SSL check results of apob.net

NEW You can also bulk check multiple servers.

Discover if the mail servers for apob.net can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Sat, 21 Nov 2020 22:35:43 +0000

We can not guarantee a secure connection to the mailservers of apob.net!

Please contact the operator of apob.net and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/apob.net

Servers

Incoming Mails

These servers are responsible for incoming mails to @apob.net addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
defalcore02.apob.net
2a01:4f8:120:44e1::2
Results incomplete
10 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
defalcore02.apob.net
78.46.72.60
10
supported
*.apob.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • SSL_RSA_WITH_RC4_128_SHA
  • SSL_RSA_EXPORT_WITH_RC4_40_MD5
  • TLSv1.0
  • SSLv3
4 s

Outgoing Mails

We have received emails from these servers with @apob.net sender addresses. Test mail delivery

Host TLS Version & Cipher
defalcore02.apob.net (88.99.230.254)
TLSv1 DHE-RSA-AES256-SHA

Certificates

First seen at:

CN=*.apob.net

Certificate chain
  • *.apob.net
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
    • Unknown Authority

      Let's Encrypt Authority X3
Subject
Common Name (CN)
  • *.apob.net
Alternative Names
  • *.apob.net
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • Let's Encrypt Authority X3
validity period
Not valid before
2020-10-26
Not valid after
2021-01-24
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
03:D3:9F:B4:94:96:48:E2:C9:89:AE:F8:C3:DD:F0:12:56:DC:BB:30:76:23:AB:31:36:E3:21:7B:0A:05:EF:83
SHA1
8A:A8:E9:01:37:D1:FB:98:E3:B0:74:9E:EF:26:5D:50:3D:2C:7B:1D
X509v3 extensions
subjectKeyIdentifier
  • 9C:C7:DD:98:2A:4D:9B:3F:AE:8F:52:8C:8A:DD:B9:C9:08:48:D4:10
authorityKeyIdentifier
  • keyid:A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1
authorityInfoAccess
  • OCSP - URI:http://ocsp.int-x3.letsencrypt.org
  • CA Issuers - URI:http://cert.int-x3.letsencrypt.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
  • 37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
  • Timestamp : Oct 26 02:17:11.902 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:6A:1C:C4:91:33:38:1E:F9:21:ED:F4:D8:
  • CF:8A:B4:8E:EF:BA:7C:E7:D1:0B:92:42:CE:F3:AF:21:
  • E0:EC:A8:F5:02:20:29:A5:D0:C5:08:D8:15:55:B8:71:
  • 2D:21:10:0C:6B:51:DF:1C:68:AD:D8:08:F1:BF:4C:AF:
  • 3D:C9:EA:14:DF:CE
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89:
  • 79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7
  • Timestamp : Oct 26 02:17:11.962 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:DB:EC:4D:3F:37:06:42:2B:46:EC:31:
  • 11:63:F2:4D:33:56:D0:39:FE:5E:E0:4A:32:2B:97:B1:
  • 29:3E:A3:D5:12:02:21:00:B9:82:28:3C:B5:EF:24:F6:
  • F1:17:E4:30:85:2F:A9:D4:24:FB:84:08:5F:17:B7:E2:
  • 33:3E:CA:E3:89:74:82:EB