SSL-Tools

SSL check results of notyour.chat

NEW You can also bulk check multiple servers.

Discover if the mail servers for notyour.chat can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 11 Dec 2024 01:32:39 +0000

The mailservers of notyour.chat can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @notyour.chat addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
01jbq128ve058kjyk1dzkn19qc.hel.fi.production.ownhosting.cloud
2a01:4f9:c012:a81f::1
 10
supported
01jbq128ve058kjyk1dzkn19qc.hel.fi.production.ownhosting.cloud
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
10 s
01jbq128ve058kjyk1dzkn19qc.hel.fi.production.ownhosting.cloud
135.181.80.6
 10
supported
01jbq128ve058kjyk1dzkn19qc.hel.fi.production.ownhosting.cloud
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
15 s

Outgoing Mails

We have not received any emails from a @notyour.chat address so far. Test mail delivery

Certificates

First seen at:

CN=01jbq128ve058kjyk1dzkn19qc.hel.fi.production.ownhosting.cloud

Certificate chain
Subject
Common Name (CN)
  • 01jbq128ve058kjyk1dzkn19qc.hel.fi.production.ownhosting.cloud
Alternative Names
  • 01jbq128ve058kjyk1dzkn19qc.hel.fi.production.ownhosting.cloud
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R11
validity period
Not valid before
2024-12-06
Not valid after
2025-03-06
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
52:43:28:EB:09:11:B0:BC:56:09:A5:8F:50:13:71:25:2C:C4:36:97:5D:30:EF:8F:91:48:C2:A4:EE:1C:73:41
SHA1
CB:54:EB:7C:8D:01:37:68:12:5A:57:F0:83:C8:A0:23:AD:8C:23:F3
X509v3 extensions
subjectKeyIdentifier
  • 42:3D:D9:5F:26:E6:20:1E:9F:37:4D:00:3E:92:C8:18:7B:03:27:5F
authorityKeyIdentifier
  • keyid:C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
authorityInfoAccess
  • OCSP - URI:http://r11.o.lencr.org
  • CA Issuers - URI:http://r11.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
  • D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
  • Timestamp : Dec 6 17:04:59.428 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:58:B7:49:9F:47:38:D1:87:25:D8:7D:FF:
  • D1:2D:FA:C8:D8:85:8C:79:22:DD:A2:E6:9B:CF:26:1D:
  • 02:9B:FE:A0:02:20:28:56:F4:A0:E8:2F:EF:32:0B:F6:
  • A4:55:5B:4C:25:D9:75:3E:6B:D2:98:58:AD:E8:19:82:
  • 2D:CA:87:B6:17:4C
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
  • 22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
  • Timestamp : Dec 6 17:04:59.446 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:FE:2D:C5:B8:35:4E:B3:9F:49:A6:9C:
  • FE:55:EA:2F:4E:D8:56:DB:C5:1B:2F:7A:39:C6:AE:92:
  • C9:CA:A6:98:FB:02:20:4F:E6:8A:49:82:D2:84:2A:A6:
  • BF:87:4F:19:06:78:53:6B:94:28:E2:30:A5:2E:E9:58:
  • 5C:49:62:8A:CD:C0:0A

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.01jbq128ve058kjyk1dzkn19qc.hel.fi.production.ownhosting.cloud
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
valid