SSL-Tools

SSL check results of nelitz.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for nelitz.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 04 Jun 2020 00:30:37 +0000

The mailservers of nelitz.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @nelitz.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx03.secure-mailgate.com
46.243.88.174
 10
supported
*.secure-mailgate.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12 s
mx03.secure-mailgate.com
46.243.88.176
 10
supported
*.secure-mailgate.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12 s
mx04.secure-mailgate.com
46.243.88.175
 10
supported
*.secure-mailgate.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12 s
mx04.secure-mailgate.com
46.243.88.177
 10
supported
*.secure-mailgate.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12 s

Outgoing Mails

We have not received any emails from a @nelitz.de address so far. Test mail delivery

Certificates

First seen at:

CN=*.secure-mailgate.com,OU=Domain Control Validated

Certificate chain
Subject
Organizational Unit (OU)
  • Domain Control Validated
Common Name (CN)
  • *.secure-mailgate.com
Alternative Names
  • *.secure-mailgate.com
  • secure-mailgate.com
Issuer
Country (C)
  • BE
Organization (O)
  • GlobalSign nv-sa
Common Name (CN)
  • AlphaSSL CA - SHA256 - G2
validity period
Not valid before
2017-12-12
Not valid after
2020-12-12
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
49:8D:A3:BB:5B:03:31:14:87:75:0F:5A:D7:80:14:EB:ED:8E:04:61:BA:25:D7:4C:4B:C7:6E:C7:C2:85:72:3A
SHA1
F0:3E:29:BB:A6:CE:E4:A3:EA:3E:1E:94:12:63:43:FB:75:D3:64:61
X509v3 extensions
authorityInfoAccess
  • CA Issuers - URI:http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt
  • OCSP - URI:http://ocsp2.globalsign.com/gsalphasha2g2
certificatePolicies
  • Policy: 1.3.6.1.4.1.4146.1.10.10
  • CPS: https://www.globalsign.com/repository/
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://crl2.alphassl.com/gs/gsalphasha2g2.crl
subjectKeyIdentifier
  • 8F:07:AF:67:37:F3:A1:F9:F6:79:C7:36:72:8E:FF:7B:5C:A2:98:5F
authorityKeyIdentifier
  • keyid:F5:CD:D5:3C:08:50:F9:6A:4F:3A:B7:97:DA:56:83:E6:69:D2:68:F7
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DD:EB:1D:2B:7A:0D:4F:A6:20:8B:81:AD:81:68:70:7E:
  • 2E:8E:9D:01:D5:5C:88:8D:3D:11:C4:CD:B6:EC:BE:CC
  • Timestamp : Dec 12 11:21:34.630 2017 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:4B:E3:D4:37:8E:B9:53:0D:3B:74:6E:B9:
  • E0:A3:78:71:47:29:5B:F9:AF:B6:04:74:A8:79:33:06:
  • 16:49:14:EE:02:21:00:BE:76:E8:50:DD:7A:5B:E5:F2:
  • B1:A2:31:15:4A:D6:26:0A:44:74:31:87:8F:0B:3F:3D:
  • C1:BE:30:69:48:84:74
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 56:14:06:9A:2F:D7:C2:EC:D3:F5:E1:BD:44:B2:3E:C7:
  • 46:76:B9:BC:99:11:5C:C0:EF:94:98:55:D6:89:D0:DD
  • Timestamp : Dec 12 11:21:34.689 2017 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:51:C0:B3:DA:CD:38:97:6A:36:23:41:5E:
  • F3:F3:C3:50:3F:C6:A5:53:DA:30:19:EA:D6:6E:08:5C:
  • 87:AC:AB:DB:02:21:00:D2:82:0B:CB:ED:E3:43:E0:F1:
  • 0C:E8:ED:BC:5E:73:CE:90:A7:09:58:DD:CF:EB:BB:F8:
  • C1:E1:8F:0B:E7:39:40
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:B9:09:90:B4:18:58:14:87:BB:13:A2:CC:67:70:0A:
  • 3C:35:98:04:F9:1B:DF:B8:E3:77:CD:0E:C8:0D:DC:10
  • Timestamp : Dec 12 11:21:35.375 2017 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:F4:FE:42:D0:0C:B5:21:F4:31:49:C6:
  • 53:83:8F:47:BD:B7:3D:A8:42:A7:11:61:E8:48:92:01:
  • B8:87:A8:12:00:02:20:59:A3:57:2D:B5:DE:D6:13:97:
  • 62:C4:C5:DB:01:D2:76:0B:A9:7E:49:A3:0C:76:83:F2:
  • 35:E8:28:29:67:93:25
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : BB:D9:DF:BC:1F:8A:71:B5:93:94:23:97:AA:92:7B:47:
  • 38:57:95:0A:AB:52:E8:1A:90:96:64:36:8E:1E:D1:85
  • Timestamp : Dec 12 11:21:35.552 2017 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:38:10:CC:AB:24:C9:17:4B:65:8D:27:7D:
  • B2:22:86:65:42:23:FB:E0:B0:25:B7:FD:9F:3A:D3:41:
  • 18:7B:78:A3:02:20:55:C0:50:32:00:9D:D5:02:2E:6A:
  • 01:BD:DB:3D:9E:37:83:02:2C:D2:CC:25:9C:16:C3:0C:
  • B9:DD:82:FC:24:07