SSL-Tools

SSL check results of kyzr.cz

NEW You can also bulk check multiple servers.

Discover if the mail servers for kyzr.cz can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 08 Apr 2021 08:56:51 +0000

The mailservers of kyzr.cz can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @kyzr.cz addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx.zoho.eu
185.20.209.166
 10
supported
*.zoho.eu
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
mx2.zoho.eu
185.20.209.166
 20
supported
*.zoho.eu
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @kyzr.cz address so far. Test mail delivery

Certificates

First seen at:

CN=*.zoho.eu

Certificate chain
Subject
Common Name (CN)
  • *.zoho.eu
Alternative Names
  • *.zoho.eu
  • zoho.eu
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • Thawte TLS RSA CA G1
validity period
Not valid before
2021-03-09
Not valid after
2022-03-09
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
BB:35:49:49:07:82:E1:80:28:77:51:92:5B:58:B0:AC:B2:46:12:F9:36:D7:B6:B4:12:14:F9:7A:C1:84:F7:56
SHA1
85:B5:EC:2C:BD:7A:16:84:FA:DF:C9:6F:1C:87:57:E6:B1:02:E2:D3
X509v3 extensions
authorityKeyIdentifier
  • keyid:A5:8C:FE:32:CC:EB:0F:2C:D4:19:C6:08:B8:00:24:88:5D:C3:C5:B7
subjectKeyIdentifier
  • 86:0C:CF:47:43:F4:83:E0:B7:F7:3E:72:EE:5D:67:67:55:21:E0:E3
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.thawte.com/ThawteTLSRSACAG1.crl
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • CPS: http://www.digicert.com/CPS
authorityInfoAccess
  • OCSP - URI:http://status.thawte.com
  • CA Issuers - URI:http://cacerts.thawte.com/ThawteTLSRSACAG1.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 29:79:BE:F0:9E:39:39:21:F0:56:73:9F:63:A5:77:E5:
  • BE:57:7D:9C:60:0A:F8:F9:4D:5D:26:5C:25:5D:C7:84
  • Timestamp : Mar 9 19:22:18.321 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:D0:92:DD:BE:4D:09:44:C5:8D:68:7E:
  • BC:6E:A5:4C:3B:26:D5:13:2F:F6:9B:40:DB:47:B4:04:
  • 05:EA:0E:85:15:02:21:00:C4:E4:CC:50:86:14:6D:25:
  • EA:75:66:13:BD:3F:9B:6E:3C:2C:16:39:2A:B4:33:C0:
  • CE:A4:FE:7E:D5:1F:FE:A5
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 22:45:45:07:59:55:24:56:96:3F:A1:2F:F1:F7:6D:86:
  • E0:23:26:63:AD:C0:4B:7F:5D:C6:83:5C:6E:E2:0F:02
  • Timestamp : Mar 9 19:22:18.405 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:C1:D7:42:E0:20:EC:A5:11:5A:82:A2:
  • 70:D1:30:37:C5:06:CB:69:0A:E6:B1:63:4B:06:70:93:
  • 44:10:7E:CD:DE:02:21:00:CF:D8:06:53:13:39:F0:13:
  • B5:8A:E7:BB:61:BF:97:1A:E8:33:2D:86:24:6E:A5:89:
  • 59:C7:CC:01:C2:79:7B:19