SSL-Tools

SSL check results of fst-usmba.ac.ma

NEW You can also bulk check multiple servers.

Discover if the mail servers for fst-usmba.ac.ma can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Mon, 21 Oct 2024 00:30:56 +0000

We can not guarantee a secure connection to the mailservers of fst-usmba.ac.ma!

Please contact the operator of fst-usmba.ac.ma and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/fst-usmba.ac.ma

Servers

Incoming Mails

These servers are responsible for incoming mails to @fst-usmba.ac.ma addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
fst-usmba.ac.ma
37.187.159.67
 1
supported
ns330799.ip-37-187-159.eu
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12 s
mail.fstfesusmba.fst-usmba.ac.ma
41.77.119.93
Results incomplete
1
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s

Outgoing Mails

We have not received any emails from a @fst-usmba.ac.ma address so far. Test mail delivery

Certificates

First seen at:

CN=ns330799.ip-37-187-159.eu

Certificate chain
  • ns330799.ip-37-187-159.eu
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
    • Hostname Mismatch
      • R11
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • ns330799.ip-37-187-159.eu
Alternative Names
  • ns330799.ip-37-187-159.eu
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R11
validity period
Not valid before
2024-10-10
Not valid after
2025-01-08
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
55:EA:C6:64:8D:E2:E8:21:08:13:12:31:8C:5D:11:BF:09:55:FB:C7:69:A8:C7:F6:C9:B5:97:02:A5:48:35:6D
SHA1
56:6A:35:21:53:44:23:9F:1B:4B:9A:FB:AF:AC:58:76:12:7D:2E:08
X509v3 extensions
subjectKeyIdentifier
  • 99:DD:0D:B5:28:6F:65:85:6F:AA:80:FE:2A:55:89:56:6F:55:FF:B7
authorityKeyIdentifier
  • keyid:C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
authorityInfoAccess
  • OCSP - URI:http://r11.o.lencr.org
  • CA Issuers - URI:http://r11.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
  • 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
  • Timestamp : Oct 10 10:21:17.686 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:73:16:B5:EF:DB:10:14:B4:7F:D8:70:5B:
  • B3:50:23:8E:69:33:85:4A:E1:1C:B7:F9:70:F9:9E:CC:
  • 04:C0:D0:47:02:21:00:F1:BE:CB:94:4F:C1:42:76:2C:
  • F8:5A:85:9B:6C:1D:53:D9:13:EC:26:F1:A2:D8:72:3A:
  • 95:D4:74:23:CF:A5:84
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
  • 0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
  • Timestamp : Oct 10 10:21:17.592 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:A6:9E:3A:B5:40:1E:32:5A:54:A3:1C:
  • 50:07:B5:9B:CA:16:97:BB:C8:30:F0:37:4D:D0:71:35:
  • 3A:AB:FA:34:80:02:20:57:21:B9:65:5E:66:CC:EA:98:
  • 34:8F:AA:4D:2E:AD:3C:A7:93:0F:CB:CD:C7:9A:3B:C7:
  • 91:C5:A3:91:87:38:F8