SSL-Tools

SSL check results of mhlw.go.jp

NEW You can also bulk check multiple servers.

Discover if the mail servers for mhlw.go.jp can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 23 Mar 2024 07:59:53 +0000

The mailservers of mhlw.go.jp can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @mhlw.go.jp addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx1.tgnw.mhlw.go.jp
2400:4040:7e:533::2
 10
supported
mx1.tgnw.mhlw.go.jp
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
21 s
mx1.tgnw.mhlw.go.jp
114.179.187.225
 10
supported
mx1.tgnw.mhlw.go.jp
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
21 s
mx2.tgnw.mhlw.go.jp
2400:4040:7f:533::2
Results incomplete
30 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
mx2.tgnw.mhlw.go.jp
125.206.98.161
Results incomplete
30 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s

Outgoing Mails

We have not received any emails from a @mhlw.go.jp address so far. Test mail delivery

Certificates

First seen at:

CN=mx1.tgnw.mhlw.go.jp,O=Ministry of Health\, Labour and Welfare,L=Chiyoda-ku,ST=Tokyo,C=JP

Certificate chain
Subject
Country (C)
  • JP
State (ST)
  • Tokyo
Locality (L)
  • Chiyoda-ku
Organization (O)
  • Ministry of Health, Labour and Welfare
Common Name (CN)
  • mx1.tgnw.mhlw.go.jp
Alternative Names
  • mx1.tgnw.mhlw.go.jp
Issuer
Country (C)
  • JP
Organization (O)
  • SECOM Trust Systems CO.,LTD.
Common Name (CN)
  • SECOM Passport for Web SR 3.0 CA
validity period
Not valid before
2023-09-14
Not valid after
2024-10-13
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
Fingerprints
SHA256
3F:C5:D4:0B:AF:8F:0F:75:CE:DB:1D:AA:F1:B2:8E:90:60:34:A0:17:7F:7F:81:6E:AD:88:F2:9C:75:86:7F:D2
SHA1
51:73:61:AE:95:29:C2:15:71:ED:64:F9:37:F4:CE:D0:65:5F:31:C5
X509v3 extensions
authorityKeyIdentifier
  • keyid:CB:EF:3D:EF:83:74:A1:A8:42:F0:3B:40:36:FA:6D:82:94:A9:27:36
authorityInfoAccess
  • CA Issuers - URI:http://repo1.secomtrust.net/spcpp/pfw/pfwsr3ca/ca2-der.cer
  • OCSP - URI:http://sr30.ocsp.secomtrust.net
certificatePolicies
  • Policy: 1.2.392.200091.100.751.1
  • CPS: https://repo1.secomtrust.net/spcpp/pfw/pfwsr3ca/
  • Policy: 2.23.140.1.2.2
crlDistributionPoints
  • Full Name:
  • URI:http://repo1.secomtrust.net/spcpp/pfw/pfwsr3ca/fullcrl2.crl
subjectKeyIdentifier
  • 5D:58:69:38:A9:34:EB:BF:ED:3B:AD:B9:F2:D0:5E:45:99:B4:C7:86
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
  • 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
  • Timestamp : Sep 14 04:58:45.516 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:66:AD:D3:2D:36:70:80:E8:A5:DB:58:AC:
  • ED:82:8C:F3:15:1F:D5:2B:D7:BB:66:85:F5:02:CD:80:
  • 0F:26:80:CF:02:21:00:CC:FD:A4:F7:C6:D0:F2:FE:70:
  • 5E:E9:1C:81:86:6E:E5:4F:E9:7F:FE:07:E9:E8:F4:E4:
  • F7:63:78:0B:61:EF:90
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
  • B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
  • Timestamp : Sep 14 04:58:46.930 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:2A:28:98:B3:4F:5C:C6:6C:FF:FC:B6:9D:
  • 11:01:9D:4B:D5:78:F1:7B:E0:51:62:E3:72:8C:41:7D:
  • 4B:81:A1:C8:02:21:00:BE:ED:42:EA:E5:93:1B:16:3C:
  • EF:F5:3E:3F:58:D6:B5:7B:EC:04:60:12:F8:5A:B8:5C:
  • 0C:D0:DF:7B:AE:B0:E1
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Sep 14 04:58:47.659 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:E4:FE:7C:06:44:7D:2E:EF:E6:2B:A9:
  • 0E:9F:9C:0D:AD:6E:F4:70:D5:B2:4B:DF:DF:95:73:41:
  • E9:AE:27:FB:BF:02:20:37:09:54:0B:61:38:52:0C:13:
  • DA:40:98:C3:B7:D6:F4:53:41:0A:B4:6C:8F:20:36:7C:
  • F7:59:03:C9:5D:BE:DA
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
  • 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
  • Timestamp : Sep 14 04:58:48.127 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:52:38:44:81:36:7E:4D:72:BF:33:F1:39:
  • D0:5D:33:78:40:BF:5F:8D:4D:DD:4D:0E:C6:BA:CB:C1:
  • FA:CC:4A:34:02:21:00:AA:88:E3:01:C5:04:53:89:E0:
  • C0:6E:5D:3E:F5:C3:C0:72:83:A9:25:B9:27:F1:F4:CE:
  • D8:03:76:F9:30:17:03