SSL check results of supaerior.net

NEW You can also bulk check multiple servers.

Discover if the mail servers for supaerior.net can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Tue, 20 Apr 2021 15:32:09 +0000

We can not guarantee a secure connection to the mailservers of supaerior.net!

Please contact the operator of supaerior.net and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/supaerior.net

Servers

Incoming Mails

These servers are responsible for incoming mails to @supaerior.net addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.supaerior.net
2a02:908:1200:6:715a:155c:29c7:cda
Results incomplete
1 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
mail.supaerior.net
176.199.13.103
1
supported
mail.supaerior.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Outgoing Mails

We have received emails from these servers with @supaerior.net sender addresses. Test mail delivery

Host TLS Version & Cipher
mout.kundenserver.de (217.72.192.74)
TLSv1.3 TLS_AES_256_GCM_SHA384
mout.kundenserver.de (212.227.126.135)
TLSv1.3 TLS_AES_256_GCM_SHA384

Certificates

First seen at:

CN=mail.supaerior.net

Certificate chain
  • mail.supaerior.net
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption

      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • DST Root CA X3 (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption

Subject
Common Name (CN)
  • mail.supaerior.net
Alternative Names
  • mail.supaerior.net
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2021-04-20
Not valid after
2021-07-19
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
74:C8:88:75:D3:7B:5F:7B:02:95:DD:0D:55:B3:11:C3:D3:93:D2:AC:C2:73:F6:AE:8D:01:C2:75:CD:D5:53:55
SHA1
AB:E8:47:37:4C:A5:22:8D:5A:64:2B:39:72:A9:A3:AE:15:90:BD:8E
X509v3 extensions
subjectKeyIdentifier
  • 4C:C7:8D:A6:A5:FC:DC:36:34:09:18:DA:40:70:32:8F:80:F6:59:03
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
  • 37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
  • Timestamp : Apr 20 14:38:35.043 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:A9:F8:82:45:03:75:81:91:3B:AE:DF:
  • AF:90:85:A9:78:1E:BB:78:3F:0C:1A:16:FD:60:2A:7B:
  • 7F:AD:5E:72:1E:02:21:00:B2:13:B7:F8:71:F0:FE:2A:
  • E1:97:29:87:D2:9D:C5:63:9B:F9:FD:68:A0:7A:4D:23:
  • 7A:07:BA:98:DE:91:47:09
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89:
  • 79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7
  • Timestamp : Apr 20 14:38:35.102 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:E4:23:0A:9C:7D:63:4F:6E:18:B0:BD:
  • 2E:D6:A9:98:E8:21:E0:C7:98:23:A9:9E:C7:09:23:D7:
  • 99:8D:EA:1F:88:02:20:30:E9:30:21:C0:AF:52:D2:07:
  • DA:62:3D:5C:7F:C5:0E:1B:6D:B7:82:1F:44:93:61:EE:
  • 29:39:83:5F:CF:7D:17