SSL-Tools

SSL check results of barmbek.eu

NEW You can also bulk check multiple servers.

Discover if the mail servers for barmbek.eu can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Tue, 29 Mar 2022 14:35:19 +0000

The mailservers of barmbek.eu can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @barmbek.eu addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx1.barmbek.eu
2a01:4f8:c17:3757::1
 10
supported
mx1.barmbek.eu
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
mx1.barmbek.eu
23.88.39.64
 10
supported
mx1.barmbek.eu
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @barmbek.eu address so far. Test mail delivery

Certificates

First seen at:

CN=mx1.barmbek.eu

Certificate chain
  • mx1.barmbek.eu
    • remaining
    • 256 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mx1.barmbek.eu
Alternative Names
  • mx1.barmbek.eu
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2022-02-08
Not valid after
2022-05-09
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
F0:7C:14:AB:3D:5E:7D:21:55:BC:8E:40:AD:8C:27:72:73:01:47:23:28:2B:ED:AA:2B:0E:DA:81:D0:53:FB:85
SHA1
A6:C6:52:A2:5A:75:24:0A:A2:FC:31:0C:F4:44:EC:A6:8B:64:1B:7D
X509v3 extensions
subjectKeyIdentifier
  • 29:39:D1:16:73:D4:8F:D7:9E:58:72:FB:0D:25:72:80:2D:54:88:A5
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DF:A5:5E:AB:68:82:4F:1F:6C:AD:EE:B8:5F:4E:3E:5A:
  • EA:CD:A2:12:A4:6A:5E:8E:3B:12:C0:20:44:5C:2A:73
  • Timestamp : Feb 8 22:36:01.415 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:7A:FA:8E:35:EC:38:7B:F2:CC:B0:0A:48:
  • 44:BE:D2:88:81:43:73:9A:FC:73:DA:D0:26:EE:21:E0:
  • 02:11:40:65:02:20:4B:62:43:90:C4:76:CB:B0:AA:5F:
  • 88:D6:74:E6:8B:4F:3D:97:29:22:74:D0:DD:DE:06:8F:
  • 61:63:E8:ED:90:9A
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 29:79:BE:F0:9E:39:39:21:F0:56:73:9F:63:A5:77:E5:
  • BE:57:7D:9C:60:0A:F8:F9:4D:5D:26:5C:25:5D:C7:84
  • Timestamp : Feb 8 22:36:01.403 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:FA:24:96:D9:16:52:53:30:55:0A:63:
  • 9D:42:2E:ED:60:59:9E:A4:DA:0E:46:B2:61:8C:48:41:
  • AB:56:1F:9E:41:02:20:55:1D:F7:6E:13:69:59:E9:00:
  • 9E:C5:58:98:6B:0D:20:40:C7:BB:D4:7E:51:79:3D:B4:
  • 41:93:AC:C0:9A:84:45

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mx1.barmbek.eu
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx1.barmbek.eu
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx1.barmbek.eu
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx1.barmbek.eu
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-512 Hash
valid
_25._tcp.mx1.barmbek.eu
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-512 Hash
valid
_25._tcp.mx1.barmbek.eu
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mx1.barmbek.eu
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-512 Hash
valid
_25._tcp.mx1.barmbek.eu
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-512 Hash
valid
valid