SSL-Tools

SSL check results of mangelot.nl

NEW You can also bulk check multiple servers.

Discover if the webservers of mangelot.nl can be reached through a secure connection.

Summary

JSON Refresh

Report created Thu, 14 Aug 2025 12:37:02 +0000

The webservers of mangelot.nl can be reached through a secure connection.

Servers

Hostname / IP address Certificates Protocol
mangelot.nl
178.251.25.155
 *.mangelot.nl
HSTS
missing
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
mangelot.nl
2a00:1938:1:31:25::155
 *.mangelot.nl
HSTS
missing
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Certificates

First seen at:

CN=*.mangelot.nl

Certificate chain
  • *.mangelot.nl
    • remaining
    • 384 bit
    • ecdsa-with-SHA384
      • E5
        • remaining
        • 384 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • *.mangelot.nl
Alternative Names
  • *.mangelot.nl
  • mangelot.nl
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • E5
validity period
Not valid before
2025-08-13
Not valid after
2025-11-11
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
E9:3A:D9:F8:71:1F:88:9C:D9:BC:51:3B:73:09:7F:A5:59:43:54:96:2B:E9:AD:15:3B:B3:00:8F:9F:DF:3A:D7
SHA1
12:A8:F5:A8:2A:BB:51:0E:3C:3B:AB:91:5E:8E:44:CD:21:64:C8:7F
X509v3 extensions
subjectKeyIdentifier
  • 2B:23:01:B6:9D:B2:2F:D6:E9:65:C0:3E:F2:B6:4B:4A:74:36:50:98
authorityKeyIdentifier
  • keyid:9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D
authorityInfoAccess
  • CA Issuers - URI:http://e5.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://e5.c.lencr.org/15.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
  • 22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
  • Timestamp : Aug 13 18:17:42.544 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:F1:ED:17:27:93:F7:52:33:21:DC:8A:
  • 2B:9A:A2:64:60:F6:44:94:F7:0C:45:67:32:B3:80:13:
  • EA:53:F3:F9:7C:02:20:3C:28:EE:4D:AD:40:1E:B7:85:
  • 9E:C5:FD:87:17:D5:4F:D8:43:09:58:06:F7:BE:CA:C0:
  • 36:72:E1:C7:D4:E8:C8
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 1A:04:FF:49:D0:54:1D:40:AF:F6:A0:C3:BF:F1:D8:C4:
  • 67:2F:4E:EC:EE:23:40:68:98:6B:17:40:2E:DC:89:7D
  • Timestamp : Aug 13 18:17:42.570 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:9F:14:8C:42:62:8D:CF:70:EC:FA:E8:
  • 48:6B:AB:59:08:8B:D2:9B:1B:7A:05:D2:BC:53:53:E0:
  • 9B:EE:6C:3B:42:02:21:00:EF:1B:66:33:C9:44:5A:82:
  • 50:93:C4:05:2E:10:35:D3:E4:D0:71:AE:A1:56:A8:CE:
  • 7B:48:01:F5:B0:E9:54:3E

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_443._tcp.mangelot.nl
  • DANE-TA: Trust Anchor Assertion
  • Use full certificate
  • SHA-256 Hash
valid
valid