ai-host.de - TLS / STARTTLS Test

Discover if the mail servers for ai-host.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 24 Apr 2024 13:45:47 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of ai-host.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @ai-host.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mx1.ai-host.de 2001:8d8:92a:b400::3d:6707	10	supported	*.ai-host.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2024-04-24 1 s
mx1.ai-host.de 82.165.151.81	10	supported	*.ai-host.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2024-04-24 1 s

Outgoing Mails

We have not received any emails from a @ai-host.de address so far. Test mail delivery

Certificates

First seen at: 2024-04-24

CN=*.ai-host.de

Certificate chain

*.ai-host.de
- 2024-06-13 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

*.ai-host.de

Alternative Names

*.ai-host.de
ai-host.de

Issuer

Country (C)

Organization (O)

DigiCert Inc

Organizational Unit (OU)

www.digicert.com

Common Name (CN)

Encryption Everywhere DV TLS CA - G2

validity period

Not valid before: 2023-06-14
Not valid after: 2024-06-13

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 69:FE:3D:B6:2A:0C:C8:48:2B:59:BF:A2:7E:35:7E:2A:D4:08:81:E8:8A:34:97:5F:60:B7:A9:EC:84:17:33:45
SHA1: 06:46:6A:54:E0:6B:54:80:18:9E:82:43:34:07:BA:17:94:C0:E4:C7

X509v3 extensions

authorityKeyIdentifier

keyid:78:DF:91:90:5F:EE:DE:AC:F6:C5:75:EB:D5:4C:55:53:EF:24:4A:B6

subjectKeyIdentifier

D6:B9:B0:3F:02:2A:5B:83:A6:95:69:39:BB:C4:9E:43:F5:DB:BC:EA

certificatePolicies

Policy: 2.23.140.1.2.1
CPS: http://www.digicert.com/CPS

authorityInfoAccess

OCSP - URI:http://ocsp.digicert.com
CA Issuers - URI:http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Jun 14 08:40:51.969 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:ED:7B:DC:93:BB:74:4D:B9:BE:E2:BE:
D2:5B:E7:BC:80:92:A5:14:37:02:D4:FF:C7:B1:F8:36:
AF:F2:0C:D1:1D:02:20:55:AE:93:B4:98:1C:57:95:DE:
AF:C3:A7:61:D3:6A:77:66:66:61:E0:62:3D:14:27:AB:
F2:BC:42:B4:99:9B:48
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Jun 14 08:40:52.031 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:A6:85:46:0F:D7:AC:A0:FA:A2:D5:52:
A5:01:48:E1:C5:99:6F:83:6A:A9:C4:6B:34:DE:92:49:
8E:9D:46:64:C5:02:20:31:C9:3F:1C:C8:3B:49:14:7E:
82:92:A9:C2:10:1E:E4:88:5E:21:25:FC:43:74:E0:C3:
DB:55:A8:C2:5D:52:19
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
Timestamp : Jun 14 08:40:51.968 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:4F:98:F7:C9:2B:CF:B0:29:18:95:DA:30:
70:30:8B:4D:76:A6:76:58:94:B5:82:80:92:EE:BB:AD:
61:DF:4B:B7:02:20:69:81:F5:6B:D2:31:EC:0A:2F:88:
6E:C9:0B:6D:27:23:B9:A5:89:CE:D2:99:4C:D5:06:0D:
85:E4:1D:08:B7:B3

SSL check results of ai-host.de