SSL-Tools

SSL check results of excommunicado.icu

NEW You can also bulk check multiple servers.

Discover if the mail servers for excommunicado.icu can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Mon, 25 May 2020 16:59:24 +0000

The mailservers of excommunicado.icu can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @excommunicado.icu addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
in1-smtp.messagingengine.com
66.111.4.72
 10
supported
*.messagingengine.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
24 s
in1-smtp.messagingengine.com
66.111.4.74
 10
supported
*.messagingengine.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
24 s
in1-smtp.messagingengine.com
66.111.4.73
 10
supported
*.messagingengine.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
24 s
in1-smtp.messagingengine.com
66.111.4.70
 10
supported
*.messagingengine.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
24 s
in1-smtp.messagingengine.com
66.111.4.71
 10
supported
*.messagingengine.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
24 s
in1-smtp.messagingengine.com
66.111.4.75
 10
supported
*.messagingengine.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
24 s
in2-smtp.messagingengine.com
64.147.123.51
 20
supported
*.messagingengine.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
26 s
in2-smtp.messagingengine.com
64.147.123.52
 20
supported
*.messagingengine.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
26 s

Outgoing Mails

We have not received any emails from a @excommunicado.icu address so far. Test mail delivery

Certificates

First seen at:

CN=*.messagingengine.com,O=FastMail Pty Ltd,L=Melbourne,ST=Victoria,C=AU

Certificate chain
Subject
Country (C)
  • AU
State (ST)
  • Victoria
Locality (L)
  • Melbourne
Organization (O)
  • FastMail Pty Ltd
Common Name (CN)
  • *.messagingengine.com
Alternative Names
  • *.messagingengine.com
  • messagingengine.com
  • mail.messagingengine.com
  • dav.messagingengine.com
  • caldav.messagingengine.com
  • carddav.messagingengine.com
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Common Name (CN)
  • DigiCert SHA2 Secure Server CA
validity period
Not valid before
2020-01-22
Not valid after
2021-02-24
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
48:50:EB:01:67:E8:22:24:1A:B1:74:F4:B5:0A:98:16:F4:06:92:97:70:76:92:AF:B0:EE:0D:4D:89:6E:4A:09
SHA1
DD:AC:83:E6:19:36:7E:9E:5F:6F:01:42:DE:CB:A6:87:2D:73:19:F2
X509v3 extensions
authorityKeyIdentifier
  • keyid:0F:80:61:1C:82:31:61:D5:2F:28:E7:8D:46:38:B4:2C:E1:C6:D9:E2
subjectKeyIdentifier
  • 89:10:FD:AE:C1:6F:89:81:FE:74:8C:EF:92:9C:53:70:7D:E4:77:D8
crlDistributionPoints
  • Full Name:
  • URI:http://crl3.digicert.com/ssca-sha2-g6.crl
  • Full Name:
  • URI:http://crl4.digicert.com/ssca-sha2-g6.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.1
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.2
authorityInfoAccess
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:B9:09:90:B4:18:58:14:87:BB:13:A2:CC:67:70:0A:
  • 3C:35:98:04:F9:1B:DF:B8:E3:77:CD:0E:C8:0D:DC:10
  • Timestamp : Jan 22 03:05:11.178 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:96:33:00:E5:15:02:04:C2:4F:D6:97:
  • 82:CE:5B:BF:0F:90:47:39:F4:D9:D3:FE:56:2A:89:69:
  • C4:D9:B1:0E:C4:02:20:56:E5:9E:56:9F:34:1B:84:C4:
  • 4F:AC:E4:FB:5A:C0:C7:EF:2A:25:FC:CF:F1:9C:FB:67:
  • 60:56:20:E9:BF:32:3E
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 44:94:65:2E:B0:EE:CE:AF:C4:40:07:D8:A8:FE:28:C0:
  • DA:E6:82:BE:D8:CB:31:B5:3F:D3:33:96:B5:B6:81:A8
  • Timestamp : Jan 22 03:05:11.085 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:C9:83:9F:91:25:D0:16:7C:E0:54:83:
  • 6B:CF:0C:11:77:D9:BE:43:1D:CA:C3:4F:70:82:62:31:
  • 55:4F:83:0F:27:02:21:00:C8:01:83:3B:34:A5:F2:84:
  • 2C:13:B8:66:B7:08:F4:CF:F7:4E:26:CC:4E:BD:F1:AE:
  • 94:59:53:EB:A8:61:79:9C