SSL-Tools

SSL check results of mail.sphenic.ch

NEW You can also bulk check multiple servers.

Discover if the mail servers for mail.sphenic.ch can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 05 Sep 2024 08:51:06 +0000

The mailservers of mail.sphenic.ch can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @mail.sphenic.ch addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.sphenic.ch
94.130.161.161
 -
supported
mail.sphenic.ch
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @mail.sphenic.ch address so far. Test mail delivery

Certificates

First seen at:

CN=mail.sphenic.ch

Certificate chain
  • mail.sphenic.ch
    • remaining
    • 256 bit
    • ecdsa-with-SHA384
      • E5
        • remaining
        • 384 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mail.sphenic.ch
Alternative Names
  • mail.sphenic.ch
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • E5
validity period
Not valid before
2024-09-04
Not valid after
2024-12-03
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
44:9C:43:5F:93:62:B2:2B:AB:21:E4:58:F9:4E:0D:CD:61:DB:52:35:BB:7B:C4:CF:C2:1A:28:87:12:4F:E8:A2
SHA1
8E:22:99:85:74:FC:39:30:0A:F3:00:90:D2:39:55:CC:A0:45:15:48
X509v3 extensions
subjectKeyIdentifier
  • 1E:56:54:7E:65:2B:AA:9F:9B:84:93:C9:ED:26:DB:17:65:5B:A2:C4
authorityKeyIdentifier
  • keyid:9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D
authorityInfoAccess
  • OCSP - URI:http://e5.o.lencr.org
  • CA Issuers - URI:http://e5.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
  • B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
  • Timestamp : Sep 4 16:14:13.585 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:99:03:E7:F8:CC:80:1D:82:85:2A:F3:
  • F0:16:38:D9:8C:B6:37:EC:5D:41:AE:A7:50:BC:E9:74:
  • D6:02:13:50:0D:02:20:27:39:26:F4:3C:F9:C6:93:C7:
  • 60:BA:94:EE:5C:65:DB:70:D3:93:58:EC:77:7E:6A:07:
  • 7E:42:B4:B1:DF:59:D1
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
  • 4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
  • Timestamp : Sep 4 16:14:13.770 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:BE:33:20:C7:DC:AF:9B:2F:3C:9A:77:
  • 8F:5E:79:A5:9C:60:12:56:60:41:A8:41:B5:56:46:EA:
  • 32:16:23:9D:C3:02:20:59:BF:69:77:47:E6:60:18:3A:
  • 4F:B7:C0:00:0F:FA:63:E2:13:0F:BF:09:FF:C6:BF:E9:
  • F4:12:64:29:C3:37:87