SSL-Tools

SSL check results of bremin.eu

NEW You can also bulk check multiple servers.

Discover if the mail servers for bremin.eu can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 30 May 2026 22:39:15 +0000

We can not guarantee a secure connection to the mailservers of bremin.eu!

Please contact the operator of bremin.eu and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/bremin.eu

Servers

Incoming Mails

These servers are responsible for incoming mails to @bremin.eu addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
bremin.eu
194.39.124.145
Results incomplete
0
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
21 s
mx02.mail.icloud.com
17.57.156.30
 10
supported
mx01.mail.icloud.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s
mx02.mail.icloud.com
17.56.9.31
 10
supported
mx01.mail.icloud.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
mx02.mail.icloud.com
17.57.155.25
 10
supported
mx01.mail.icloud.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
5 s
mx02.mail.icloud.com
17.42.251.62
 10
supported
mx01.mail.icloud.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s
mx02.mail.icloud.com
17.57.152.5
 10
supported
mx01.mail.icloud.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
mx02.mail.icloud.com
17.57.154.33
 10
supported
mx01.mail.icloud.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
mx01.mail.icloud.com
17.42.251.62
 10
supported
mx01.mail.icloud.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s
mx01.mail.icloud.com
17.56.9.31
 10
supported
mx01.mail.icloud.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
mx01.mail.icloud.com
17.57.155.25
 10
supported
mx01.mail.icloud.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s
mx01.mail.icloud.com
17.57.152.5
 10
supported
mx01.mail.icloud.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
mx01.mail.icloud.com
17.57.154.33
 10
supported
mx01.mail.icloud.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
mx01.mail.icloud.com
17.57.156.30
 10
supported
mx01.mail.icloud.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s

Outgoing Mails

We have not received any emails from a @bremin.eu address so far. Test mail delivery

Certificates

First seen at:

CN=mx01.mail.icloud.com,O=Apple Inc.,ST=California,C=US

Certificate chain
Subject
Country (C)
  • US
State (ST)
  • California
Organization (O)
  • Apple Inc.
Common Name (CN)
  • mx01.mail.icloud.com
Alternative Names
  • mx3.mail.icloud.com
  • mx01.mail.icloud.com
  • mx02.mail.icloud.com
Issuer
Common Name (CN)
  • Apple Public Server RSA CA 11 - G1
Organization (O)
  • Apple Inc.
State (ST)
  • California
Country (C)
  • US
validity period
Not valid before
2026-04-16
Not valid after
2026-07-09
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
Fingerprints
SHA256
43:6D:17:FC:E8:24:3D:33:A0:E2:C6:CA:85:A4:AB:2A:66:CB:5A:D4:6E:E7:93:47:93:6E:33:23:DB:36:47:AA
SHA1
5E:D9:94:F6:AC:04:FA:5E:AC:A6:DA:09:41:5F:A5:C4:F7:A6:09:28
X509v3 extensions
authorityKeyIdentifier
  • keyid:50:02:B8:13:2C:15:83:D1:41:C3:11:8A:8B:42:3B:01:23:43:A9:56
authorityInfoAccess
  • CA Issuers - URI:http://certs.apple.com/apsrsaca11g1.der
  • OCSP - URI:http://ocsp.apple.com/ocsp03-apsrsaca11g1
certificatePolicies
  • Policy: 2.23.140.1.2.2
  • CPS: https://www.apple.com/certificateauthority/public
  • Policy: 1.2.840.113635.100.5.11.4
crlDistributionPoints
  • Full Name:
  • URI:http://crl.apple.com/apsrsaca11g1.crl
subjectKeyIdentifier
  • E4:D3:0D:50:8B:E5:81:9D:44:96:EC:24:5D:B7:D2:D2:9D:3C:3A:6A
1_2_840_113635_100_6_86
  • ..
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 94:4E:43:87:FA:EC:C1:EF:81:F3:19:24:26:A8:18:65:
  • 01:C7:D3:5F:38:02:01:3F:72:67:7D:55:37:2E:19:D8
  • Timestamp : Apr 16 00:27:40.325 2026 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:EA:0D:30:DB:5E:CC:44:35:9C:AF:65:
  • BC:E0:00:22:3E:A1:B3:32:58:C4:9E:EF:B2:A8:35:FC:
  • D6:D6:02:E6:A0:02:20:4D:28:51:F5:3A:81:19:97:F1:
  • CB:B7:F5:8B:1F:52:44:3F:61:2F:44:C1:B6:59:8A:29:
  • 1F:B8:BA:D9:08:0E:11
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : C8:A3:C4:7F:C7:B3:AD:B9:35:6B:01:3F:6A:7A:12:6D:
  • E3:3A:4E:43:A5:C6:46:F9:97:AD:39:75:99:1D:CF:9A
  • Timestamp : Apr 16 00:27:40.345 2026 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:29:43:8F:94:78:E9:06:88:5C:0E:04:F3:
  • 8D:C7:A2:0C:99:F4:E1:4C:65:D9:91:1D:4F:06:69:34:
  • 1D:F5:8A:6A:02:20:6D:F0:A6:0D:1F:5E:6C:96:47:3C:
  • CF:B0:18:33:77:5E:B3:57:EB:0E:CD:C7:30:81:54:44:
  • 09:96:FA:5B:A1:D8
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : D7:6D:7D:10:D1:A7:F5:77:C2:C7:E9:5F:D7:00:BF:F9:
  • 82:C9:33:5A:65:E1:D0:B3:01:73:17:C0:C8:C5:69:77
  • Timestamp : Apr 16 00:27:40.342 2026 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:BC:91:ED:D8:AB:C1:53:4F:F4:B1:50:
  • A7:32:F2:B2:65:7E:CB:0A:82:54:C4:7C:2D:D6:DB:BE:
  • 84:D1:9D:01:AA:02:20:1F:16:AD:22:96:39:F7:ED:56:
  • 5D:F6:61:A6:B9:04:AC:2D:AC:56:4A:3E:4C:E1:60:8D:
  • 6B:7F:B3:82:5F:2F:0A
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : C2:31:7E:57:45:19:A3:45:EE:7F:38:DE:B2:90:41:EB:
  • C7:C2:21:5A:22:BF:7F:D5:B5:AD:76:9A:D9:0E:52:CD
  • Timestamp : Apr 16 00:27:40.358 2026 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:FD:FE:1F:4D:F1:39:CE:E6:21:76:E8:
  • A9:DC:74:AA:2E:8E:9D:2D:3B:3F:E2:B4:F9:1C:8A:F2:
  • 10:02:77:82:46:02:20:3C:EB:B0:4A:5D:5F:6B:85:A8:
  • 6E:2C:B7:4F:C3:83:10:02:15:15:CF:5C:B2:4D:4B:19:
  • AA:4C:51:15:7B:FA:32