SSL-Tools

SSL check results of mendtobeer.nl

NEW You can also bulk check multiple servers.

Discover if the mail servers for mendtobeer.nl can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Tue, 16 Sep 2025 15:40:39 +0000

The mailservers of mendtobeer.nl can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @mendtobeer.nl addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.rrapati.nl
86.84.150.21
 10
supported
mail.rrapati.nl
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
6 s

Outgoing Mails

We have not received any emails from a @mendtobeer.nl address so far. Test mail delivery

Certificates

First seen at:

CN=mail.rrapati.nl

Certificate chain
  • mail.rrapati.nl
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R13
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mail.rrapati.nl
Alternative Names
  • mail.rrapati.nl
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R13
validity period
Not valid before
2025-09-14
Not valid after
2025-12-13
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
34:FF:C5:06:27:8E:C5:4E:6B:30:EC:D3:10:3C:89:C9:A9:F0:F5:00:75:33:22:79:52:A9:13:82:20:58:F2:79
SHA1
77:08:C4:F5:2D:E3:4A:B9:9A:E8:32:43:A4:0E:0A:38:26:EB:24:C3
X509v3 extensions
subjectKeyIdentifier
  • 49:E0:EC:E8:D8:9B:E0:6E:CF:D6:5D:FC:E5:41:B7:5E:DA:F3:24:08
authorityKeyIdentifier
  • keyid:E7:AB:9F:0F:2C:33:A0:53:D3:5E:4F:78:C8:B2:84:0E:3B:D6:92:33
authorityInfoAccess
  • CA Issuers - URI:http://r13.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r13.c.lencr.org/55.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 0D:E1:F2:30:2B:D3:0D:C1:40:62:12:09:EA:55:2E:FC:
  • 47:74:7C:B1:D7:E9:30:EF:0E:42:1E:B4:7E:4E:AA:34
  • Timestamp : Sep 14 09:09:48.954 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:88:70:C2:FF:00:4B:ED:9F:B9:F8:AF:
  • C9:9D:34:55:EA:7F:0D:FB:DC:B9:16:6D:EC:79:88:EF:
  • 64:0F:D2:91:6B:02:20:76:4D:E9:EB:26:F5:8B:B7:67:
  • D4:A1:BB:F5:1A:24:68:CC:F4:3D:23:63:30:DC:E7:5D:
  • 4C:39:27:01:63:8A:C1
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:42:C5:06:49:60:61:54:8F:0F:D4:EA:9C:FB:7A:2D:
  • 26:45:4D:87:A9:7F:2F:DF:45:59:F6:27:4F:3A:84:54
  • Timestamp : Sep 14 09:09:48.954 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:E8:B9:8E:23:23:AF:52:0A:4C:0F:7A:
  • 9E:20:CC:1D:A8:8B:30:B8:95:C0:D7:20:3A:B3:32:E7:
  • 1C:6E:F8:1E:AC:02:20:56:99:1B:7D:E4:17:76:B5:FA:
  • 07:82:39:26:56:AD:FD:81:A3:B9:C7:87:0B:D3:02:0B:
  • 42:71:E1:9E:56:5C:E1

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mail.rrapati.nl
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid