asfi.gob.bo - TLS / STARTTLS Test

Discover if the mail servers for asfi.gob.bo can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 31 May 2023 23:34:42 +0000

Certificates

Problems found
Protocol

Secure
DANE

Missing

We can not guarantee a secure connection to the mailservers of asfi.gob.bo!

Please contact the operator of asfi.gob.bo and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/asfi.gob.bo

Servers

Incoming Mails

These servers are responsible for incoming mails to @asfi.gob.bo addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
asfi.in.tmes.trendmicro.com 18.208.22.79 Results incomplete	9	supported	not checked	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-05-31 1 s
asfi.in.tmes.trendmicro.com 18.208.22.80 Results incomplete	9	supported	not checked	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-05-31 1 s
asfi.in.tmes.trendmicro.com 18.208.22.78 Results incomplete	9	supported	not checked	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-05-31 1 s
asfi.in.tmes.trendmicro.com 18.208.22.77 Results incomplete	9	supported	not checked	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-05-31 1 s
mail.asfi.gob.bo 181.191.68.19	10	supported	IMSVA.TREND	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-05-31 19 s
mail1.asfi.gob.bo 181.191.69.19	20	supported	IMSVA.TREND	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-05-31 19 s
mail2.asfi.gob.bo 181.191.70.19	30	supported	IMSVA.TREND	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-05-31 19 s
mail3.asfi.gob.bo 181.191.68.25 Results incomplete	40		not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2023-05-31 11 s
mail5.asfi.gob.bo 181.191.71.19	60	supported	IMSVA.TREND	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-05-31 19 s

Outgoing Mails

We have not received any emails from a @asfi.gob.bo address so far. Test mail delivery

Certificates

First seen at: 2020-05-25

CN=IMSVA.TREND,OU=IMSVA,O=TREND,L=CU,ST=CA

Certificate chain

IMSVA.TREND (Certificate is self-signed.)
- 2036-03-19 remaining
- 2048 bit
- sha256WithRSAEncryption
- Hostname Mismatch
- Unknown Authority

Subject

State (ST)

Locality (L)

Organization (O)

TREND

Organizational Unit (OU)

IMSVA

Common Name (CN)

IMSVA.TREND

Issuer

Certificate is self-signed.

validity period

Not valid before: 2016-03-24
Not valid after: 2036-03-19

Fingerprints

SHA256: 8B:DD:D3:E2:F9:A2:E7:5F:00:96:3D:B8:2C:06:73:98:96:8C:B3:55:10:2C:79:DA:EF:2F:19:35:01:13:B5:A9
SHA1: 9C:6B:D0:FC:72:76:8E:40:F1:68:D8:5C:07:58:04:A7:02:7F:30:80

SSL check results of asfi.gob.bo