SSL-Tools

SSL check results of gf-partner.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for gf-partner.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 08 May 2021 19:31:25 +0000

The mailservers of gf-partner.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @gf-partner.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
idsmailin11.datevnet.com
2a00:e50:f155:800::123
 0
supported
idsmailin11.datevnet.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
idsmailin11.datevnet.com
193.27.50.123
 0
supported
idsmailin11.datevnet.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
idsmailin12.datevnet.de
2a00:e50:f155:800::118
 0
supported
idsmailin12.datevnet.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
7 s
idsmailin12.datevnet.de
193.27.50.118
 0
supported
idsmailin12.datevnet.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
idsmailin13.datevnet.com
2a00:e50:f155:800::98
 0
supported
idsmailin13.datevnet.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
idsmailin13.datevnet.com
193.27.50.98
 0
supported
idsmailin13.datevnet.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
7 s
idsmailin14.datevnet.de
2a00:e50:f155:800::112
 0
supported
idsmailin14.datevnet.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
idsmailin14.datevnet.de
193.27.50.112
 0
supported
idsmailin14.datevnet.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s

Outgoing Mails

We have not received any emails from a @gf-partner.de address so far. Test mail delivery

Certificates

First seen at:

CN=idsmailin11.datevnet.com

Certificate chain
  • idsmailin11.datevnet.com
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • DST Root CA X3 (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption
Subject
Common Name (CN)
  • idsmailin11.datevnet.com
Alternative Names
  • idsmailin11.datevnet.com
  • maildomain.datevnet.com
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2021-03-22
Not valid after
2021-06-20
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
38:6E:69:9A:D2:17:83:02:80:25:0F:17:3B:EF:72:4E:09:BA:02:E2:B6:F7:C6:A8:F6:82:20:88:B2:0A:8D:F5
SHA1
1B:7E:D6:2F:C8:C7:3A:10:A6:8F:CE:A7:98:39:55:59:10:0C:CB:B0
X509v3 extensions
subjectKeyIdentifier
  • 2F:05:71:04:83:BB:38:50:FD:EC:6E:78:1E:F9:DB:75:81:F2:52:BE
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
  • 37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
  • Timestamp : Mar 22 07:28:30.903 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:84:29:A3:A1:FE:8F:D4:CE:BB:2C:7D:
  • 34:E7:3D:97:92:E0:FE:EF:0F:74:6C:5E:CD:AE:21:44:
  • 0E:7C:3E:AA:A5:02:20:2A:71:B0:E4:A2:EC:E6:7F:31:
  • BE:FC:4E:84:1D:DF:78:8F:53:02:EF:85:65:ED:06:30:
  • E8:51:E3:8C:6C:37:F3
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : F6:5C:94:2F:D1:77:30:22:14:54:18:08:30:94:56:8E:
  • E3:4D:13:19:33:BF:DF:0C:2F:20:0B:CC:4E:F1:64:E3
  • Timestamp : Mar 22 07:28:30.879 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:10:CB:83:7B:2C:6C:90:84:64:BF:25:BC:
  • DE:2D:23:7F:0A:00:6A:C2:C3:16:F7:86:65:39:28:4E:
  • 36:7A:EB:62:02:21:00:98:94:CE:33:39:3E:51:AB:FF:
  • 89:4D:BE:A6:38:53:87:E5:61:40:35:54:E9:4B:8D:45:
  • 80:19:DE:41:06:0C:DD
First seen at:

CN=idsmailin12.datevnet.de

Certificate chain
  • idsmailin12.datevnet.de
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • DST Root CA X3 (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption
Subject
Common Name (CN)
  • idsmailin12.datevnet.de
Alternative Names
  • idsmailin12.datevnet.de
  • maildomain.datevnet.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2021-03-06
Not valid after
2021-06-04
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
23:54:D0:5C:D4:FD:AA:78:73:9F:6F:A1:6F:7F:2A:F0:8F:DF:F9:5F:27:9C:6E:65:02:F4:B5:9E:5E:DC:52:0E
SHA1
06:41:9D:A5:A2:5D:EC:86:67:C1:CC:39:37:D5:B7:AA:93:2C:A7:D4
X509v3 extensions
subjectKeyIdentifier
  • 42:FB:E4:80:79:C9:6F:E9:9B:EB:6F:A1:68:06:BD:25:C2:8A:00:B0
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 94:20:BC:1E:8E:D5:8D:6C:88:73:1F:82:8B:22:2C:0D:
  • D1:DA:4D:5E:6C:4F:94:3D:61:DB:4E:2F:58:4D:A2:C2
  • Timestamp : Mar 6 07:27:59.432 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:AF:1C:B1:CA:19:25:EC:68:62:20:32:
  • 22:48:8A:FF:F6:85:7B:83:35:C0:76:38:AB:5E:A7:A0:
  • DB:98:66:83:02:02:20:0C:C0:6F:89:0E:D7:EA:30:D4:
  • DB:93:2F:76:FA:9C:88:60:A1:2D:7B:00:63:AA:67:ED:
  • 80:80:40:F9:61:13:EE
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : F6:5C:94:2F:D1:77:30:22:14:54:18:08:30:94:56:8E:
  • E3:4D:13:19:33:BF:DF:0C:2F:20:0B:CC:4E:F1:64:E3
  • Timestamp : Mar 6 07:27:59.426 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:E6:65:C8:82:8A:43:D2:DC:08:1E:54:
  • 6F:B1:F7:7E:C4:4C:F4:59:3B:6E:2A:64:C6:E1:85:33:
  • 2F:A7:46:78:92:02:20:21:38:29:FA:6B:72:D5:5E:60:
  • 26:40:56:34:AD:A2:CE:A7:F2:62:87:BD:14:2B:2B:D4:
  • 68:9C:F0:F7:93:71:7F
First seen at:

CN=idsmailin13.datevnet.com

Certificate chain
  • idsmailin13.datevnet.com
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • DST Root CA X3 (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption
Subject
Common Name (CN)
  • idsmailin13.datevnet.com
Alternative Names
  • idsmailin13.datevnet.com
  • maildomain.datevnet.com
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2021-03-22
Not valid after
2021-06-20
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
7C:3E:8B:44:BC:0C:36:17:AB:41:31:51:79:91:BE:FC:F2:C4:08:DB:7F:3C:0E:99:95:2B:9B:8F:AD:A0:B0:55
SHA1
8F:67:25:D8:7F:72:8F:A2:77:FB:FA:AC:CA:BB:A7:40:7D:EC:75:8E
X509v3 extensions
subjectKeyIdentifier
  • 49:87:07:B4:69:F2:EF:A1:F2:B1:D8:76:91:CB:A6:02:AE:97:C5:E5
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 6F:53:76:AC:31:F0:31:19:D8:99:00:A4:51:15:FF:77:
  • 15:1C:11:D9:02:C1:00:29:06:8D:B2:08:9A:37:D9:13
  • Timestamp : Mar 22 07:27:51.893 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:98:24:0C:6E:9C:34:18:99:F3:F3:54:
  • 35:2A:B2:8B:1F:94:1B:92:69:6D:1F:28:6C:24:2A:84:
  • 94:98:86:FB:08:02:21:00:CA:79:BC:46:99:C8:88:CA:
  • 82:6A:48:E8:61:45:73:52:63:DB:90:8F:48:F7:D8:28:
  • 76:00:8D:34:55:33:3B:BD
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : F6:5C:94:2F:D1:77:30:22:14:54:18:08:30:94:56:8E:
  • E3:4D:13:19:33:BF:DF:0C:2F:20:0B:CC:4E:F1:64:E3
  • Timestamp : Mar 22 07:27:51.849 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:A1:FE:57:95:D2:2A:06:FB:09:5C:5E:
  • BF:C9:81:3B:92:70:59:C2:0A:B6:92:12:76:37:63:4C:
  • D5:98:FD:B8:9F:02:21:00:C2:43:E4:5E:2D:FF:3B:36:
  • D4:F6:EA:15:46:4A:E8:A8:0F:D8:06:77:B8:E4:04:F1:
  • AB:BC:24:AA:EA:F0:BA:87
First seen at:

CN=idsmailin14.datevnet.de

Certificate chain
  • idsmailin14.datevnet.de
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • DST Root CA X3 (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption
Subject
Common Name (CN)
  • idsmailin14.datevnet.de
Alternative Names
  • idsmailin14.datevnet.de
  • maildomain.datevnet.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2021-03-06
Not valid after
2021-06-04
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
56:26:19:B9:C4:FB:46:52:39:4F:B5:9A:F3:91:7A:F6:C7:F4:9F:76:3C:18:FC:68:60:F7:44:69:8B:D0:C0:1E
SHA1
2A:E0:B0:CA:B2:D9:7C:07:D3:55:B4:35:F1:4F:62:37:6F:AE:DB:1C
X509v3 extensions
subjectKeyIdentifier
  • 3E:72:40:AD:3A:79:C0:DE:4F:8B:B7:66:95:87:16:E7:CA:24:E1:60
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
  • 37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
  • Timestamp : Mar 6 07:28:40.781 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:62:12:B8:4D:8E:C3:B9:0F:F5:5D:E4:F6:
  • 4F:BD:1F:89:98:26:44:74:C9:14:72:63:75:33:D5:70:
  • 99:D6:F3:51:02:20:52:F7:BA:DA:B0:EE:2D:4D:9C:E6:
  • E3:A8:74:8F:82:F1:2D:24:C8:FC:0C:9E:63:85:CA:F4:
  • 39:88:CB:74:89:1A
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89:
  • 79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7
  • Timestamp : Mar 6 07:28:40.810 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:F8:37:94:46:37:62:E5:53:DD:B0:56:
  • FE:73:B5:1B:D3:F0:8B:B0:ED:75:4B:1A:A0:97:67:14:
  • 02:B0:CF:03:01:02:20:78:50:58:CF:96:43:94:F0:41:
  • 28:F5:50:07:14:97:4D:96:9D:BC:CB:BD:C3:CE:9F:B7:
  • 12:A5:86:79:F5:2F:98

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.idsmailin11.datevnet.com
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.idsmailin11.datevnet.com
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.idsmailin12.datevnet.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.idsmailin12.datevnet.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.idsmailin13.datevnet.com
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.idsmailin13.datevnet.com
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.idsmailin14.datevnet.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.idsmailin14.datevnet.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid