SSL check results of ass.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for ass.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Thu, 24 Apr 2025 07:54:42 +0000

The mailservers of ass.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @ass.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.pa.ass.de
2a01:4f8:d1:6f3a::12:29
10
supported
mail.pa.ass.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
mail.pa.ass.de
49.12.163.42
10
supported
mail.pa.ass.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
mail.pa.assgroup.de
2a01:4f8:d0:e03a::39
20
supported
mail.pa.assgroup.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
3 s
mail.pa.assgroup.de
116.202.95.66
Results incomplete
20 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s

Outgoing Mails

We have not received any emails from a @ass.de address so far. Test mail delivery

Certificates

First seen at:

CN=mail.pa.ass.de

Certificate chain
Subject
Common Name (CN)
  • mail.pa.ass.de
Alternative Names
  • mail.pa.ass.de
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • Thawte TLS RSA CA G1
validity period
Not valid before
2025-03-25
Not valid after
2026-03-24
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
7A:05:FD:24:01:B8:A3:3E:37:41:41:A2:E2:64:98:66:E0:16:33:58:04:D2:0C:09:91:05:29:8A:3C:1A:8D:DB
SHA1
CA:1E:20:71:99:1B:BF:7B:9C:CA:5B:A9:7E:4C:69:40:F4:94:90:3C
X509v3 extensions
authorityKeyIdentifier
  • keyid:A5:8C:FE:32:CC:EB:0F:2C:D4:19:C6:08:B8:00:24:88:5D:C3:C5:B7
subjectKeyIdentifier
  • C5:11:0A:D7:50:F3:05:D8:9C:62:07:DF:E9:F6:95:2F:4F:61:98:6E
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • CPS: http://www.digicert.com/CPS
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.thawte.com/ThawteTLSRSACAG1.crl
authorityInfoAccess
  • OCSP - URI:http://status.thawte.com
  • CA Issuers - URI:http://cacerts.thawte.com/ThawteTLSRSACAG1.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 96:97:64:BF:55:58:97:AD:F7:43:87:68:37:08:42:77:
  • E9:F0:3A:D5:F6:A4:F3:36:6E:46:A4:3F:0F:CA:A9:C6
  • Timestamp : Mar 25 15:04:26.040 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:0A:1D:29:33:D1:74:AC:1C:E5:D2:26:CD:
  • 03:9D:41:EA:D8:DC:8C:24:A9:E5:7D:7F:B6:D5:29:C3:
  • 42:A6:EE:12:02:21:00:D6:FE:9D:3E:27:95:F6:D7:0B:
  • FA:CD:16:D2:6C:2C:5A:90:8F:A2:BD:73:7E:8B:21:CF:
  • 80:32:99:E9:67:8E:8C
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 64:11:C4:6C:A4:12:EC:A7:89:1C:A2:02:2E:00:BC:AB:
  • 4F:28:07:D4:1E:35:27:AB:EA:FE:D5:03:C9:7D:CD:F0
  • Timestamp : Mar 25 15:04:26.043 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:E3:4D:D4:C5:FF:9D:24:65:FA:CE:AE:
  • BE:BF:9C:43:3E:7A:30:FE:3F:D5:D1:40:B3:72:B9:2E:
  • 57:03:DD:82:1A:02:20:32:56:A1:0B:EA:B0:61:C6:51:
  • 60:A2:4C:F2:5F:54:C9:22:42:E4:6A:43:D3:5C:39:C9:
  • 5A:42:E7:93:B0:F1:B5
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 49:9C:9B:69:DE:1D:7C:EC:FC:36:DE:CD:87:64:A6:B8:
  • 5B:AF:0A:87:80:19:D1:55:52:FB:E9:EB:29:DD:F8:C3
  • Timestamp : Mar 25 15:04:26.063 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:9C:23:2B:EE:D7:BB:45:2D:C0:D5:FE:
  • E9:79:9F:E3:89:FD:FC:8C:CD:66:E5:4C:36:76:CC:02:
  • FE:E2:18:65:3B:02:21:00:9E:C3:6E:56:A4:E4:23:AE:
  • EA:2E:7A:90:6D:AD:F5:65:23:1C:9E:6E:97:66:34:E4:
  • 56:7E:20:6F:3E:03:E3:74
First seen at:

CN=mail.pa.assgroup.de

Certificate chain
  • mail.pa.assgroup.de
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption

      • R11
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption

Subject
Common Name (CN)
  • mail.pa.assgroup.de
Alternative Names
  • mail.pa.assgroup.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R11
validity period
Not valid before
2025-03-31
Not valid after
2025-06-29
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
53:5E:B3:F2:32:77:F2:FE:7B:F9:B0:84:D4:99:F3:AA:BF:72:A7:10:48:AD:CF:97:A9:F1:5F:1E:31:B4:0C:11
SHA1
0B:FB:6C:47:B3:37:96:66:9A:80:1C:D6:22:CD:0E:77:05:57:55:E4
X509v3 extensions
subjectKeyIdentifier
  • 34:67:40:D1:C0:FB:CE:A6:CC:7E:C5:84:6C:5F:45:A3:DB:F3:C0:AE
authorityKeyIdentifier
  • keyid:C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
authorityInfoAccess
  • OCSP - URI:http://r11.o.lencr.org
  • CA Issuers - URI:http://r11.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r11.c.lencr.org/6.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 0D:E1:F2:30:2B:D3:0D:C1:40:62:12:09:EA:55:2E:FC:
  • 47:74:7C:B1:D7:E9:30:EF:0E:42:1E:B4:7E:4E:AA:34
  • Timestamp : Apr 1 00:04:32.225 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:18:C9:8F:4D:62:B3:55:33:CC:19:F4:EE:
  • 3D:AA:DE:FF:A7:6C:61:BF:DC:FC:7C:85:BF:BC:22:93:
  • 61:C3:E8:9C:02:21:00:AE:A9:93:12:C7:3E:54:44:13:
  • 35:C2:16:A5:9B:F9:EB:47:F6:C6:3A:93:59:11:30:44:
  • 6A:68:7E:B1:75:24:5C
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
  • 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
  • Timestamp : Apr 1 00:04:32.271 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:F8:0E:10:D3:2A:D5:70:E7:22:2F:DA:
  • 46:91:B0:7D:25:65:F8:B1:14:9D:8A:B2:AE:68:88:2C:
  • 3F:EF:3F:5C:7B:02:21:00:FF:54:05:ED:E3:7B:AF:13:
  • 9C:99:E4:2D:25:BE:01:57:28:93:4B:0A:E8:5F:2E:65:
  • 07:E0:CA:92:74:76:FB:F7