SSL-Tools

SSL check results of better-orange.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for better-orange.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 14 Apr 2021 20:18:57 +0000

The mailservers of better-orange.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @better-orange.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.better-orange.de
80.153.0.95
 10
supported
mail.better-orange.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Outgoing Mails

We have received emails from these servers with @better-orange.de sender addresses. Test mail delivery

Host TLS Version & Cipher
mail.better-orange.de (80.153.0.95)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384

Certificates

First seen at:

CN=mail.better-orange.de

Certificate chain
Subject
Common Name (CN)
  • mail.better-orange.de
Alternative Names
  • mail.better-orange.de
  • autodiscover.better-orange.de
Issuer
Country (C)
  • GB
State (ST)
  • Greater Manchester
Locality (L)
  • Salford
Organization (O)
  • Sectigo Limited
Common Name (CN)
  • Sectigo RSA Domain Validation Secure Server CA
validity period
Not valid before
2021-01-20
Not valid after
2022-01-20
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
18:3F:E7:ED:EB:DD:08:FF:46:1C:A5:34:27:75:DC:46:4F:21:04:47:12:B3:9F:E9:DA:23:A8:87:79:83:4C:C6
SHA1
6B:A3:E9:0B:98:8E:C4:F0:02:54:B3:C8:62:1E:F0:56:8B:91:27:EE
X509v3 extensions
authorityKeyIdentifier
  • keyid:8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
subjectKeyIdentifier
  • 20:9A:6A:FF:43:9A:79:EC:35:85:DB:39:6B:67:7D:2A:F0:D6:B0:06
certificatePolicies
  • Policy: 1.3.6.1.4.1.6449.1.2.2.7
  • CPS: https://sectigo.com/CPS
  • Policy: 2.23.140.1.2.1
authorityInfoAccess
  • CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
  • OCSP - URI:http://ocsp.sectigo.com
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
  • 11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
  • Timestamp : Jan 20 10:23:26.946 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:C3:22:C0:77:5E:F1:B1:BD:34:67:F2:
  • 00:0B:F2:A3:30:CD:1B:2F:1D:24:25:59:47:CC:93:91:
  • B3:A7:40:BC:77:02:20:0F:36:EF:29:72:9A:DD:F6:2A:
  • F8:D8:C9:0E:EB:F1:8E:E3:68:00:9C:70:02:F1:CF:B7:
  • DA:A1:FD:D8:03:94:70
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DF:A5:5E:AB:68:82:4F:1F:6C:AD:EE:B8:5F:4E:3E:5A:
  • EA:CD:A2:12:A4:6A:5E:8E:3B:12:C0:20:44:5C:2A:73
  • Timestamp : Jan 20 10:23:27.147 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:D6:1C:B0:5F:48:1D:23:19:D6:B5:D4:
  • C2:BB:B3:DE:E2:0D:32:3E:54:30:99:77:80:25:A3:FF:
  • 59:7E:37:62:08:02:20:45:00:3B:21:59:8B:C0:07:07:
  • 8E:1A:09:89:42:D8:51:B7:01:FE:86:58:C0:B5:35:68:
  • 59:39:C4:F0:DF:57:5E