SSL-Tools

SSL check results of genua.fr

NEW You can also bulk check multiple servers.

Discover if the mail servers for genua.fr can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 13 Jun 2020 00:32:35 +0000

The mailservers of genua.fr can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @genua.fr addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
nefle.genua.fr
2001:bc8:2ad4:100::1
 1
supported
smtp.genua.fr
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
9 s
nefle.genua.fr
62.210.103.129
 1
supported
smtp.genua.fr
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
9 s
power.genua.fr
2a01:e35:39f2:f5a0:b62e:99ff:fe81:4d68
 5
supported
power.genua.fr
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
10 s
power.genua.fr
83.159.47.90
 5
supported
power.genua.fr
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
10 s

Outgoing Mails

We have not received any emails from a @genua.fr address so far. Test mail delivery

Certificates

First seen at:

CN=smtp.genua.fr

Certificate chain
Subject
Common Name (CN)
  • smtp.genua.fr
Alternative Names
  • nefle.genua.fr
  • smtp.genua.fr
  • smtp.martinez.pm
  • smtp.samir.re
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • Let's Encrypt Authority X3
validity period
Not valid before
2020-05-03
Not valid after
2020-08-01
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
25:AA:FC:7D:11:71:12:18:E4:40:8C:FF:3D:65:7C:42:C2:19:80:CC:FA:AD:7C:39:15:BA:7B:38:CD:90:3D:46
SHA1
5E:66:53:54:74:F1:E9:A5:97:76:98:9A:27:9F:44:3C:5B:DC:A3:F8
X509v3 extensions
subjectKeyIdentifier
  • EA:73:63:77:7E:A3:EB:3D:82:67:CE:A2:54:EA:44:BB:F8:19:CB:FD
authorityKeyIdentifier
  • keyid:A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1
authorityInfoAccess
  • OCSP - URI:http://ocsp.int-x3.letsencrypt.org
  • CA Issuers - URI:http://cert.int-x3.letsencrypt.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : F0:95:A4:59:F2:00:D1:82:40:10:2D:2F:93:88:8E:AD:
  • 4B:FE:1D:47:E3:99:E1:D0:34:A6:B0:A8:AA:8E:B2:73
  • Timestamp : May 3 04:06:53.203 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:03:CF:B3:04:E3:C4:82:F6:16:B2:77:A5:
  • E9:EB:2C:B6:B5:3F:A3:EC:CC:7B:25:82:C9:BD:B0:62:
  • 8E:EA:3A:44:02:20:5A:65:7A:02:3B:18:4F:A4:F1:A5:
  • 02:50:AA:4C:D9:8E:1D:8E:CD:45:C7:D1:75:F1:1C:92:
  • 9B:3B:C4:E6:33:39
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : B2:1E:05:CC:8B:A2:CD:8A:20:4E:87:66:F9:2B:B9:8A:
  • 25:20:67:6B:DA:FA:70:E7:B2:49:53:2D:EF:8B:90:5E
  • Timestamp : May 3 04:06:53.193 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:82:E6:4B:AB:28:85:84:73:9B:1C:95:
  • BC:3C:DD:00:41:F6:CD:13:C5:93:91:87:D2:E0:59:83:
  • D8:41:A1:0D:FA:02:21:00:8B:AD:B8:59:96:63:04:72:
  • FD:67:93:E3:DA:E4:DF:AE:52:4B:45:87:48:28:0B:29:
  • 65:77:A5:07:3D:29:44:27
First seen at:

CN=power.genua.fr

Certificate chain
Subject
Common Name (CN)
  • power.genua.fr
Alternative Names
  • power.genua.fr
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • Let's Encrypt Authority X3
validity period
Not valid before
2020-05-02
Not valid after
2020-07-31
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
8D:EB:6C:5D:8B:F0:59:F6:4E:59:37:CA:1E:08:DE:55:C9:C3:81:2F:94:A2:27:0D:E2:C1:21:5F:F3:B1:BB:0A
SHA1
9A:41:C8:DE:08:DB:1C:49:03:ED:1E:1D:2D:93:75:66:F7:50:27:32
X509v3 extensions
subjectKeyIdentifier
  • 46:8F:A3:77:9E:EF:98:0D:1C:44:49:25:D2:DA:32:46:6C:79:F3:8E
authorityKeyIdentifier
  • keyid:A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1
authorityInfoAccess
  • OCSP - URI:http://ocsp.int-x3.letsencrypt.org
  • CA Issuers - URI:http://cert.int-x3.letsencrypt.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : F0:95:A4:59:F2:00:D1:82:40:10:2D:2F:93:88:8E:AD:
  • 4B:FE:1D:47:E3:99:E1:D0:34:A6:B0:A8:AA:8E:B2:73
  • Timestamp : May 2 16:17:07.926 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:3F:AC:7D:9F:FA:F4:08:1D:DB:91:60:9D:
  • 94:D0:EF:B7:BA:38:2B:A3:37:19:58:D3:12:04:4C:64:
  • 22:E6:EF:A3:02:20:55:3A:49:7E:52:D4:B0:5A:8F:45:
  • 01:AA:CD:04:97:6A:71:DF:DD:6A:83:B4:1E:D1:0E:8B:
  • 63:D1:8A:99:AC:C7
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 07:B7:5C:1B:E5:7D:68:FF:F1:B0:C6:1D:23:15:C7:BA:
  • E6:57:7C:57:94:B7:6A:EE:BC:61:3A:1A:69:D3:A2:1C
  • Timestamp : May 2 16:17:08.003 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:DB:1D:DC:4B:EA:77:4D:B7:50:91:B0:
  • 8B:C6:73:0D:0B:F9:97:CF:8C:94:28:2D:8A:9C:CA:2D:
  • 63:8A:EE:72:A7:02:20:67:2C:54:E3:C1:0D:04:EC:4C:
  • AB:D6:76:7D:78:D9:48:C7:C7:AF:50:5E:8E:B2:BA:72:
  • C8:FE:56:58:5C:68:F2

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.nefle.genua.fr
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-512 Hash
valid
valid
_25._tcp.nefle.genua.fr
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-512 Hash
valid
_25._tcp.power.genua.fr
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-512 Hash
valid
valid