ceridwen.com - TLS / STARTTLS Test

Discover if the mail servers for ceridwen.com can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Tue, 09 Jan 2024 21:26:30 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of ceridwen.com can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @ceridwen.com addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mxa.ceridwen.com 2001:bc8:2e29:120::2010	50	supported	mxa.ceridwen.com	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 ~~SSLv3~~	2024-01-09 2 s
mxa.ceridwen.com 163.172.200.4	50	supported	mxa.ceridwen.com	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 ~~SSLv3~~	2024-01-09 2 s
mxb.ceridwen.com 2001:bc8:2e29:120::2020	80	supported	mxb.ceridwen.com	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 ~~SSLv3~~	2024-01-09 2 s
mxb.ceridwen.com 195.154.55.120	80	supported	mxb.ceridwen.com	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 ~~SSLv3~~	2024-01-09 2 s

Outgoing Mails

We have not received any emails from a @ceridwen.com address so far. Test mail delivery

Certificates

First seen at: 2024-01-09

CN=mxa.ceridwen.com

Certificate chain

mxa.ceridwen.com
- 2024-03-09 remaining
- 4096 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

mxa.ceridwen.com

Alternative Names

mxa.ceridwen.com

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2023-12-10
Not valid after: 2024-03-09

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: EC:84:D1:4F:EB:F5:A9:E6:1F:C3:1C:C5:D6:A8:0C:06:AD:7A:19:E8:AC:CE:BA:DB:81:C1:A2:74:D2:97:28:89
SHA1: D9:C9:5D:95:98:4B:57:D5:8C:70:54:32:5A:5C:A5:BF:6D:A0:62:A8

X509v3 extensions

subjectKeyIdentifier

09:66:E9:F8:0D:6D:0C:EA:68:8F:7D:4E:6D:3E:DE:40:84:97:D3:A6

authorityKeyIdentifier

keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6

authorityInfoAccess

OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Dec 10 13:59:59.802 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:1E:86:37:08:A0:DD:CE:3B:30:B6:17:9C:
30:24:83:1A:34:42:D9:42:2D:7D:8A:4D:4E:BC:23:0A:
A3:0C:0A:9A:02:20:0F:33:39:A4:83:75:9F:ED:01:25:
00:10:08:F2:BA:42:5A:4D:54:98:49:79:19:35:F5:87:
79:D3:13:87:92:A7
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Dec 10 13:59:59.804 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:41:8C:AC:8D:D5:45:22:A2:73:9C:1C:3D:
4C:C2:32:A8:C5:43:8F:7A:2E:5D:4C:D5:AE:34:5B:B8:
27:4A:89:27:02:21:00:F1:FF:45:86:9F:F3:D4:09:AE:
AC:37:CC:2C:68:D3:24:A1:19:32:5C:48:62:CA:2B:45:
73:6E:EF:B4:63:E0:60

First seen at: 2024-01-09

CN=mxb.ceridwen.com

Certificate chain

mxb.ceridwen.com
- 2024-03-09 remaining
- 4096 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

mxb.ceridwen.com

Alternative Names

mxb.ceridwen.com

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2023-12-10
Not valid after: 2024-03-09

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: CA:AC:5E:74:99:F1:A9:AB:3C:7D:78:D6:E4:08:BD:10:D0:D0:B5:89:4A:F5:75:30:7D:9C:2B:7A:97:D5:D4:87
SHA1: E1:4D:90:8C:56:0F:8C:BC:6F:BB:89:A4:8D:34:C0:D6:2E:82:89:D0

X509v3 extensions

subjectKeyIdentifier

1F:56:6B:62:D9:78:3A:EA:DD:2B:07:60:41:0F:32:70:7C:2C:A7:98

authorityKeyIdentifier

keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6

authorityInfoAccess

OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Dec 10 14:00:20.039 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:0C:9D:B3:35:77:B5:F3:E5:18:4F:70:7B:
AB:67:66:C7:BB:1B:0C:38:C9:BA:21:D7:A5:6B:5E:BD:
2F:44:A6:08:02:21:00:AD:19:1E:70:8B:71:02:E4:03:
6C:C2:C4:78:65:83:C2:7E:EF:F3:76:CC:F6:7D:FD:6F:
87:73:41:7E:C6:2A:7B
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
Timestamp : Dec 10 14:00:20.121 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:CD:04:0D:D0:61:85:AF:5F:B2:A5:68:
ED:40:D2:88:8C:99:7D:42:FC:01:56:37:9A:CD:5E:07:
BE:97:AE:B2:3F:02:21:00:B5:82:A4:FD:36:70:DD:94:
10:D5:24:15:6F:A4:3C:33:A9:9E:B2:94:85:E1:B8:45:
5E:A6:1E:3B:D9:95:E8:9C

SSL check results of ceridwen.com

Summary

The mailservers of ceridwen.com can be reached through a secure connection.

Servers

Incoming Mails

Outgoing Mails

Certificates

CN=mxa.ceridwen.com

CN=mxb.ceridwen.com