biglan.at - TLS / STARTTLS Test

Discover if the mail servers for biglan.at can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 28 Feb 2026 01:32:22 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Valid

The mailservers of biglan.at can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @biglan.at addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
biglan.at 95.216.163.46	10	supported	biglan.at	DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2026-02-28 2 s

Outgoing Mails

We have not received any emails from a @biglan.at address so far. Test mail delivery

Certificates

First seen at: 2026-02-15

CN=biglan.at

Certificate chain

biglan.at
- 2026-05-16 remaining
- 256 bit
- ecdsa-with-SHA384

Subject

Common Name (CN)

biglan.at

Alternative Names

biglan.at
mail.biglan.at

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2026-02-15
Not valid after: 2026-05-16

This certifcate has been verified for the following usages:

Digital Signature
TLS Web Server Authentication

Fingerprints

SHA256: C8:75:0B:17:49:5A:F6:02:1D:A4:AB:F9:52:D3:F7:DB:39:09:74:0B:3B:BE:76:B6:E0:49:4B:3C:C6:C1:3B:7C
SHA1: 01:7A:B1:6F:A3:2B:E0:7D:2F:C9:54:55:62:1B:35:C9:48:B1:26:93

X509v3 extensions

subjectKeyIdentifier

99:7B:0B:A0:EC:11:71:B1:6A:12:6E:F9:48:38:68:A4:15:10:F5:DC

authorityKeyIdentifier

keyid:AE:48:9E:DC:87:1D:44:A0:6F:DA:A2:E5:60:74:04:78:C2:9C:00:80

authorityInfoAccess

CA Issuers - URI:http://e7.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

crlDistributionPoints

Full Name:
URI:http://e7.c.lencr.org/97.crl

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:
F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7
Timestamp : Feb 15 21:17:07.533 2026 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:D6:17:18:9C:20:24:B7:33:98:B3:1A:
20:67:E5:29:93:FF:19:66:2F:DE:24:7D:59:6E:08:08:
6D:1F:64:FF:1E:02:20:3B:85:4A:9D:2B:73:6D:82:FE:
4C:7C:15:46:E8:E7:EB:4A:82:2F:8F:4D:43:8E:E0:5B:
A5:3D:AF:91:23:E2:05
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : D1:6E:A9:A5:68:07:7E:66:35:A0:3F:37:A5:DD:BC:03:
A5:3C:41:12:14:D4:88:18:F5:E9:31:B3:23:CB:95:04
Timestamp : Feb 15 21:17:07.747 2026 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:B9:E0:93:40:B1:CF:99:62:48:0C:03:
41:29:3B:24:39:2B:79:A1:0D:AA:45:5F:73:36:4B:8B:
B6:A3:AE:DB:0F:02:20:5A:20:72:A5:3A:FC:69:85:76:
FC:51:AC:E4:B0:93:C3:05:7D:22:9A:9C:4E:6F:33:44:
CA:FD:4E:6D:9A:06:4E

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name	Options	DNSSEC	Matches
_25._tcp.biglan.at	DANE-EE: Domain Issued Certificate Use full certificate SHA-256 Hash	valid	valid
_25._tcp.biglan.at	DANE-TA: Trust Anchor Assertion Use subject public key SHA-512 Hash	valid	valid
_25._tcp.biglan.at	DANE-EE: Domain Issued Certificate Use subject public key SHA-512 Hash	valid	valid
_25._tcp.biglan.at	DANE-EE: Domain Issued Certificate Use full certificate SHA-512 Hash	valid	valid
_25._tcp.biglan.at	DANE-TA: Trust Anchor Assertion Use full certificate SHA-512 Hash	valid	valid
_25._tcp.biglan.at	DANE-TA: Trust Anchor Assertion Use subject public key SHA-256 Hash	valid	valid
_25._tcp.biglan.at	DANE-EE: Domain Issued Certificate Use subject public key SHA-256 Hash	valid	valid
_25._tcp.biglan.at	DANE-TA: Trust Anchor Assertion Use full certificate SHA-256 Hash	valid	valid

SSL check results of biglan.at