SSL check results of aikq.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for aikq.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Tue, 13 Apr 2021 15:13:54 +0000

The mailservers of aikq.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @aikq.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx20.aikq.de
2a01:4f8:241:6c1::12
Results incomplete
100
supported
not checked
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
4 s
mx20.aikq.de
94.130.119.234
Results incomplete
100
supported
not checked
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
4 s
backupmx.domain-robot.org
2001:8d8:580:401:217:160:113:166
200
supported
*.domain-robot.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
17 s
backupmx.domain-robot.org
217.160.113.166
200
supported
*.domain-robot.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
18 s

Outgoing Mails

We have received emails from these servers with @aikq.de sender addresses. Test mail delivery

Host TLS Version & Cipher
mail.aikq.de (88.99.70.240)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384

Certificates

First seen at:

CN=*.domain-robot.org

Certificate chain
Subject
Common Name (CN)
  • *.domain-robot.org
Alternative Names
  • *.domain-robot.org
  • domain-robot.org
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Common Name (CN)
  • RapidSSL TLS DV RSA Mixed SHA256 2020 CA-1
validity period
Not valid before
2020-09-03
Not valid after
2021-10-05
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
2B:FA:6D:F2:A4:7A:1A:4D:D8:9F:87:10:76:B4:64:3C:FC:5B:D3:E6:3A:DA:80:59:BA:AA:40:8C:63:C7:6E:33
SHA1
A1:D2:E5:2A:32:DF:76:36:2A:AF:05:7F:1F:5D:15:E1:30:90:C5:51
X509v3 extensions
authorityKeyIdentifier
  • keyid:A4:8D:E5:BE:7C:79:E4:70:23:6D:2E:29:34:AD:23:58:DC:F5:31:7F
subjectKeyIdentifier
  • 65:78:20:92:DE:B9:78:AC:2E:39:AD:5D:43:A5:F6:9D:B8:19:77:21
certificatePolicies
  • Policy: 2.16.840.1.114412.1.2
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.1
authorityInfoAccess
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/RapidSSLTLSDVRSAMixedSHA2562020CA-1.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : F6:5C:94:2F:D1:77:30:22:14:54:18:08:30:94:56:8E:
  • E3:4D:13:19:33:BF:DF:0C:2F:20:0B:CC:4E:F1:64:E3
  • Timestamp : Sep 3 14:12:02.411 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:F4:D4:2A:6D:DE:48:93:4A:07:F9:55:
  • D6:01:B0:DC:D6:8D:D3:53:3B:B1:21:87:AC:0C:C5:1D:
  • 9A:62:E6:3B:6E:02:20:7A:CE:FA:C2:6D:0B:53:D9:69:
  • 51:2A:AA:74:08:47:D0:7B:D8:EC:5C:E7:A7:37:25:CA:
  • A0:6B:84:B7:70:A0:44
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
  • 37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
  • Timestamp : Sep 3 14:12:02.407 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:50:6A:5F:09:AB:57:20:DC:19:19:73:C7:
  • 91:79:33:7F:8A:BF:90:AA:47:B3:52:22:4A:E3:12:05:
  • FC:7E:43:36:02:20:36:64:B2:EF:B1:39:90:DB:1B:F3:
  • 04:E1:95:F5:51:5F:47:05:8D:DC:3A:6D:0E:28:7F:04:
  • E7:BC:42:15:C9:2D