SSL-Tools

SSL check results of posteo.de

NEW You can also bulk check multiple servers.

Discover if the webservers of posteo.de can be reached through a secure connection.

Summary

JSON Refresh

Report created Mon, 06 May 2024 17:13:46 +0000

The webservers of posteo.de can be reached through a secure connection.

Servers

Hostname / IP address Certificates Protocol
posteo.de
185.67.36.168
 posteo.de
HSTS
unexpected EOF
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
posteo.de
185.67.36.169
 posteo.de
HSTS
unexpected EOF
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
posteo.de
2a05:bc0:1000::168:1
 posteo.de
HSTS
unexpected EOF
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
posteo.de
2a05:bc0:1000::169:1
 posteo.de
HSTS
unexpected EOF
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
posteo.de
2a05:bc0:1000:80::168:1
 posteo.de
HSTS
unexpected EOF
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
posteo.de
2a05:bc0:1000:80::169:1
 posteo.de
HSTS
unexpected EOF
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Certificates

First seen at:

CN=posteo.de,O=Posteo e.K.,L=Berlin,ST=Berlin,C=DE,serialNumber=HRA 47592,businessCategory=Private Organization,jurisdictionL=Charlottenburg,jurisdictionST=Berlin,jurisdictionC=DE

Certificate chain
Subject
jurisdictionC
  • DE
jurisdictionST
  • Berlin
jurisdictionL
  • Charlottenburg
Business category
  • Private Organization
Serial number
  • HRA 47592
Country (C)
  • DE
State (ST)
  • Berlin
Locality (L)
  • Berlin
Organization (O)
  • Posteo e.K.
Common Name (CN)
  • posteo.de
Alternative Names
  • posteo.de
  • www.posteo.de
  • lists.posteo.de
  • autoconfig.posteo.de
  • mta-sts.posteo.de
  • api.posteo.de
  • cdn.posteo.de
  • autodiscover.posteo.de
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Common Name (CN)
  • GeoTrust EV RSA CA G2
validity period
Not valid before
2024-02-19
Not valid after
2025-02-21
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
AA:FC:E1:21:F4:15:14:E6:8D:09:ED:F4:87:EA:E6:1E:02:99:BC:9B:41:51:4C:FC:DC:BE:F5:E8:A5:60:9C:DD
SHA1
ED:87:9A:C6:E6:2E:72:82:42:AD:30:D9:05:38:30:34:7C:47:2F:24
X509v3 extensions
authorityKeyIdentifier
  • keyid:28:D2:CF:EE:09:84:75:DD:B5:B2:B5:BF:3C:D5:A0:C6:73:88:5D:1F
subjectKeyIdentifier
  • 69:B3:16:BA:06:F9:FF:A9:97:89:DE:7D:FB:EB:90:80:8F:3F:FE:61
certificatePolicies
  • Policy: 2.16.840.1.114412.2.1
  • Policy: 2.23.140.1.1
  • CPS: http://www.digicert.com/CPS
crlDistributionPoints
  • Full Name:
  • URI:http://crl3.digicert.com/GeoTrustEVRSACAG2.crl
  • Full Name:
  • URI:http://crl4.digicert.com/GeoTrustEVRSACAG2.crl
authorityInfoAccess
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/GeoTrustEVRSACAG2.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
  • 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
  • Timestamp : Feb 19 14:32:14.147 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:25:DE:BB:E6:B8:B3:95:3B:9E:4F:1B:AC:
  • 78:6B:20:52:F7:02:F0:43:BC:FE:91:41:53:1B:8F:CE:
  • 77:42:1D:68:02:21:00:F3:97:29:50:4B:BC:BB:D0:1E:
  • AE:3D:1D:6B:EF:01:08:F0:18:75:18:FC:75:DE:1C:1B:
  • 20:A6:97:63:FF:1D:DA
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
  • 87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
  • Timestamp : Feb 19 14:32:14.155 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:77:53:B4:4D:9F:5D:92:99:B4:9F:36:5F:
  • 1D:CF:56:A1:B8:BA:33:DD:48:23:C4:B1:3A:AA:CA:71:
  • 8E:F6:3F:60:02:20:15:8C:71:77:B9:70:C4:AD:2D:2E:
  • 63:5E:98:53:61:03:5A:81:A8:47:22:AB:F0:27:90:65:
  • AB:75:49:B9:B4:39
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
  • D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
  • Timestamp : Feb 19 14:32:14.196 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:2A:8C:41:D6:FA:88:D4:4A:68:52:9C:30:
  • BE:7B:D2:82:70:11:F6:B3:84:C1:A3:29:44:F6:0F:D7:
  • EA:B8:63:B8:02:20:3C:B8:E6:EE:E7:B0:D3:15:E6:55:
  • 35:1B:83:D2:38:16:AB:47:75:67:61:C9:07:29:83:50:
  • 0A:C2:0E:8E:45:E6

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_443._tcp.posteo.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_443._tcp.posteo.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_443._tcp.posteo.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid