SSL check results of cnob.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for cnob.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Mon, 16 Jun 2025 00:30:16 +0000

The mailservers of cnob.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @cnob.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
home.cnob.de
130.180.66.214
10
supported
*.cnob.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
4 s
mail2.cnob.de
176.9.47.84
20
supported
cnob.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
5 s

Outgoing Mails

We have not received any emails from a @cnob.de address so far. Test mail delivery

Certificates

First seen at:

CN=cnob.de

Certificate chain
  • cnob.de
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption

      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption

Subject
Common Name (CN)
  • cnob.de
Alternative Names
  • *.cnob.de
  • cnob.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2025-05-31
Not valid after
2025-08-29
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
69:44:44:B6:0F:20:F8:A2:07:99:2F:A7:D3:20:82:90:0B:86:B0:7C:39:3A:67:7C:14:22:59:8C:9C:3C:45:3A
SHA1
80:F4:66:F6:32:54:F0:A4:9E:1E:FB:C3:8A:91:63:2D:07:A5:1F:88
X509v3 extensions
subjectKeyIdentifier
  • 3D:49:CC:5C:94:16:64:DB:5A:18:90:B7:94:93:57:6A:49:23:23:E5
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r10.c.lencr.org/59.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
  • 22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
  • Timestamp : May 31 22:03:48.472 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:5C:17:15:BC:E3:16:41:B6:E8:AD:19:8B:
  • 97:8E:68:57:A0:56:A0:6C:BA:A2:E8:33:9C:A0:B7:F4:
  • 1C:54:DC:43:02:20:6E:4A:C1:C2:47:F0:21:6A:57:1E:
  • B8:63:45:0C:8B:C9:69:87:84:A4:93:97:A0:A6:C0:76:
  • C8:0A:06:37:43:BF
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:42:C5:06:49:60:61:54:8F:0F:D4:EA:9C:FB:7A:2D:
  • 26:45:4D:87:A9:7F:2F:DF:45:59:F6:27:4F:3A:84:54
  • Timestamp : May 31 22:03:48.473 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:FC:09:A8:FE:AA:87:E6:D5:80:40:4B:
  • 7E:81:5A:54:AC:8C:B8:D6:1D:E1:85:E9:10:6E:5E:E2:
  • 6E:F6:B7:63:24:02:21:00:9C:71:3F:3D:E7:99:95:43:
  • 10:49:67:5A:83:94:5D:BD:25:F8:8D:60:32:70:6F:0E:
  • 7E:37:BB:43:C3:02:04:38
First seen at:

CN=*.cnob.de

Certificate chain
  • *.cnob.de
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption

      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption

Subject
Common Name (CN)
  • *.cnob.de
Alternative Names
  • *.cnob.de
  • *.home.cnob.de
  • cnob.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2025-05-23
Not valid after
2025-08-21
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
A2:BA:6C:8B:19:27:BA:3A:3E:86:52:E9:A4:28:3C:F6:DF:1C:9A:0A:F5:06:19:75:BD:C8:47:FE:90:94:5B:32
SHA1
5A:25:BF:83:F0:70:A6:0F:9A:BC:DF:22:37:48:53:4D:C0:01:DC:60
X509v3 extensions
subjectKeyIdentifier
  • B4:5F:CC:3E:8B:38:85:5E:2E:B0:92:A0:42:C6:D9:AE:CB:36:D6:7A
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r10.c.lencr.org/14.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : ED:3C:4B:D6:E8:06:C2:A4:A2:00:57:DB:CB:24:E2:38:
  • 01:DF:51:2F:ED:C4:86:C5:70:0F:20:DD:B7:3E:3F:E0
  • Timestamp : May 23 20:49:21.475 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:B6:AE:F6:2D:0A:D6:6E:B9:DA:77:F5:
  • 54:EC:4E:FC:B3:18:D0:51:2C:74:34:F0:7F:19:D0:15:
  • F8:F9:6E:A5:47:02:20:15:BB:05:03:00:C3:B8:8E:5F:
  • 71:BB:2D:60:17:37:70:C4:36:61:D6:A2:A6:C2:C5:FC:
  • 26:97:BA:3E:40:A2:33
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
  • F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
  • Timestamp : May 23 20:49:21.499 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:E8:13:38:0E:08:D7:AC:A7:02:15:AF:
  • 20:E2:88:59:43:DA:32:44:2D:43:F7:32:87:B9:A7:3F:
  • D9:73:BA:C6:D8:02:21:00:84:E0:E0:49:CF:85:8F:63:
  • E7:2A:DD:ED:6F:25:FC:AF:5E:DA:58:E6:2E:9B:F5:4E:
  • B4:22:A8:B0:21:FE:7B:05