SSL-Tools

SSL check results of abgeordnetenwatch.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for abgeordnetenwatch.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 29 Oct 2025 18:55:02 +0000

We can not guarantee a secure connection to the mailservers of abgeordnetenwatch.de!

Please contact the operator of abgeordnetenwatch.de and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/abgeordnetenwatch.de

Servers

Incoming Mails

These servers are responsible for incoming mails to @abgeordnetenwatch.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
aspmx1.migadu.com
2001:41d0:303:e16b::
Results incomplete
10 not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
aspmx1.migadu.com
2001:41d0:403:4876::
Results incomplete
10 not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
aspmx1.migadu.com
2001:41d0:403:58f0::
Results incomplete
10 not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
aspmx1.migadu.com
2001:41d0:303:e224::
Results incomplete
10 not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
aspmx1.migadu.com
51.210.222.107
Results incomplete
10
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
9 s
aspmx1.migadu.com
57.128.22.240
 10
supported
aspmx1.migadu.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
9 s
aspmx1.migadu.com
141.94.97.118
 10
supported
aspmx1.migadu.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
9 s
aspmx1.migadu.com
51.210.223.36
 10
supported
aspmx1.migadu.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s
aspmx2.migadu.com
2001:41d0:303:e16b::
Results incomplete
20 not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
aspmx2.migadu.com
2001:41d0:303:e224::
Results incomplete
20 not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
aspmx2.migadu.com
2001:41d0:403:4876::
Results incomplete
20 not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
aspmx2.migadu.com
2001:41d0:403:58f0::
Results incomplete
20 not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
aspmx2.migadu.com
57.128.22.240
 20
supported
aspmx1.migadu.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
aspmx2.migadu.com
141.94.97.118
Results incomplete
20
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
aspmx2.migadu.com
51.210.223.36
 20
supported
aspmx1.migadu.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
20 s
aspmx2.migadu.com
51.210.222.107
Results incomplete
20
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s

Outgoing Mails

We have not received any emails from a @abgeordnetenwatch.de address so far. Test mail delivery

Certificates

First seen at:

CN=aspmx1.migadu.com

Certificate chain
  • aspmx1.migadu.com
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R12
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • aspmx1.migadu.com
Alternative Names
  • aspmx1.migadu.com
  • aspmx2.migadu.com
  • mx.migadu.com
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R12
validity period
Not valid before
2025-10-28
Not valid after
2026-01-26
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
69:EF:69:36:93:75:42:83:45:4D:42:19:8E:C0:AF:C0:DB:1A:F7:D6:2B:74:A4:06:EA:B4:BD:DC:15:F8:26:E8
SHA1
6F:C8:4E:0F:F9:B2:CD:EC:77:0E:E8:F1:E2:A4:EE:F5:94:28:54:FA
X509v3 extensions
subjectKeyIdentifier
  • 55:88:A3:6D:D5:F0:81:53:E6:AB:AC:0F:3A:69:4D:35:6F:CE:08:36
authorityKeyIdentifier
  • keyid:00:B5:29:F2:2D:8E:6F:31:E8:9B:4C:AD:78:3E:FA:DC:E9:0C:D1:D2
authorityInfoAccess
  • CA Issuers - URI:http://r12.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r12.c.lencr.org/34.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:
  • F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7
  • Timestamp : Oct 28 05:05:54.553 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:9F:D6:50:91:E4:CF:24:A8:04:2E:DF:
  • 8C:76:6C:A8:59:DE:70:69:6B:78:41:A5:5D:E4:73:7B:
  • F8:AC:91:B2:C3:02:21:00:85:F5:80:DB:A1:53:FF:1C:
  • 32:3C:D2:E1:E5:5B:B9:6D:D2:82:60:3B:C1:96:95:D8:
  • 03:42:65:37:04:F7:43:63
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 96:97:64:BF:55:58:97:AD:F7:43:87:68:37:08:42:77:
  • E9:F0:3A:D5:F6:A4:F3:36:6E:46:A4:3F:0F:CA:A9:C6
  • Timestamp : Oct 28 05:05:54.603 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:9D:E5:F2:2A:D3:35:0C:F1:F9:9E:6C:
  • 77:58:97:6C:0E:76:E7:53:24:3E:7C:CB:51:B7:84:86:
  • 9B:25:EE:76:B3:02:21:00:B0:6E:AD:AB:3D:57:2B:6A:
  • 2E:22:68:B3:B2:79:2B:A4:34:43:AC:D7:F7:45:D0:92:
  • 16:73:6E:E0:60:69:ED:49

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.aspmx2.migadu.com
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.aspmx1.migadu.com
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid