SSL-Tools

SSL check results of fambi.at

NEW You can also bulk check multiple servers.

Discover if the mail servers for fambi.at can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sun, 04 May 2025 21:30:12 +0000

The mailservers of fambi.at can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @fambi.at addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.fambi.at
193.238.237.159
 10
supported
mail.fambi.at
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @fambi.at address so far. Test mail delivery

Certificates

First seen at:

CN=mail.fambi.at

Certificate chain
  • mail.fambi.at
    • remaining
    • 384 bit
    • ecdsa-with-SHA384
      • E5
        • remaining
        • 384 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mail.fambi.at
Alternative Names
  • fambi.at
  • mail.fambi.at
  • mta-sts.fambi.at
  • webmail.fambi.at
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • E5
validity period
Not valid before
2025-04-27
Not valid after
2025-07-26
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
84:34:E1:A6:F3:BF:A5:E0:11:EE:BB:79:48:FB:F2:2C:8E:0E:61:89:27:D6:A3:C6:91:49:FB:C7:30:E6:35:3A
SHA1
5C:8A:1A:9F:60:B6:0D:84:6D:56:6D:AE:5C:B1:90:08:5D:81:BC:0B
X509v3 extensions
subjectKeyIdentifier
  • 26:29:3B:0E:2E:C1:F3:62:51:30:DE:A3:D8:9F:5D:98:AB:9E:0A:EF
authorityKeyIdentifier
  • keyid:9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D
authorityInfoAccess
  • OCSP - URI:http://e5.o.lencr.org
  • CA Issuers - URI:http://e5.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://e5.c.lencr.org/68.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 0D:E1:F2:30:2B:D3:0D:C1:40:62:12:09:EA:55:2E:FC:
  • 47:74:7C:B1:D7:E9:30:EF:0E:42:1E:B4:7E:4E:AA:34
  • Timestamp : Apr 27 02:46:38.407 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:8F:54:95:F4:75:DE:8E:59:80:99:D6:
  • DD:29:D7:72:76:86:57:44:7A:DB:F6:39:36:4C:BB:56:
  • 48:42:78:52:4E:02:21:00:FE:98:E5:AE:A9:E3:B2:99:
  • A5:6A:8D:71:BE:59:5D:C5:22:EF:9C:EB:5A:0A:1E:C1:
  • F4:EC:40:DC:A5:A5:D0:D9
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DD:DC:CA:34:95:D7:E1:16:05:E7:95:32:FA:C7:9F:F8:
  • 3D:1C:50:DF:DB:00:3A:14:12:76:0A:2C:AC:BB:C8:2A
  • Timestamp : Apr 27 02:46:38.467 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:CC:CE:29:1C:DE:5C:BA:1F:50:E0:38:
  • 0B:A5:41:96:A5:D1:92:B5:D3:FB:76:CF:65:5F:79:D4:
  • C3:61:2D:D0:CC:02:21:00:A1:05:06:57:73:62:64:A4:
  • D6:46:99:7B:8C:BF:6D:55:32:DC:59:67:F1:7E:26:EA:
  • CD:F4:E4:C9:CD:2B:46:7A
tlsfeature
  • status_request

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mail.fambi.at
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mail.fambi.at
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid