SSL check results of aikq.net

NEW You can also bulk check multiple servers.

Discover if the mail servers for aikq.net can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Wed, 30 May 2018 13:37:46 +0000

The mailservers of aikq.net can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @aikq.net addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.aikq.de
2a01:4f8:10a:23a9::2
100
supported
*.aikq.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
23 s
mail.aikq.de
88.99.139.114
100
supported
*.aikq.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
23 s
backupmx.domain-robot.org
2001:8d8:580:401:217:160:113:166
200
supported
*.domain-robot.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
11 s
backupmx.domain-robot.org
217.160.113.166
200
supported
*.domain-robot.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
11 s
mg.aikq.de
138.201.195.144
300
supported
mg.aikq.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s

Outgoing Mails

We have received emails from these servers with @aikq.net sender addresses. Test mail delivery

Host TLS Version & Cipher
mail.aikq.de (217.69.254.95)
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384

Certificates

First seen at:

CN=*.domain-robot.org,OU=Domain Control Validated - RapidSSL(R),OU=See www.rapidssl.com/resources/cps (c)14,OU=GT32741234

Certificate chain
Subject
Organizational Unit (OU)
  • GT32741234
  • See www.rapidssl.com/resources/cps (c)14
  • Domain Control Validated - RapidSSL(R)
Common Name (CN)
  • *.domain-robot.org
Alternative Names
  • *.domain-robot.org
  • domain-robot.org
Issuer
Country (C)
  • US
Organization (O)
  • GeoTrust Inc.
Common Name (CN)
  • RapidSSL SHA256 CA - G3
validity period
Not valid before
2014-09-16
Not valid after
2018-09-18
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
C2:2A:E4:4E:FC:7C:E2:11:97:3C:79:40:DC:8C:6E:3F:DE:53:E9:31:7D:3C:4A:F7:E6:25:C1:4C:5D:4B:2A:80
SHA1
D9:CF:4A:5A:44:91:CD:22:8A:A4:45:D8:E3:8A:2B:5D:EE:A0:35:68
X509v3 extensions
authorityKeyIdentifier
  • keyid:C3:9C:F3:FC:D3:46:08:34:BB:CE:46:7F:A0:7C:5B:F3:E2:08:CB:59
authorityInfoAccess
  • OCSP - URI:http://gv.symcd.com
  • CA Issuers - URI:http://gv.symcb.com/gv.crt
crlDistributionPoints
  • Full Name:
  • URI:http://gv.symcb.com/gv.crl
certificatePolicies
  • Policy: 2.16.840.1.113733.1.7.54
  • CPS: https://www.rapidssl.com/legal
First seen at:

CN=*.aikq.de,OU=PositiveSSL Wildcard,OU=Domain Control Validated

Certificate chain
Subject
Organizational Unit (OU)
  • Domain Control Validated
  • PositiveSSL Wildcard
Common Name (CN)
  • *.aikq.de
Alternative Names
  • *.aikq.de
  • aikq.de
Issuer
Country (C)
  • GB
State (ST)
  • Greater Manchester
Locality (L)
  • Salford
Organization (O)
  • COMODO CA Limited
Common Name (CN)
  • COMODO RSA Domain Validation Secure Server CA
validity period
Not valid before
2018-03-04
Not valid after
2020-06-05
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
19:F4:6D:D4:F9:5D:28:9A:48:52:07:A6:04:39:6E:FB:6C:6E:22:80:88:C5:E4:7D:8A:AB:C8:8E:71:D3:91:E3
SHA1
40:0C:00:99:DE:7F:C0:2E:FB:8A:E5:5E:AD:54:6C:C2:CA:61:03:1A
X509v3 extensions
authorityKeyIdentifier
  • keyid:90:AF:6A:3A:94:5A:0B:D8:90:EA:12:56:73:DF:43:B4:3A:28:DA:E7
subjectKeyIdentifier
  • 0E:3A:06:42:AD:72:C5:52:2F:47:41:CD:F9:09:FB:9B:1F:07:F7:BC
certificatePolicies
  • Policy: 1.3.6.1.4.1.6449.1.2.2.7
  • CPS: https://secure.comodo.com/CPS
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://crl.comodoca.com/COMODORSADomainValidationSecureServerCA.crl
authorityInfoAccess
  • CA Issuers - URI:http://crt.comodoca.com/COMODORSADomainValidationSecureServerCA.crt
  • OCSP - URI:http://ocsp.comodoca.com
First seen at:

CN=mg.aikq.de,OU=EssentialSSL,OU=Domain Control Validated

Certificate chain
Subject
Organizational Unit (OU)
  • Domain Control Validated
  • EssentialSSL
Common Name (CN)
  • mg.aikq.de
Alternative Names
  • mg.aikq.de
  • www.mg.aikq.de
Issuer
Country (C)
  • GB
State (ST)
  • Greater Manchester
Locality (L)
  • Salford
Organization (O)
  • COMODO CA Limited
Common Name (CN)
  • COMODO RSA Domain Validation Secure Server CA
validity period
Not valid before
2017-08-28
Not valid after
2020-08-27
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
65:2B:9E:35:7D:AD:8A:72:EE:C4:7D:AE:61:4E:0E:DD:48:B0:FA:D2:72:00:30:7C:D0:70:C2:1E:71:B0:62:C2
SHA1
19:76:1C:36:9C:0A:E3:DA:EF:0C:D0:AF:A5:E6:C3:5F:23:D2:4C:71
X509v3 extensions
authorityKeyIdentifier
  • keyid:90:AF:6A:3A:94:5A:0B:D8:90:EA:12:56:73:DF:43:B4:3A:28:DA:E7
subjectKeyIdentifier
  • AB:80:47:16:DE:87:2B:D7:F2:C4:7B:53:D6:4E:1C:E6:04:AA:8C:4A
certificatePolicies
  • Policy: 1.3.6.1.4.1.6449.1.2.2.7
  • CPS: https://secure.comodo.com/CPS
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://crl.comodoca.com/COMODORSADomainValidationSecureServerCA.crl
authorityInfoAccess
  • CA Issuers - URI:http://crt.comodoca.com/COMODORSADomainValidationSecureServerCA.crt
  • OCSP - URI:http://ocsp.comodoca.com