SSL-Tools

SSL check results of 3dambacht.nl

NEW You can also bulk check multiple servers.

Discover if the mail servers for 3dambacht.nl can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 26 Nov 2020 02:29:55 +0000

No connection to the mailservers of 3dambacht.nl could be established.

Servers

Incoming Mails

These servers are responsible for incoming mails to @3dambacht.nl addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx.bhosted.nl
2a02:9e0:8000::12
Results incomplete
10
supported
*.bhosted.nl
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
mx.bhosted.nl
2a02:9e0:8000::32
Results incomplete
10
supported
*.bhosted.nl
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
mx.bhosted.nl
2a02:9e0:8000::10
Results incomplete
10
supported
*.bhosted.nl
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
mx.bhosted.nl
94.124.121.32
Results incomplete
10
supported
*.bhosted.nl
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
mx.bhosted.nl
94.124.121.12
Results incomplete
10
supported
*.bhosted.nl
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
mx.bhosted.nl
94.124.121.10
Results incomplete
10
supported
*.bhosted.nl
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @3dambacht.nl address so far. Test mail delivery

Certificates

First seen at:

CN=*.bhosted.nl,OU=Webhosting,O=bHosted.nl B.V.,L=Roosendaal,ST=Noord-Brabant,C=NL

Certificate chain
Subject
Country (C)
  • NL
State (ST)
  • Noord-Brabant
Locality (L)
  • Roosendaal
Organization (O)
  • bHosted.nl B.V.
Organizational Unit (OU)
  • Webhosting
Common Name (CN)
  • *.bhosted.nl
Alternative Names
  • *.bhosted.nl
  • bhosted.nl
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • GeoTrust TLS RSA CA G1
validity period
Not valid before
2019-02-19
Not valid after
2021-02-18
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
16:67:E5:40:5D:5B:A9:88:38:32:69:BF:7F:DA:0D:B1:0C:4A:1E:6C:3E:70:25:9F:A1:88:89:8A:CC:D0:7F:B3
SHA1
28:53:59:FA:43:6C:7D:90:AF:91:97:83:BC:9E:23:F9:5A:F9:81:4D
X509v3 extensions
authorityKeyIdentifier
  • keyid:94:4F:D4:5D:8B:E4:A4:E2:A6:80:FE:FD:D8:F9:00:EF:A3:BE:02:57
subjectKeyIdentifier
  • FC:A1:F0:8A:05:61:01:8B:D8:28:A1:FA:82:B8:B1:D4:A9:54:9A:C3
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.1
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.2
authorityInfoAccess
  • OCSP - URI:http://status.geotrust.com
  • CA Issuers - URI:http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:B9:09:90:B4:18:58:14:87:BB:13:A2:CC:67:70:0A:
  • 3C:35:98:04:F9:1B:DF:B8:E3:77:CD:0E:C8:0D:DC:10
  • Timestamp : Feb 19 06:03:05.532 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:81:40:E6:B6:4D:6C:B9:12:1D:F5:8C:
  • C7:86:C6:71:AB:8D:6B:6E:72:D9:0B:84:C9:C7:5E:45:
  • 7E:57:A9:EE:08:02:21:00:EA:9E:7A:1B:93:F6:C0:A7:
  • 61:B2:68:13:0E:7A:6C:4A:D5:72:D9:B7:F9:76:74:3D:
  • 17:CB:1F:47:E4:DC:E3:D9
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 44:94:65:2E:B0:EE:CE:AF:C4:40:07:D8:A8:FE:28:C0:
  • DA:E6:82:BE:D8:CB:31:B5:3F:D3:33:96:B5:B6:81:A8
  • Timestamp : Feb 19 06:03:05.573 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:E2:F8:58:A1:BF:1E:24:65:3B:AB:AC:
  • 46:30:BD:AA:EB:FF:E4:6C:38:67:52:4B:31:45:FB:8A:
  • 45:55:36:58:47:02:21:00:F5:7A:B6:44:03:99:1B:81:
  • 1E:B6:99:EB:2C:6E:59:4D:3B:46:9B:F5:01:D8:F8:E5:
  • 57:01:D8:4D:B5:06:CF:0F
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : BB:D9:DF:BC:1F:8A:71:B5:93:94:23:97:AA:92:7B:47:
  • 38:57:95:0A:AB:52:E8:1A:90:96:64:36:8E:1E:D1:85
  • Timestamp : Feb 19 06:03:05.554 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:FE:0E:77:38:A3:89:78:39:E7:19:DB:
  • CC:8F:FD:81:43:78:29:1D:C4:C5:C8:92:CF:8E:17:8A:
  • 82:2E:69:B2:F3:02:20:3A:BC:C4:08:52:54:75:DB:16:
  • D6:0D:CE:0C:CE:FD:FC:8F:8E:AD:76:A9:2C:2F:41:B3:
  • 83:A0:6A:59:B7:72:46

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mx.bhosted.nl
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mx.bhosted.nl
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid