SSL-Tools

SSL check results of exchange.a1.by

NEW You can also bulk check multiple servers.

Discover if the mail servers for exchange.a1.by can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Mon, 23 Sep 2024 00:30:34 +0000

The mailservers of exchange.a1.by can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @exchange.a1.by addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
smtp1.exchange.a1.by
178.163.224.18
 10
supported
smtp1.exchange.a1.by
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • SSLv3
9 s
smtp2.exchange.a1.by
178.163.224.19
 20
supported
smtp2.exchange.a1.by
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • SSLv3
9 s

Outgoing Mails

We have not received any emails from a @exchange.a1.by address so far. Test mail delivery

Certificates

First seen at:

CN=smtp2.exchange.a1.by

Certificate chain
  • smtp2.exchange.a1.by
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • smtp2.exchange.a1.by
Alternative Names
  • smtp.exchange.a1.by
  • smtp2.exchange.a1.by
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2024-08-28
Not valid after
2024-11-26
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
97:E7:54:6D:48:AB:C3:3C:D2:45:18:1E:4F:F6:DD:3B:84:F3:69:80:26:05:BD:6A:C9:4C:08:63:95:DF:FF:E5
SHA1
90:07:71:83:B3:A4:AF:34:50:BE:DF:2A:4D:49:1D:C1:05:59:8F:CE
X509v3 extensions
subjectKeyIdentifier
  • DA:2F:0C:32:21:37:A4:EB:DE:B2:6C:F3:64:0B:23:89:B3:29:7F:EE
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • OCSP - URI:http://r10.o.lencr.org
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Aug 29 00:33:44.134 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:29:61:CF:39:21:59:50:07:3B:B7:94:36:
  • 03:BC:72:3D:DD:8F:C2:83:0D:D2:05:E2:EF:43:81:7A:
  • 06:54:44:B2:02:21:00:99:20:C0:55:08:FF:CB:65:1E:
  • 25:03:22:AA:49:D0:37:EC:C8:A2:AE:6D:E8:CA:97:1F:
  • C0:01:B6:C6:6D:AF:25
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
  • B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
  • Timestamp : Aug 29 00:33:44.204 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:29:CB:7C:D7:60:7B:E7:4B:6E:A0:A9:46:
  • 74:0C:E3:A1:DC:2E:FF:B2:6B:45:28:D9:5C:EF:05:9E:
  • CD:D7:D6:B6:02:21:00:BE:13:7E:6E:A6:95:D4:2F:76:
  • E9:8F:39:73:B9:4A:E4:8A:34:61:80:78:F9:32:09:83:
  • 30:62:9C:BD:B0:60:44
First seen at:

CN=smtp1.exchange.a1.by

Certificate chain
  • smtp1.exchange.a1.by
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • smtp1.exchange.a1.by
Alternative Names
  • smtp.exchange.a1.by
  • smtp1.exchange.a1.by
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2024-08-29
Not valid after
2024-11-27
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
D2:88:10:0E:B5:D5:07:B5:1C:08:AB:BC:9A:A0:ED:9A:EE:69:45:2D:8C:0B:05:E2:36:E4:36:8A:BF:F9:CD:C0
SHA1
4A:9A:27:82:0F:42:7C:96:E9:DD:79:BE:16:B5:99:F9:E9:22:FB:25
X509v3 extensions
subjectKeyIdentifier
  • E3:8A:C8:06:83:40:84:DC:4B:D6:D4:14:C5:20:C7:E1:A9:7B:15:1E
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • OCSP - URI:http://r10.o.lencr.org
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Aug 29 04:13:11.847 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:09:E5:60:F4:2A:CC:69:3F:A5:37:66:1E:
  • E0:49:B8:06:5C:22:3F:BB:63:E3:A2:23:5C:41:87:AC:
  • 06:93:54:28:02:21:00:B1:9A:DF:3D:70:75:70:8B:97:
  • 58:60:CB:6A:42:C2:2F:A2:70:21:7F:D7:9E:60:74:3D:
  • A0:FF:0B:E7:D1:6E:39
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
  • 83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
  • Timestamp : Aug 29 04:13:11.886 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:6F:A1:3D:8F:A2:DB:A4:08:F0:31:65:6C:
  • B2:9C:FB:1C:3A:4A:1E:34:09:4A:D1:BC:89:89:7E:99:
  • C8:66:DE:7B:02:21:00:EB:17:DB:18:26:D8:71:10:4F:
  • 97:BF:2D:9B:0B:66:1D:9C:B0:C4:E8:D3:B9:CE:AC:74:
  • EB:C3:F1:03:47:8B:D8