SSL check results of mail.digitalkr.am

NEW You can also bulk check multiple servers.

Discover if the mail servers for mail.digitalkr.am can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Sat, 19 Sep 2020 00:44:20 +0000

No connection to the mailservers of mail.digitalkr.am could be established.

Servers

Incoming Mails

These servers are responsible for incoming mails to @mail.digitalkr.am addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.digitalkr.am
116.203.5.83
Results incomplete
-
supported
mail.digitalkr.am
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
4 s
mail.digitalkr.am
2a01:4f8:1c0c:81c6::1
Results incomplete
-
supported
mail.digitalkr.am
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
4 s

Outgoing Mails

We have not received any emails from a @mail.digitalkr.am address so far. Test mail delivery

Certificates

First seen at:

CN=mail.digitalkr.am

Certificate chain
Subject
Common Name (CN)
  • mail.digitalkr.am
Alternative Names
  • autoconfig.anikamaier.de
  • autoconfig.derjugendgottesdienst.de
  • autoconfig.digitalkr.am
  • autoconfig.flohs-welt.de
  • autoconfig.holzart-schmid.de
  • autoconfig.schulz.ke
  • autoconfig.schulzke.eu
  • autodiscover.anikamaier.de
  • autodiscover.derjugendgottesdienst.de
  • autodiscover.digitalkr.am
  • autodiscover.flohs-welt.de
  • autodiscover.holzart-schmid.de
  • autodiscover.schulz.ke
  • autodiscover.schulzke.eu
  • mail.digitalkr.am
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • Let's Encrypt Authority X3
validity period
Not valid before
2020-09-17
Not valid after
2020-12-16
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
6E:2D:4F:9F:BF:60:E6:3E:0A:12:9A:D2:A6:CE:F1:12:86:1F:60:D8:7A:7C:81:54:D9:94:E1:98:6A:A5:2A:E3
SHA1
B2:C1:81:C9:9E:63:24:B1:33:38:01:E3:6C:AB:EA:10:9B:29:BC:02
X509v3 extensions
subjectKeyIdentifier
  • 63:29:F1:47:93:5A:C1:67:3D:EE:D7:4D:5F:3A:C0:C3:4D:5D:8F:4C
authorityKeyIdentifier
  • keyid:A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1
authorityInfoAccess
  • OCSP - URI:http://ocsp.int-x3.letsencrypt.org
  • CA Issuers - URI:http://cert.int-x3.letsencrypt.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5E:A7:73:F9:DF:56:C0:E7:B5:36:48:7D:D0:49:E0:32:
  • 7A:91:9A:0C:84:A1:12:12:84:18:75:96:81:71:45:58
  • Timestamp : Sep 17 19:57:10.581 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:BC:92:69:3D:30:B3:02:CD:80:72:3F:
  • B7:D1:56:5D:0C:5B:FF:70:85:F2:BD:C3:AA:D4:07:94:
  • 5F:B0:60:51:61:02:21:00:B5:2D:45:6E:B6:68:B7:0D:
  • 42:3B:14:8F:C2:BB:8A:21:DB:08:4D:A6:3E:B9:F3:07:
  • 79:25:43:5E:48:A3:A0:C4
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 07:B7:5C:1B:E5:7D:68:FF:F1:B0:C6:1D:23:15:C7:BA:
  • E6:57:7C:57:94:B7:6A:EE:BC:61:3A:1A:69:D3:A2:1C
  • Timestamp : Sep 17 19:57:10.638 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:13:87:A1:33:AB:85:CB:63:98:FD:62:3A:
  • 25:2A:2A:65:92:60:C8:E4:54:5B:35:A0:21:6D:58:5E:
  • 07:F8:52:6D:02:21:00:F0:EC:8A:B5:ED:D2:DA:46:A2:
  • ED:DD:AE:7D:3E:BF:FD:B7:BC:35:6C:91:E7:01:D9:A1:
  • 0B:26:B5:8C:BC:8D:FA

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mail.digitalkr.am
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
error
Debug
valid