SSL check results of zhkath.ch

NEW You can also bulk check multiple servers.

Discover if the mail servers for zhkath.ch can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Sat, 21 Nov 2020 21:24:17 +0000

The mailservers of zhkath.ch can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @zhkath.ch addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.zhkath.ch
93.190.75.75
10
supported
*.zhkath.ch
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
3 s

Outgoing Mails

We have not received any emails from a @zhkath.ch address so far. Test mail delivery

Certificates

First seen at:

CN=*.zhkath.ch

Certificate chain
Subject
Common Name (CN)
  • *.zhkath.ch
Alternative Names
  • *.zhkath.ch
  • zhkath.ch
Issuer
Country (C)
  • GB
State (ST)
  • Greater Manchester
Locality (L)
  • Salford
Organization (O)
  • Sectigo Limited
Common Name (CN)
  • Sectigo RSA Domain Validation Secure Server CA
validity period
Not valid before
2020-05-05
Not valid after
2022-05-06
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
64:C5:60:F7:64:C5:CA:27:60:F4:70:54:1D:2B:3E:0A:D7:59:80:5D:E3:C1:56:91:AD:DB:29:C6:0A:58:79:A8
SHA1
F7:D8:22:13:3F:01:99:69:AF:6C:3B:D1:9C:F7:C8:9E:84:7B:97:ED
X509v3 extensions
authorityKeyIdentifier
  • keyid:8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
subjectKeyIdentifier
  • FE:B8:C1:44:E0:B3:03:CC:B2:60:EE:AA:B9:A3:C8:F5:08:C5:5B:F3
certificatePolicies
  • Policy: 1.3.6.1.4.1.6449.1.2.2.7
  • CPS: https://sectigo.com/CPS
  • Policy: 2.23.140.1.2.1
authorityInfoAccess
  • CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
  • OCSP - URI:http://ocsp.sectigo.com
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
  • 11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
  • Timestamp : May 5 10:48:54.640 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:D7:82:CE:EB:73:F8:5E:C9:86:D0:93:
  • 8C:24:00:AB:21:96:88:70:36:65:CF:E6:29:E0:86:FA:
  • FF:0F:4B:D0:A5:02:21:00:BB:B6:07:E9:06:F0:57:C3:
  • 86:EE:8B:9E:97:37:83:78:AF:90:06:B4:4F:C4:07:EB:
  • C9:88:AD:57:EC:42:C6:67
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DF:A5:5E:AB:68:82:4F:1F:6C:AD:EE:B8:5F:4E:3E:5A:
  • EA:CD:A2:12:A4:6A:5E:8E:3B:12:C0:20:44:5C:2A:73
  • Timestamp : May 5 10:48:54.680 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:9D:CC:BC:76:12:04:3B:FD:6F:FD:AB:
  • 27:7C:F3:E8:19:19:9C:07:44:21:97:A2:7E:8B:58:67:
  • F3:C7:0E:B3:55:02:21:00:81:EA:C7:FF:7C:3D:62:C9:
  • 61:9A:50:D8:B1:31:17:7C:4D:DC:44:EB:70:30:FD:6E:
  • 40:C4:F0:5F:B5:35:A3:0E
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 6F:53:76:AC:31:F0:31:19:D8:99:00:A4:51:15:FF:77:
  • 15:1C:11:D9:02:C1:00:29:06:8D:B2:08:9A:37:D9:13
  • Timestamp : May 5 10:48:54.633 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:EF:A0:EB:6D:32:28:73:30:2F:6F:8F:
  • 26:70:FF:95:01:EE:B1:25:6B:0C:58:0F:4E:07:8C:07:
  • 36:84:55:76:01:02:20:45:86:3C:73:67:AC:C0:FB:C4:
  • 7D:DA:14:D2:B3:25:F4:C0:77:1B:75:F6:A1:79:42:31:
  • 4A:E9:7B:93:47:89:03