SSL check results of ciresmail.colorado.edu

NEW You can also bulk check multiple servers.

Discover if the mail servers for ciresmail.colorado.edu can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Tue, 13 Aug 2019 21:48:39 +0000

The mailservers of ciresmail.colorado.edu can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @ciresmail.colorado.edu addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx.colorado.edu
128.138.128.150
10
supported
mx.colorado.edu
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
17 s
mx.colorado.edu
128.138.67.77
10
supported
mx.colorado.edu
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
17 s

Outgoing Mails

We have not received any emails from a @ciresmail.colorado.edu address so far. Test mail delivery

Certificates

First seen at:

CN=mx.colorado.edu,OU=Unified Communications,OU=Hosted by University of Colorado at Boulder,OU=Office of Information Technology,O=University of Colorado at Boulder,street=455 UCB,L=Boulder,ST=CO,postalCode=80309,C=US

Certificate chain
Subject
Country (C)
  • US
Postal code
  • 80309
State (ST)
  • CO
Locality (L)
  • Boulder
Street
  • 455 UCB
Organization (O)
  • University of Colorado at Boulder
Organizational Unit (OU)
  • Office of Information Technology
  • Hosted by University of Colorado at Boulder
  • Unified Communications
Common Name (CN)
  • mx.colorado.edu
Alternative Names
  • mx.colorado.edu
  • www.mx.colorado.edu
Issuer
Country (C)
  • GB
State (ST)
  • Greater Manchester
Locality (L)
  • Salford
Organization (O)
  • Sectigo Limited
Common Name (CN)
  • Sectigo RSA Organization Validation Secure Server CA
validity period
Not valid before
2019-01-16
Not valid after
2021-01-15
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
C9:AB:FA:50:08:DB:EE:D3:A2:D6:EE:13:D7:CF:4F:4B:3B:71:88:5D:7B:25:C3:28:EA:EB:A4:C7:5E:1F:4B:C4
SHA1
E0:5C:72:FE:70:4F:11:EC:86:CE:C8:28:1B:A9:3C:F4:FD:55:D8:A6
X509v3 extensions
authorityKeyIdentifier
  • keyid:17:D9:D6:25:27:67:F9:31:C2:49:43:D9:30:36:44:8C:6C:A9:4F:EB
subjectKeyIdentifier
  • 8B:5B:44:E0:2A:10:DF:C3:C5:AA:C5:A2:77:02:95:A7:C5:0C:41:7D
certificatePolicies
  • Policy: 1.3.6.1.4.1.6449.1.2.1.3.4
  • CPS: https://sectigo.com/CPS
  • Policy: 2.23.140.1.2.2
crlDistributionPoints
  • Full Name:
  • URI:http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
authorityInfoAccess
  • CA Issuers - URI:http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
  • OCSP - URI:http://ocsp.sectigo.com
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : BB:D9:DF:BC:1F:8A:71:B5:93:94:23:97:AA:92:7B:47:
  • 38:57:95:0A:AB:52:E8:1A:90:96:64:36:8E:1E:D1:85
  • Timestamp : Jan 16 04:57:09.590 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:2C:87:45:C9:8D:73:FF:54:E8:77:64:64:
  • 79:4F:DA:62:F7:E2:2C:84:0C:29:90:FD:23:52:46:AA:
  • 92:5E:17:CA:02:21:00:AB:50:78:E0:99:95:2E:69:D7:
  • AB:0E:F0:62:41:AE:88:BC:24:DC:80:13:4B:F3:A5:99:
  • B4:C2:A2:60:6C:82:32
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 44:94:65:2E:B0:EE:CE:AF:C4:40:07:D8:A8:FE:28:C0:
  • DA:E6:82:BE:D8:CB:31:B5:3F:D3:33:96:B5:B6:81:A8
  • Timestamp : Jan 16 04:57:09.647 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:F5:83:84:57:35:4D:13:46:34:C4:49:
  • F5:27:66:3D:88:22:29:F8:36:43:C1:BB:86:87:8F:A8:
  • 2C:A1:7E:3B:A4:02:20:17:CE:8C:60:CE:25:D4:C1:DB:
  • 01:22:50:E6:7D:2A:DE:4B:00:1D:81:58:6E:18:0B:78:
  • A1:F7:CB:FE:D1:0B:05
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
  • 37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
  • Timestamp : Jan 16 04:57:09.666 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:A6:BB:18:5B:79:B4:4F:1F:8A:E6:E8:
  • E8:1E:94:39:FC:EF:38:24:1A:42:D0:DB:A1:F9:65:A6:
  • 35:2E:AE:4D:B0:02:21:00:8D:A1:BE:30:B2:A1:FF:72:
  • 71:66:BC:CC:94:72:B9:0E:52:61:9A:4C:5E:35:49:F5:
  • 54:17:08:A2:70:CA:95:DF