SSL-Tools

SSL check results of duff.afaik.org

NEW You can also bulk check multiple servers.

Discover if the mail servers for duff.afaik.org can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Mon, 08 Jun 2020 00:31:55 +0000

The mailservers of duff.afaik.org can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @duff.afaik.org addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
smtp.afaik.org
2a01:4f8:161:44eb:ee04::25
 10
supported
smtp.afaik.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
9 s
smtp.afaik.org
5.9.52.249
 10
supported
smtp.afaik.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
9 s

Outgoing Mails

We have not received any emails from a @duff.afaik.org address so far. Test mail delivery

Certificates

First seen at:

CN=smtp.afaik.org

Certificate chain
Subject
Common Name (CN)
  • smtp.afaik.org
Alternative Names
  • smtp.afaik.org
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • Let's Encrypt Authority X3
validity period
Not valid before
2020-06-06
Not valid after
2020-09-04
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
BA:32:F8:F1:96:5F:2F:81:7A:F9:79:F7:C8:C3:70:A4:48:6D:F6:2E:C8:4F:1E:38:E7:8A:7E:AC:B8:8A:D9:12
SHA1
6E:78:B5:6C:0B:4A:55:17:75:00:68:45:17:6D:52:02:05:E9:71:9F
X509v3 extensions
subjectKeyIdentifier
  • 39:80:D0:6D:AE:75:E3:E5:1A:B9:70:AC:8F:B8:CB:41:4E:9A:FC:23
authorityKeyIdentifier
  • keyid:A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1
authorityInfoAccess
  • OCSP - URI:http://ocsp.int-x3.letsencrypt.org
  • CA Issuers - URI:http://cert.int-x3.letsencrypt.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : F0:95:A4:59:F2:00:D1:82:40:10:2D:2F:93:88:8E:AD:
  • 4B:FE:1D:47:E3:99:E1:D0:34:A6:B0:A8:AA:8E:B2:73
  • Timestamp : Jun 6 20:38:09.508 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:22:E9:50:28:70:1B:99:3B:03:1F:24:4E:
  • E9:BC:F2:BC:AC:54:CC:66:6D:5D:6B:C3:03:F8:E5:F3:
  • 00:0A:3B:D1:02:20:58:2C:8B:66:EB:CB:ED:80:8C:04:
  • 3D:98:8A:7E:68:0A:D5:81:F6:98:87:C0:15:44:FC:6D:
  • F7:04:BA:52:4D:86
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : B2:1E:05:CC:8B:A2:CD:8A:20:4E:87:66:F9:2B:B9:8A:
  • 25:20:67:6B:DA:FA:70:E7:B2:49:53:2D:EF:8B:90:5E
  • Timestamp : Jun 6 20:38:09.906 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:98:6D:DA:67:FA:09:C2:17:D4:A5:F4:
  • ED:30:02:B6:95:DB:E3:F0:70:6F:45:DA:02:24:21:67:
  • 24:A0:E5:9E:34:02:20:35:9A:A0:DF:92:E0:45:91:C0:
  • 0C:11:9C:32:AA:CF:D1:F6:0A:C4:44:EA:66:A2:7B:5E:
  • B3:1D:0D:6C:2B:67:77