SSL-Tools

SSL check results of aol.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for aol.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 27 Aug 2025 20:38:46 +0000

The mailservers of aol.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @aol.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx-aol.mail.gm0.yahoodns.net
67.195.204.80
 15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
7 s
mx-aol.mail.gm0.yahoodns.net
67.195.204.75
 15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
7 s
mx-aol.mail.gm0.yahoodns.net
98.136.96.92
 15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
mx-aol.mail.gm0.yahoodns.net
67.195.228.86
 15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
9 s
mx-aol.mail.gm0.yahoodns.net
67.195.228.84
 15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
10 s
mx-aol.mail.gm0.yahoodns.net
98.136.96.93
 15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s

Outgoing Mails

We have not received any emails from a @aol.de address so far. Test mail delivery

Certificates

First seen at:

CN=*.am0.yahoodns.net,O=Yahoo Holdings Inc.,L=New York,ST=New York,C=US

Certificate chain
Subject
Country (C)
  • US
State (ST)
  • New York
Locality (L)
  • New York
Organization (O)
  • Yahoo Holdings Inc.
Common Name (CN)
  • *.am0.yahoodns.net
Alternative Names
  • *.am0.yahoodns.net
  • *.mail.am0.yahoodns.net
  • *.sbcglobal.am0.yahoodns.net
  • *.mail.gm0.yahoodns.net
  • *.gm0.yahoodns.net
  • *.biz.mail.yahoo.com
  • *.bullet.am0.yahoodns.net
  • *.mta.mail.yahoo.com
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • DigiCert SHA2 High Assurance Server CA
validity period
Not valid before
2025-05-08
Not valid after
2025-10-29
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
55:DA:D7:22:CC:D6:E9:AC:19:9C:04:E9:6B:BD:67:30:FD:E8:BE:9E:DA:95:08:13:68:E8:73:13:01:B9:DC:B2
SHA1
34:FA:4E:1B:97:DE:F2:A6:2E:F9:0A:A8:AF:8F:E4:6A:F5:13:95:B7
X509v3 extensions
authorityKeyIdentifier
  • keyid:51:68:FF:90:AF:02:07:75:3C:CC:D9:65:64:62:A2:12:B8:59:72:3B
subjectKeyIdentifier
  • 7F:47:E0:30:B7:9C:95:7D:57:4A:AD:65:14:4A:50:C8:8F:D9:3B:C5
certificatePolicies
  • Policy: 2.23.140.1.2.2
  • CPS: http://www.digicert.com/CPS
crlDistributionPoints
  • Full Name:
  • URI:http://crl3.digicert.com/sha2-ha-server-g6.crl
  • Full Name:
  • URI:http://crl4.digicert.com/sha2-ha-server-g6.crl
authorityInfoAccess
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
  • F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
  • Timestamp : May 8 21:31:38.710 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:2A:CD:11:DC:31:22:B4:4E:DF:2A:84:59:
  • 95:D7:DD:51:F9:70:3B:88:AA:05:75:21:5F:9D:49:4A:
  • 3D:09:4E:11:02:21:00:A6:84:2F:49:2B:F1:A5:92:70:
  • 17:14:A2:0F:A5:1E:73:EC:47:51:CD:59:0B:5A:AE:4C:
  • AB:E9:C8:3E:12:92:EE
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : ED:3C:4B:D6:E8:06:C2:A4:A2:00:57:DB:CB:24:E2:38:
  • 01:DF:51:2F:ED:C4:86:C5:70:0F:20:DD:B7:3E:3F:E0
  • Timestamp : May 8 21:31:38.756 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:81:E1:81:F7:AE:22:DC:72:CE:F7:D6:
  • 0C:5D:FE:6C:AF:31:57:92:C1:1C:C2:BC:E3:75:B7:DB:
  • 5F:60:A4:EA:CD:02:21:00:CB:EF:4D:B1:6F:A8:B8:F7:
  • E7:F0:0D:73:0C:D3:31:D1:15:71:F9:57:75:60:44:71:
  • B9:1A:F4:89:76:1A:CF:B9
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
  • 22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
  • Timestamp : May 8 21:31:38.763 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:68:00:7F:2A:8F:1A:37:85:C9:CD:63:6E:
  • 38:A8:2C:4F:50:A3:F1:67:D0:BF:30:98:B1:46:DB:85:
  • 3C:56:6B:9B:02:20:55:28:83:6F:82:0E:80:1C:CB:3C:
  • 5E:E0:DA:64:6A:9A:10:D9:F5:A5:B4:50:79:F5:1B:83:
  • E1:5A:50:56:11:76