SSL-Tools

SSL check results of ass.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for ass.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Mon, 01 Sep 2025 07:16:44 +0000

The mailservers of ass.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @ass.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.pa.ass.de
2a01:4f8:d1:6f3a::12:29
 10
supported
mail.pa.ass.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
mail.pa.ass.de
49.12.163.42
 10
supported
mail.pa.ass.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
mail.pa.assgroup.de
2a01:4f8:d0:e03a::39
 20
supported
mail.pa.assgroup.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
mail.pa.assgroup.de
116.202.95.66
Results incomplete
20 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s

Outgoing Mails

We have not received any emails from a @ass.de address so far. Test mail delivery

Certificates

First seen at:

CN=mail.pa.assgroup.de

Certificate chain
  • mail.pa.assgroup.de
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R13
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mail.pa.assgroup.de
Alternative Names
  • mail.pa.assgroup.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R13
validity period
Not valid before
2025-08-31
Not valid after
2025-11-29
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
79:23:55:AC:C6:A6:44:20:42:22:42:0C:0E:B2:DB:4D:CE:8E:AC:44:50:1B:0C:E1:7E:9E:3E:0B:C7:77:ED:D6
SHA1
96:5C:1B:D0:E1:98:6A:E2:ED:BE:A2:C2:8F:03:20:7E:DB:89:94:4E
X509v3 extensions
subjectKeyIdentifier
  • EA:A1:27:E4:DA:DC:75:36:D5:05:67:9C:8A:68:D4:3A:0D:2A:6C:57
authorityKeyIdentifier
  • keyid:E7:AB:9F:0F:2C:33:A0:53:D3:5E:4F:78:C8:B2:84:0E:3B:D6:92:33
authorityInfoAccess
  • CA Issuers - URI:http://r13.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r13.c.lencr.org/59.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 0D:E1:F2:30:2B:D3:0D:C1:40:62:12:09:EA:55:2E:FC:
  • 47:74:7C:B1:D7:E9:30:EF:0E:42:1E:B4:7E:4E:AA:34
  • Timestamp : Sep 1 00:23:41.656 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:3C:08:3E:B4:71:6C:69:92:2F:26:C4:31:
  • 55:64:E1:57:EC:31:31:7C:FC:21:90:53:BD:4D:03:D5:
  • FF:BE:B0:CA:02:20:22:22:22:5F:7F:10:4A:F2:33:EC:
  • B4:DD:26:E2:8B:2A:4C:3E:C0:3C:A4:63:CF:AA:35:8E:
  • A4:BC:7A:BC:80:45
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
  • F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
  • Timestamp : Sep 1 00:23:41.658 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:DA:4F:28:37:D1:67:79:30:18:C7:FA:
  • 7B:50:AB:9A:9D:89:30:62:B9:25:FC:10:E4:63:98:C6:
  • 3B:51:B4:0F:FA:02:20:1B:81:7D:56:D8:E9:17:CB:F4:
  • 94:80:C5:70:5B:E7:FE:B1:DD:7B:73:D2:2E:E0:54:B1:
  • 45:95:04:34:EB:49:AA
First seen at:

CN=mail.pa.ass.de

Certificate chain
Subject
Common Name (CN)
  • mail.pa.ass.de
Alternative Names
  • mail.pa.ass.de
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • Thawte TLS RSA CA G1
validity period
Not valid before
2025-03-25
Not valid after
2026-03-24
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
7A:05:FD:24:01:B8:A3:3E:37:41:41:A2:E2:64:98:66:E0:16:33:58:04:D2:0C:09:91:05:29:8A:3C:1A:8D:DB
SHA1
CA:1E:20:71:99:1B:BF:7B:9C:CA:5B:A9:7E:4C:69:40:F4:94:90:3C
X509v3 extensions
authorityKeyIdentifier
  • keyid:A5:8C:FE:32:CC:EB:0F:2C:D4:19:C6:08:B8:00:24:88:5D:C3:C5:B7
subjectKeyIdentifier
  • C5:11:0A:D7:50:F3:05:D8:9C:62:07:DF:E9:F6:95:2F:4F:61:98:6E
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • CPS: http://www.digicert.com/CPS
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.thawte.com/ThawteTLSRSACAG1.crl
authorityInfoAccess
  • OCSP - URI:http://status.thawte.com
  • CA Issuers - URI:http://cacerts.thawte.com/ThawteTLSRSACAG1.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 96:97:64:BF:55:58:97:AD:F7:43:87:68:37:08:42:77:
  • E9:F0:3A:D5:F6:A4:F3:36:6E:46:A4:3F:0F:CA:A9:C6
  • Timestamp : Mar 25 15:04:26.040 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:0A:1D:29:33:D1:74:AC:1C:E5:D2:26:CD:
  • 03:9D:41:EA:D8:DC:8C:24:A9:E5:7D:7F:B6:D5:29:C3:
  • 42:A6:EE:12:02:21:00:D6:FE:9D:3E:27:95:F6:D7:0B:
  • FA:CD:16:D2:6C:2C:5A:90:8F:A2:BD:73:7E:8B:21:CF:
  • 80:32:99:E9:67:8E:8C
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 64:11:C4:6C:A4:12:EC:A7:89:1C:A2:02:2E:00:BC:AB:
  • 4F:28:07:D4:1E:35:27:AB:EA:FE:D5:03:C9:7D:CD:F0
  • Timestamp : Mar 25 15:04:26.043 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:E3:4D:D4:C5:FF:9D:24:65:FA:CE:AE:
  • BE:BF:9C:43:3E:7A:30:FE:3F:D5:D1:40:B3:72:B9:2E:
  • 57:03:DD:82:1A:02:20:32:56:A1:0B:EA:B0:61:C6:51:
  • 60:A2:4C:F2:5F:54:C9:22:42:E4:6A:43:D3:5C:39:C9:
  • 5A:42:E7:93:B0:F1:B5
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 49:9C:9B:69:DE:1D:7C:EC:FC:36:DE:CD:87:64:A6:B8:
  • 5B:AF:0A:87:80:19:D1:55:52:FB:E9:EB:29:DD:F8:C3
  • Timestamp : Mar 25 15:04:26.063 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:9C:23:2B:EE:D7:BB:45:2D:C0:D5:FE:
  • E9:79:9F:E3:89:FD:FC:8C:CD:66:E5:4C:36:76:CC:02:
  • FE:E2:18:65:3B:02:21:00:9E:C3:6E:56:A4:E4:23:AE:
  • EA:2E:7A:90:6D:AD:F5:65:23:1C:9E:6E:97:66:34:E4:
  • 56:7E:20:6F:3E:03:E3:74