SSL check results of decartgroup.com

NEW You can also bulk check multiple servers.

Discover if the mail servers for decartgroup.com can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Thu, 21 Nov 2024 01:30:06 +0000

We can not guarantee a secure connection to the mailservers of decartgroup.com!

Please contact the operator of decartgroup.com and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/decartgroup.com

Servers

Incoming Mails

These servers are responsible for incoming mails to @decartgroup.com addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
route1.mx.cloudflare.net
2606:4700:f5::d
Results incomplete
12
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
route1.mx.cloudflare.net
2606:4700:f5::c
Results incomplete
12
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
route1.mx.cloudflare.net
2606:4700:f5::b
Results incomplete
12
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
route1.mx.cloudflare.net
162.159.205.11
12
supported
*.mx.cloudflare.net
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
route1.mx.cloudflare.net
162.159.205.13
12
supported
*.mx.cloudflare.net
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
route1.mx.cloudflare.net
162.159.205.12
12
supported
*.mx.cloudflare.net
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
route2.mx.cloudflare.net
2606:4700:f5::10
Results incomplete
47
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
route2.mx.cloudflare.net
2606:4700:f5::e
Results incomplete
47
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
route2.mx.cloudflare.net
2606:4700:f5::f
Results incomplete
47
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
route2.mx.cloudflare.net
162.159.205.18
47
supported
*.mx.cloudflare.net
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
route2.mx.cloudflare.net
162.159.205.19
47
supported
*.mx.cloudflare.net
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
route2.mx.cloudflare.net
162.159.205.17
47
supported
*.mx.cloudflare.net
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
route3.mx.cloudflare.net
2606:4700:f5::12
Results incomplete
53
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
2 s
route3.mx.cloudflare.net
2606:4700:f5::11
Results incomplete
53
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
2 s
route3.mx.cloudflare.net
2606:4700:f5::13
Results incomplete
53
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
route3.mx.cloudflare.net
162.159.205.23
53
supported
*.mx.cloudflare.net
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
route3.mx.cloudflare.net
162.159.205.25
53
supported
*.mx.cloudflare.net
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
route3.mx.cloudflare.net
162.159.205.24
53
supported
*.mx.cloudflare.net
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @decartgroup.com address so far. Test mail delivery

Certificates

First seen at:

CN=*.mx.cloudflare.net,O=Cloudflare\, Inc.,L=San Francisco,ST=California,C=US

Certificate chain
Subject
Country (C)
  • US
State (ST)
  • California
Locality (L)
  • San Francisco
Organization (O)
  • Cloudflare, Inc.
Common Name (CN)
  • *.mx.cloudflare.net
Alternative Names
  • *.mx.cloudflare.net
  • mx.cloudflare.net
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Common Name (CN)
  • DigiCert Global G2 TLS RSA SHA256 2020 CA1
validity period
Not valid before
2023-12-13
Not valid after
2025-01-12
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
DC:E9:C1:79:FB:69:3C:85:C2:6E:8B:5D:13:E4:D6:A0:82:03:05:18:FC:9E:5C:32:CE:1C:79:DB:A7:DE:06:AB
SHA1
08:A0:B3:63:73:5B:7B:BF:20:49:52:53:35:88:07:D5:BA:B2:C7:B1
X509v3 extensions
authorityKeyIdentifier
  • keyid:74:85:80:C0:66:C7:DF:37:DE:CF:BD:29:37:AA:03:1D:BE:ED:CD:17
subjectKeyIdentifier
  • 81:6C:A3:B8:D3:FD:29:CD:C7:F2:04:FE:A2:31:07:28:B0:35:35:29
certificatePolicies
  • Policy: 2.23.140.1.2.2
  • CPS: http://www.digicert.com/CPS
crlDistributionPoints
  • Full Name:
  • URI:http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
  • Full Name:
  • URI:http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
authorityInfoAccess
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
  • 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
  • Timestamp : Dec 13 12:42:27.442 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:94:BA:62:11:68:99:6A:05:7E:E6:0A:
  • 31:33:54:7B:D0:7A:EA:A8:F2:2D:38:52:AC:69:BD:98:
  • 43:B6:AD:50:6F:02:20:24:C6:DD:71:EC:7D:89:54:ED:
  • 55:F8:82:C7:73:DB:04:25:5D:54:A3:B8:BA:6C:63:82:
  • 1E:5B:74:65:C3:EF:5A
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
  • ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
  • Timestamp : Dec 13 12:42:27.506 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:9F:FC:23:39:90:22:A8:AF:4A:AC:63:
  • 70:A0:B0:14:2F:85:D6:2B:6D:3E:43:15:B9:9C:CC:B0:
  • C6:84:2E:74:24:02:20:3A:64:E2:4D:AF:63:1A:BE:86:
  • 21:A7:CB:11:A5:9E:DF:ED:D3:F3:A1:34:D4:02:D9:DA:
  • 7A:0E:C6:6E:10:F5:05
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
  • 87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
  • Timestamp : Dec 13 12:42:27.497 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:C1:05:8A:F1:08:C9:D0:3D:D3:3D:25:
  • FB:F4:B6:B3:8F:F0:80:8A:1F:8D:32:53:03:44:0B:84:
  • 1D:D6:9A:FE:69:02:20:33:B4:98:00:8D:12:9B:B4:4E:
  • EB:53:96:ED:3E:41:C6:ED:AD:9B:51:E4:62:95:D3:60:
  • 1C:AC:2C:5C:9F:9C:C2

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.route3.mx.cloudflare.net
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.route3.mx.cloudflare.net
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.route1.mx.cloudflare.net
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.route1.mx.cloudflare.net
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.route2.mx.cloudflare.net
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.route2.mx.cloudflare.net
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid