ba0:ffa0:1b::221	10	supported	*.tf-network.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2022-05-21 17 s
mx3.tf-network.de 93.186.202.221	10	supported	*.tf-network.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2022-05-21 16 s

Outgoing Mails

We have not received any emails from a @dein-ip-check.de address so far. Test mail delivery

Certificates

First seen at: 2022-05-21

CN=*.tf-network.de

Certificate chain

*.tf-network.de
- 2023-05-02 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

*.tf-network.de

Alternative Names

*.tf-network.de
tf-network.de

Issuer

Country (C)

Organization (O)

GlobalSign nv-sa

Common Name (CN)

AlphaSSL CA - SHA256 - G2

validity period

Not valid before: 2022-03-31
Not valid after: 2023-05-02

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 0D:7D:20:DD:65:C0:75:46:5D:D9:48:A6:90:1C:90:7A:6E:B8:7E:CE:67:83:F0:54:DA:3A:12:FD:7B:55:75:C1
SHA1: 83:5C:50:58:E0:EA:16:04:08:7B:53:5A:9D:CD:BA:85:B8:38:58:15

X509v3 extensions

authorityInfoAccess

CA Issuers - URI:http://secure.globalsign.com/cacert/gsalphasha2g2r1.crt
OCSP - URI:http://ocsp2.globalsign.com/gsalphasha2g2

certificatePolicies

Policy: 1.3.6.1.4.1.4146.1.10.10
CPS: https://www.globalsign.com/repository/
Policy: 2.23.140.1.2.1

crlDistributionPoints

Full Name:
URI:http://crl.globalsign.com/gs/gsalphasha2g2.crl

authorityKeyIdentifier

keyid:F5:CD:D5:3C:08:50:F9:6A:4F:3A:B7:97:DA:56:83:E6:69:D2:68:F7

subjectKeyIdentifier

87:1B:DC:47:25:6F:A4:1D:73:C3:0F:F4:C4:4C:03:C5:55:1B:B3:AE

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : E8:3E:D0:DA:3E:F5:06:35:32:E7:57:28:BC:89:6B:C9:
03:D3:CB:D1:11:6B:EC:EB:69:E1:77:7D:6D:06:BD:6E
Timestamp : Mar 31 14:11:44.916 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:00:F7:9B:57:BB:D0:26:37:B3:BD:7E:E0:
36:39:9A:D9:D5:79:19:25:03:D1:B2:B4:74:E6:2F:47:
71:64:72:98:02:20:05:97:D1:31:A3:01:F3:AA:AC:68:
18:91:DC:08:97:2D:36:9A:7E:94:46:5A:AA:BF:68:44:
B5:EB:87:D1:F1:DD
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 6F:53:76:AC:31:F0:31:19:D8:99:00:A4:51:15:FF:77:
15:1C:11:D9:02:C1:00:29:06:8D:B2:08:9A:37:D9:13
Timestamp : Mar 31 14:11:44.914 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:A9:3F:8C:57:0D:FF:4F:3B:B8:61:F4:
EC:0C:E0:9D:7F:36:4E:98:40:3A:F8:2F:41:E0:1E:D1:
44:C6:44:1E:56:02:21:00:A3:34:F5:03:88:5B:20:35:
DB:6E:52:22:82:FD:75:35:8B:C0:67:C2:E6:38:B6:3F:
08:47:B9:7A:0B:3C:EE:6E
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 55:81:D4:C2:16:90:36:01:4A:EA:0B:9B:57:3C:53:F0:
C0:E4:38:78:70:25:08:17:2F:A3:AA:1D:07:13:D3:0C
Timestamp : Mar 31 14:11:44.949 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:70:8A:10:E1:86:68:07:77:F7:F0:0F:40:
DD:72:04:30:E9:44:B0:07:37:41:75:08:2F:04:16:1D:
CD:AF:04:4B:02:20:23:08:AA:C1:E3:42:3F:88:00:2B:
B0:3C:9D:6E:EA:6A:4E:26:94:55:82:8B:0F:2D:BC:7E:
21:79:B3:0D:CD:D3

SSL check results of dein-ip-check.de