SSL-Tools

SSL check results of gyrosexpress.nl

NEW You can also bulk check multiple servers.

Discover if the mail servers for gyrosexpress.nl can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 09 Oct 2024 00:30:33 +0000

The mailservers of gyrosexpress.nl can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @gyrosexpress.nl addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
s1.foodnu.nl
2a01:7c8:aac2:3bc::1
 10
supported
s1.foodnu.nl
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
s1.foodnu.nl
37.97.198.184
 10
supported
s1.foodnu.nl
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
relay.transip.nl
2a01:7c8:7c8::12
Results incomplete
20
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
relay.transip.nl
2a01:7c8:7c8::29
Results incomplete
20
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
relay.transip.nl
149.210.149.12
Results incomplete
20
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
relay.transip.nl
149.210.149.29
Results incomplete
20
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @gyrosexpress.nl address so far. Test mail delivery

Certificates

First seen at:

CN=s1.foodnu.nl

Certificate chain
  • s1.foodnu.nl
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R11
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • s1.foodnu.nl
Alternative Names
  • s1.foodnu.nl
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R11
validity period
Not valid before
2024-10-04
Not valid after
2025-01-02
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
19:ED:3C:EE:7A:7D:47:F3:C8:0D:B8:9D:EC:80:1F:C1:37:E2:3F:97:84:67:F5:A9:90:7E:EF:E8:31:E2:A4:93
SHA1
E7:8D:63:A0:52:1C:36:58:49:8C:A3:35:0E:F6:1B:AE:56:C4:FD:41
X509v3 extensions
subjectKeyIdentifier
  • F5:56:E7:05:2C:0E:6F:1D:EF:6A:3E:00:C7:2F:57:DA:52:CD:42:4D
authorityKeyIdentifier
  • keyid:C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
authorityInfoAccess
  • OCSP - URI:http://r11.o.lencr.org
  • CA Issuers - URI:http://r11.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
  • D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
  • Timestamp : Oct 4 07:40:16.851 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:1A:2C:90:FA:86:7A:BF:1C:48:CB:2A:1D:
  • E3:2B:95:C3:CF:9B:DE:6D:A0:CD:BC:39:84:75:26:FE:
  • 6B:0F:FC:FD:02:20:2A:E2:98:F7:C9:2D:4B:F0:AD:AB:
  • 27:D4:4A:9B:52:5C:9C:45:67:3E:E6:4F:BE:62:8D:CF:
  • 6F:B0:D9:D8:BA:98
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
  • 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
  • Timestamp : Oct 4 07:40:16.942 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:44:E4:47:90:B8:34:B5:AB:32:79:29:D0:
  • C6:F0:90:FE:1E:42:03:5E:CF:68:10:E9:C5:1E:50:16:
  • 8C:69:45:A1:02:21:00:9C:7E:6F:EE:01:59:E1:C8:1A:
  • 17:68:F1:24:AB:E5:15:F8:8F:CB:25:2F:D6:49:6E:98:
  • 46:C6:48:81:ED:3F:1B

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.relay.transip.nl
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid