SSL check results of ngergs.de

NEW You can also bulk check multiple servers.

Discover if the webservers of ngergs.de can be reached through a secure connection.

Summary

Report created Tue, 11 May 2021 00:32:10 +0000

The webservers of ngergs.de can be reached through a secure connection.

Servers

Hostname / IP address Certificates Protocol
ngergs.de
178.128.205.154
ngergs.de
HSTS
unexpected EOF
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
ngergs.de
2a03:b0c0:3:d0::2a7:f001
ngergs.de
HSTS
unexpected EOF
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Certificates

First seen at:

CN=ngergs.de

Certificate chain
  • ngergs.de
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption

      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • DST Root CA X3 (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption

Subject
Common Name (CN)
  • ngergs.de
Alternative Names
  • ngergs.de
  • www.ngergs.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2021-04-28
Not valid after
2021-07-27
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
84:8D:F0:CB:13:44:38:6C:FC:BF:0A:6C:6A:B0:BA:74:A2:1F:1C:0E:3C:BC:82:83:D5:9F:47:AD:91:B7:B3:94
SHA1
2E:FC:79:0D:84:54:45:06:DF:6E:0E:39:BF:B0:AB:D2:E5:4B:89:4E
X509v3 extensions
subjectKeyIdentifier
  • AD:7F:AD:5A:42:73:2D:5D:80:63:71:D3:EF:CF:08:A8:B2:33:B7:36
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
  • 37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
  • Timestamp : Apr 28 16:00:32.306 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:F0:B4:D7:E2:3F:70:C0:6F:18:0F:D5:
  • 4A:65:50:1A:2C:35:D0:9C:36:8F:FA:85:E3:40:C5:90:
  • 93:08:AC:FA:04:02:20:56:DB:C4:18:7E:7E:DD:87:89:
  • C2:FB:29:01:9F:48:9F:D1:6C:3E:82:5A:9D:60:70:F8:
  • F1:89:BB:C7:1C:56:83
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89:
  • 79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7
  • Timestamp : Apr 28 16:00:32.368 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:2A:EC:14:93:8D:A2:AB:69:AF:F5:7D:5B:
  • C5:A7:1A:94:74:E2:BE:C0:A3:6A:E3:4A:DA:C0:9C:56:
  • 90:54:B0:E4:02:20:33:0A:D7:A1:0E:05:8A:7E:F7:87:
  • 91:76:AD:34:5E:4C:7B:4A:3C:23:73:1B:F6:AE:54:CF:
  • 95:38:4E:E3:D9:C5

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_443._tcp.ngergs.de
  • PKIX-EE: Service Certificate Constraint
  • Use subject public key
  • SHA-256 Hash
valid
valid