SSL-Tools

SSL check results of countermail.com

NEW You can also bulk check multiple servers.

Discover if the mail servers for countermail.com can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Fri, 09 Jun 2023 18:00:35 +0000

No connection to the mailservers of countermail.com could be established.

Servers

Incoming Mails

These servers are responsible for incoming mails to @countermail.com addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
db1.countermail.com
5.226.34.35
Results incomplete
1
supported
*.countermail.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
8 s

Outgoing Mails

We have not received any emails from a @countermail.com address so far. Test mail delivery

Certificates

First seen at:

CN=*.countermail.com

Certificate chain
Subject
Common Name (CN)
  • *.countermail.com
Alternative Names
  • *.countermail.com
  • countermail.com
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert, Inc.
Common Name (CN)
  • RapidSSL Global TLS RSA4096 SHA256 2022 CA1
validity period
Not valid before
2023-02-28
Not valid after
2024-02-27
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
53:91:37:12:B2:8E:0C:11:DF:8B:CD:FE:67:A2:C3:0A:10:36:45:9A:26:C7:92:3F:1B:C9:D6:60:CE:88:21:F8
SHA1
84:FB:CE:AC:06:20:17:FF:3C:98:B4:51:02:1E:24:10:CD:B8:63:8A
X509v3 extensions
authorityKeyIdentifier
  • keyid:F0:9C:85:FD:A2:9F:7D:8F:C9:68:BB:D5:D4:89:4D:1D:BE:D3:90:FF
subjectKeyIdentifier
  • B5:C9:A9:E2:62:4C:B6:2C:5A:39:89:37:E8:8D:32:5C:1D:3F:E9:9F
crlDistributionPoints
  • Full Name:
  • URI:http://crl3.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crl
  • Full Name:
  • URI:http://crl4.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crl
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • CPS: http://www.digicert.com/CPS
authorityInfoAccess
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
  • 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
  • Timestamp : Feb 28 17:16:06.552 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:E6:72:AF:87:5F:58:1E:DB:3C:71:3C:
  • 4F:65:B8:3B:91:F0:56:D8:F6:6F:84:47:97:73:63:DB:
  • 98:28:D0:CF:4E:02:20:1C:0C:A0:64:63:34:B8:C8:AC:
  • 05:21:0C:D1:78:91:7E:B2:71:08:5C:59:94:B0:B9:1E:
  • 19:37:43:29:6F:6B:70
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 73:D9:9E:89:1B:4C:96:78:A0:20:7D:47:9D:E6:B2:C6:
  • 1C:D0:51:5E:71:19:2A:8C:6B:80:10:7A:C1:77:72:B5
  • Timestamp : Feb 28 17:16:06.646 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:24:52:A9:96:98:EA:6E:FC:7B:E0:B4:1B:
  • 8F:C3:E3:33:1A:D6:9D:DF:ED:A7:1A:B4:9D:D1:95:BC:
  • 30:FF:0E:5B:02:21:00:A4:C8:B9:2C:94:3A:82:BE:7C:
  • AB:CF:19:91:3C:E9:39:9E:11:52:1C:CA:EE:3B:6C:44:
  • 5B:90:E0:57:A0:51:E1
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Feb 28 17:16:06.569 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:F2:2C:B5:AD:38:FE:9F:D9:FD:3A:D7:
  • B8:39:52:F2:D4:69:92:67:02:0C:D3:7A:7E:47:BB:FF:
  • 18:A3:9E:D4:74:02:21:00:A5:83:46:2A:4F:4F:00:E6:
  • 52:C5:19:31:D2:9A:D8:DB:EC:99:A9:4B:F5:B0:30:6C:
  • 88:B8:55:A7:8E:17:E1:37