kieyne.de - SSL / HTTPS Check

Discover if the webservers of kieyne.de can be reached through a secure connection.

Summary

Report created Wed, 23 Sep 2020 15:40:52 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Valid

The webservers of kieyne.de can be reached through a secure connection.

Servers

Hostname / IP address	Certificates	Protocol
kieyne.de 104.28.14.110	sni.cloudflaressl.com	HSTS unexpected EOF DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2020-09-23 3 s
kieyne.de 172.67.134.228	sni.cloudflaressl.com	HSTS unexpected EOF DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2020-09-23 3 s
kieyne.de 104.28.15.110	sni.cloudflaressl.com	HSTS unexpected EOF DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2020-09-23 3 s
kieyne.de 2606:4700:3030::681c:f6e	sni.cloudflaressl.com	HSTS unexpected EOF DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2020-09-23 3 s
kieyne.de 2606:4700:3032::681c:e6e	sni.cloudflaressl.com	HSTS unexpected EOF DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2020-09-23 3 s
kieyne.de 2606:4700:3035::ac43:86e4	sni.cloudflaressl.com	HSTS unexpected EOF DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2020-09-23 3 s

Certificates

First seen at: 2020-09-19

CN=sni.cloudflaressl.com,O=Cloudflare\, Inc.,L=San Francisco,ST=CA,C=US

Certificate chain

sni.cloudflaressl.com
- 2021-07-06 remaining
- 256 bit
- ecdsa-with-SHA256

Subject

Country (C)

State (ST)

Locality (L)

San Francisco

Organization (O)

Cloudflare, Inc.

Common Name (CN)

sni.cloudflaressl.com

Alternative Names

*.kieyne.de
kieyne.de
sni.cloudflaressl.com

Issuer

Country (C)

Organization (O)

Cloudflare, Inc.

Common Name (CN)

Cloudflare Inc ECC CA-3

validity period

Not valid before: 2020-07-06
Not valid after: 2021-07-06

This certifcate has been verified for the following usages:

Digital Signature
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: B9:28:AC:6B:44:A3:F2:2D:3D:25:DB:47:4B:9A:6B:D1:CE:8F:A3:1A:0B:48:F3:31:FA:5B:EA:3E:0F:19:67:33
SHA1: 07:7E:52:25:1F:6D:CA:6F:60:8F:2A:92:FC:AF:73:7D:0E:DF:F9:83

X509v3 extensions

authorityKeyIdentifier

keyid:A5:CE:37:EA:EB:B0:75:0E:94:67:88:B4:45:FA:D9:24:10:87:96:1F

subjectKeyIdentifier

88:FF:30:E0:DE:9D:B7:DD:B0:15:7A:E7:D1:09:40:0D:D4:E8:C2:63

crlDistributionPoints

Full Name:
URI:http://crl3.digicert.com/CloudflareIncECCCA-3.crl
Full Name:
URI:http://crl4.digicert.com/CloudflareIncECCCA-3.crl

certificatePolicies

Policy: 2.16.840.1.114412.1.1
CPS: https://www.digicert.com/CPS
Policy: 2.23.140.1.2.2

authorityInfoAccess

OCSP - URI:http://ocsp.digicert.com
CA Issuers - URI:http://cacerts.digicert.com/CloudflareIncECCCA-3.crt

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : F6:5C:94:2F:D1:77:30:22:14:54:18:08:30:94:56:8E:
E3:4D:13:19:33:BF:DF:0C:2F:20:0B:CC:4E:F1:64:E3
Timestamp : Jul 6 23:45:55.838 2020 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:24:5F:B7:EA:98:4E:D1:58:94:6B:AC:ED:
C1:49:DC:D4:B6:57:94:27:3B:96:A0:56:ED:8A:0E:F0:
F3:95:2E:64:02:21:00:E7:C2:D8:F0:78:95:AA:B7:7E:
A0:AE:6C:6C:C1:7D:40:EA:74:22:1E:5E:F8:2F:E5:95:
6D:FD:D5:3F:1C:B4:96
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
Timestamp : Jul 6 23:45:55.884 2020 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:8E:4C:C4:A6:01:9F:43:3E:71:1C:02:
0E:1E:F3:1F:14:08:B4:64:A7:A0:AF:99:F2:80:5A:7A:
8E:C7:49:A4:42:02:21:00:F7:FC:0D:E1:15:63:F5:15:
10:E7:98:14:A8:75:29:91:EE:68:49:0B:BB:8D:EF:58:
E5:DB:2C:70:9C:FD:13:E6

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name	Options	DNSSEC	Matches
_443._tcp.kieyne.de	DANE-EE: Domain Issued Certificate Use subject public key SHA-256 Hash	valid	valid