SSL-Tools

SSL check results of phobos.k21.org

NEW You can also bulk check multiple servers.

Discover if the mail servers for phobos.k21.org can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Tue, 21 Oct 2025 00:30:18 +0000

The mailservers of phobos.k21.org can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @phobos.k21.org addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
phobos.k21.org
37.120.166.163
 -
supported
phobos.k21.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
phobos.k21.org
2a03:4000:6:40d6::a
 -
supported
phobos.k21.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @phobos.k21.org address so far. Test mail delivery

Certificates

First seen at:

CN=phobos.k21.org

Certificate chain
  • phobos.k21.org
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R13
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • phobos.k21.org
Alternative Names
  • phobos.k21.org
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R13
validity period
Not valid before
2025-10-15
Not valid after
2026-01-13
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
80:EF:02:7C:CD:03:F1:34:F4:08:98:E5:0B:51:54:22:69:D9:CF:4F:3A:AB:2F:DC:5F:EF:34:54:66:0B:75:F2
SHA1
B8:EC:8A:A9:F6:AD:79:E2:1F:8F:F5:A6:A2:15:28:67:BF:86:2C:C8
X509v3 extensions
subjectKeyIdentifier
  • B8:FA:95:24:25:06:A8:77:7A:AB:7F:84:90:C0:95:25:9F:7D:6D:B5
authorityKeyIdentifier
  • keyid:E7:AB:9F:0F:2C:33:A0:53:D3:5E:4F:78:C8:B2:84:0E:3B:D6:92:33
authorityInfoAccess
  • CA Issuers - URI:http://r13.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r13.c.lencr.org/117.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 49:9C:9B:69:DE:1D:7C:EC:FC:36:DE:CD:87:64:A6:B8:
  • 5B:AF:0A:87:80:19:D1:55:52:FB:E9:EB:29:DD:F8:C3
  • Timestamp : Oct 15 16:34:58.116 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:AA:6C:59:D2:B7:0D:76:C7:6F:69:97:
  • 5C:7C:27:BF:37:83:E0:CA:1C:7A:97:9D:70:CB:64:5E:
  • 6B:B6:7C:19:6F:02:20:11:FC:80:21:1C:75:B9:E8:1B:
  • F4:C0:F0:28:8C:8E:83:3D:CD:10:1F:60:27:22:B5:7D:
  • C1:FE:22:58:E9:C3:FE
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:
  • F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7
  • Timestamp : Oct 15 16:34:58.126 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:F7:CB:79:A6:17:09:0A:0A:EE:00:CE:
  • 69:02:02:AF:78:A3:B2:5B:AC:16:91:EA:5D:D8:91:D6:
  • 81:5A:C8:FD:79:02:20:1E:44:82:98:7E:CA:1F:02:B2:
  • 12:DA:35:30:BF:14:15:B1:5C:96:4A:BF:81:86:AA:99:
  • 31:05:8B:EC:A3:18:4C