SSL-Tools

SSL check results of bedandbreakfastoostelbeers.nl

NEW You can also bulk check multiple servers.

Discover if the mail servers for bedandbreakfastoostelbeers.nl can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Fri, 29 Nov 2024 01:31:12 +0000

We can not guarantee a secure connection to the mailservers of bedandbreakfastoostelbeers.nl!

Please contact the operator of bedandbreakfastoostelbeers.nl and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/bedandbreakfastoostelbeers.nl

Servers

Incoming Mails

These servers are responsible for incoming mails to @bedandbreakfastoostelbeers.nl addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.bedandbreakfastoostelbeers.nl
2a05:d014:14f:aa1c:9567:df79:58ec:1ff7
Results incomplete
1 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
mail.bedandbreakfastoostelbeers.nl
52.29.174.51
 1
supported
bedandbreakfastoostelbeers.nl
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
mxlb.ispgateway.de
80.67.18.126
Results incomplete
100
supported
not checked
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
bounce.argewebhosting.nl
2001:678:76c:1:3996::48
Results incomplete
150
supported
not checked
DANE
errors
PFS
unsupported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
bounce.argewebhosting.nl
145.131.15.48
Results incomplete
150
supported
not checked
DANE
errors
PFS
unsupported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @bedandbreakfastoostelbeers.nl address so far. Test mail delivery

Certificates

First seen at:

CN=bedandbreakfastoostelbeers.nl

Certificate chain
  • bedandbreakfastoostelbeers.nl
    • remaining
    • 256 bit
    • ecdsa-with-SHA384
    • Hostname Mismatch
      • E6
        • remaining
        • 384 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • bedandbreakfastoostelbeers.nl
Alternative Names
  • bedandbreakfastoostelbeers.nl
  • webmail.bedandbreakfastoostelbeers.nl
  • www.bedandbreakfastoostelbeers.nl
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • E6
validity period
Not valid before
2024-11-25
Not valid after
2025-02-23
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
95:17:98:8F:8E:78:E9:76:C5:B2:55:28:68:26:5F:B7:87:A1:FF:5E:73:15:59:23:4F:71:C0:2C:9A:A3:CC:30
SHA1
33:83:79:07:7C:F4:D8:00:3C:9F:22:A2:03:2B:DE:0B:8E:67:04:51
X509v3 extensions
subjectKeyIdentifier
  • 34:6F:C3:10:B0:18:9F:8D:69:55:44:0A:92:F4:9D:EB:87:AB:B5:D7
authorityKeyIdentifier
  • keyid:93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2
authorityInfoAccess
  • OCSP - URI:http://e6.o.lencr.org
  • CA Issuers - URI:http://e6.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
  • 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
  • Timestamp : Nov 25 16:10:32.261 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:F0:02:FA:DA:4F:D2:9D:67:79:5D:C6:
  • 2F:1F:9B:4A:1A:5B:C9:D9:ED:17:0D:32:57:7B:17:FC:
  • A9:D4:86:95:75:02:20:64:0A:77:5F:45:FA:B3:E1:4F:
  • 3E:1D:29:67:3A:10:D2:20:DA:E3:DC:36:6D:5A:67:6A:
  • 18:D7:73:79:13:2D:E1
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
  • 16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
  • Timestamp : Nov 25 16:10:32.517 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:D8:DB:6D:39:4A:3C:DE:26:61:5F:ED:
  • F1:ED:BE:9A:F0:6F:BD:E3:1B:7A:2C:C2:3A:B5:00:9B:
  • 0C:43:CE:61:A9:02:21:00:D5:EF:DB:F6:91:26:4B:D0:
  • D4:F7:CE:FA:94:1E:F1:ED:EB:0D:0D:5E:34:0A:F9:BD:
  • 87:F6:DC:1C:89:85:BC:9F

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.bounce.argewebhosting.nl
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.bounce.argewebhosting.nl
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid