SSL-Tools

SSL check results of keppler-it.de

NEW You can also bulk check multiple servers.

Discover if the webservers of keppler-it.de can be reached through a secure connection.

Summary

JSON Refresh

Report created Tue, 10 Jun 2025 13:39:20 +0000

The webservers of keppler-it.de can be reached through a secure connection.

Servers

Hostname / IP address Certificates Protocol
keppler-it.de
88.198.223.30
 keppler-it.de
HSTS
missing
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
keppler-it.de
2a01:4f8:bb:c00::1:30
 keppler-it.de
HSTS
missing
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Certificates

First seen at:

CN=keppler-it.de

Certificate chain
  • keppler-it.de
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • keppler-it.de
Alternative Names
  • keppler-it.de
  • www.keppler-it.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2025-05-25
Not valid after
2025-08-23
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
A8:37:E1:01:B4:CD:86:3B:85:BB:B8:35:1D:A8:70:99:74:D5:D4:FD:A0:64:F1:EA:4C:EE:AA:BD:BB:E6:4F:5A
SHA1
91:10:FE:1B:22:A1:62:E2:A7:C8:9C:2E:AD:D3:3B:10:13:85:13:AF
X509v3 extensions
subjectKeyIdentifier
  • BE:5A:FA:C6:16:3A:5E:C3:20:7A:1B:5F:4E:A8:73:CB:05:F0:14:02
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r10.c.lencr.org/118.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:42:C5:06:49:60:61:54:8F:0F:D4:EA:9C:FB:7A:2D:
  • 26:45:4D:87:A9:7F:2F:DF:45:59:F6:27:4F:3A:84:54
  • Timestamp : May 25 10:35:34.289 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:03:D5:51:FE:17:61:F0:AD:FC:D1:02:7E:
  • 2A:60:64:7A:E4:8F:13:BD:71:40:A5:33:3D:DE:CD:EE:
  • FF:C9:C4:4C:02:21:00:CB:A7:8F:E9:57:03:F2:E8:1F:
  • 30:BF:33:60:15:23:CE:34:28:AA:E3:C3:00:B3:71:11:
  • 13:DA:67:50:FB:0C:3A
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
  • 22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
  • Timestamp : May 25 10:35:34.304 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:C6:1E:F8:FB:7B:E9:A8:7A:16:09:F9:
  • 67:86:05:2C:60:6B:B4:14:BE:56:4C:8B:0E:29:59:96:
  • 06:46:12:DF:EA:02:20:74:54:62:3B:8B:FF:CA:BC:D9:
  • AE:D5:83:02:31:DF:E5:B7:DD:E2:74:20:57:56:70:7B:
  • 2F:CC:36:DA:3D:2E:1E

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_443._tcp.keppler-it.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid