pagholz.de - TLS / STARTTLS Test

Discover if the mail servers for pagholz.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Tue, 30 May 2023 12:15:13 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of pagholz.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @pagholz.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mail.pa.ass.de 2a01:4f8:d1:6f3a::12:29	10	supported	mail.pa.ass.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-05-30 1 s
mail.pa.ass.de 49.12.163.42	10	supported	mail.pa.ass.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-05-30 1 s
mail.pa.assgroup.de 2a01:4f8:d0:e03a::39	20	supported	mail.pa.assgroup.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-05-30 1 s
mail.pa.assgroup.de 116.202.95.66 Results incomplete	20		not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2023-05-30 11 s

Outgoing Mails

We have not received any emails from a @pagholz.de address so far. Test mail delivery

Certificates

First seen at: 2023-05-30

CN=mail.pa.ass.de

Certificate chain

mail.pa.ass.de
- 2023-08-28 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

mail.pa.ass.de

Alternative Names

mail.pa.ass.de

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2023-05-30
Not valid after: 2023-08-28

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 8C:0B:4E:13:D8:5B:42:C9:FB:48:DC:05:53:F0:06:25:8F:23:DC:14:1B:93:98:BB:E1:CF:E1:8D:7E:50:B8:A1
SHA1: 7C:9E:4E:A6:BC:5F:9F:E9:72:C3:A3:2E:46:D3:73:AF:2E:0C:00:0E

X509v3 extensions

subjectKeyIdentifier

E3:E8:AC:95:32:38:04:EE:B9:CC:37:F3:C2:4A:DE:DD:3F:C4:F3:3B

authorityKeyIdentifier

keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6

authorityInfoAccess

OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1
Policy: 1.3.6.1.4.1.44947.1.1.1
CPS: http://cps.letsencrypt.org

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : B7:3E:FB:24:DF:9C:4D:BA:75:F2:39:C5:BA:58:F4:6C:
5D:FC:42:CF:7A:9F:35:C4:9E:1D:09:81:25:ED:B4:99
Timestamp : May 30 11:50:43.639 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:FF:8F:30:44:13:C6:08:05:27:6F:B9:
01:E9:C9:3A:55:E8:39:86:6A:25:EA:6A:11:1B:9E:70:
92:FE:03:BF:8C:02:20:71:07:8C:FA:60:E2:D9:F5:86:
0E:38:6A:8E:8F:27:1E:18:40:B4:08:00:CA:F6:CA:13:
69:40:F5:18:94:BE:80
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7A:32:8C:54:D8:B7:2D:B6:20:EA:38:E0:52:1E:E9:84:
16:70:32:13:85:4D:3B:D2:2B:C1:3A:57:A3:52:EB:52
Timestamp : May 30 11:50:43.659 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:E9:71:06:64:7B:77:6C:11:30:3C:F4:
41:5F:3B:D5:E6:2D:F8:94:35:0D:12:6A:B7:83:59:77:
8F:46:8F:8E:D2:02:21:00:C5:32:D3:AD:7F:96:2D:E8:
B6:75:68:28:8C:0A:8A:8E:92:71:10:19:41:58:0E:CA:
AC:3E:23:8B:FC:64:CE:C2

First seen at: 2023-05-30

CN=mail.pa.assgroup.de

Certificate chain

mail.pa.assgroup.de
- 2023-08-28 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

mail.pa.assgroup.de

Alternative Names

mail.pa.assgroup.de

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2023-05-30
Not valid after: 2023-08-28

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 9F:34:DC:A5:01:63:0E:E7:F7:72:1E:31:5E:B6:90:92:85:AA:47:66:FC:55:F5:9F:DD:1D:EE:44:99:7B:3F:54
SHA1: 0E:E1:3E:6A:0C:28:C9:AF:21:93:E1:B9:ED:57:57:EA:A6:28:85:6A

X509v3 extensions

subjectKeyIdentifier

C2:55:33:95:BA:B7:F4:25:F9:1D:75:DA:AA:31:9F:88:B9:34:06:A5

authorityKeyIdentifier

keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6

authorityInfoAccess

OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1
Policy: 1.3.6.1.4.1.44947.1.1.1
CPS: http://cps.letsencrypt.org

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : B7:3E:FB:24:DF:9C:4D:BA:75:F2:39:C5:BA:58:F4:6C:
5D:FC:42:CF:7A:9F:35:C4:9E:1D:09:81:25:ED:B4:99
Timestamp : May 30 12:00:10.505 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:4D:FC:5D:4F:22:52:38:D8:70:7B:33:12:
DF:65:30:55:67:84:34:D7:46:B6:96:F2:31:1B:EE:40:
F0:3A:FC:AF:02:21:00:E4:93:1B:6A:2E:F5:1D:87:A3:
92:35:71:A1:CA:6C:D7:07:30:51:D8:A9:0C:63:0B:08:
3D:5C:B6:F3:D3:5C:07
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7A:32:8C:54:D8:B7:2D:B6:20:EA:38:E0:52:1E:E9:84:
16:70:32:13:85:4D:3B:D2:2B:C1:3A:57:A3:52:EB:52
Timestamp : May 30 12:00:10.516 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:98:F0:44:7F:C6:AA:40:3D:76:FB:87:
5F:50:0E:3C:DA:F4:09:A9:24:3A:E7:C4:77:AD:88:C6:
08:CC:81:51:66:02:21:00:95:04:47:D6:B6:9B:72:9B:
EB:7D:EF:91:77:7F:50:B3:70:C8:ED:01:AE:0C:ED:08:
F7:B4:DF:A6:65:91:65:9C

SSL check results of pagholz.de

Summary

The mailservers of pagholz.de can be reached through a secure connection.

Servers

Incoming Mails

Outgoing Mails

Certificates

CN=mail.pa.ass.de

CN=mail.pa.assgroup.de