SSL-Tools

SSL check results of guyet.net

NEW You can also bulk check multiple servers.

Discover if the mail servers for guyet.net can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 15 Feb 2025 01:33:10 +0000

The mailservers of guyet.net can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @guyet.net addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.guyet.net
90.90.180.72
 10
supported
mail.guyet.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
10 s
starfield.guyet.net
135.181.205.166
 20
supported
starfield.guyet.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @guyet.net address so far. Test mail delivery

Certificates

First seen at:

CN=starfield.guyet.net

Certificate chain
  • starfield.guyet.net
    • remaining
    • 256 bit
    • ecdsa-with-SHA384
      • E5
        • remaining
        • 384 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • starfield.guyet.net
Alternative Names
  • starfield.guyet.net
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • E5
validity period
Not valid before
2025-02-08
Not valid after
2025-05-09
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
D3:8B:B0:77:E5:35:E2:13:AE:34:68:3A:49:C2:C6:D8:EA:44:4B:EC:25:42:31:7A:F4:06:A7:4F:5A:FB:93:93
SHA1
F1:EB:06:1B:34:6B:F9:C2:1C:9C:3E:3D:C4:B3:A4:97:23:E5:4A:5F
X509v3 extensions
subjectKeyIdentifier
  • 0A:F4:8A:92:9A:CE:B6:07:C2:F9:75:1C:BA:D1:CA:D9:7F:82:C9:2B
authorityKeyIdentifier
  • keyid:9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D
authorityInfoAccess
  • OCSP - URI:http://e5.o.lencr.org
  • CA Issuers - URI:http://e5.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 73:20:22:0F:08:16:8A:F9:F3:C4:A6:8B:0A:B2:6A:9A:
  • 4A:00:EE:F5:77:85:8A:08:4D:05:00:D4:A5:42:44:59
  • Timestamp : Feb 8 17:51:50.660 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:DB:04:B3:7E:56:62:A6:94:CE:A5:F1:
  • 45:FA:66:3D:8B:2E:2C:D3:25:45:99:F1:A9:D0:86:A3:
  • CD:6F:FA:B9:D6:02:20:4D:D2:4A:C4:6C:46:39:95:86:
  • 1D:39:68:90:22:3B:7E:8E:43:F7:0D:2B:6A:9E:F5:B0:
  • 49:F0:C0:F6:09:66:3F
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
  • 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
  • Timestamp : Feb 8 17:51:50.703 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:1E:0C:E2:4C:0E:F9:3F:49:CD:30:94:40:
  • 46:9E:F2:6C:F4:90:E3:BD:41:01:89:1A:60:EC:E5:D5:
  • 6C:DA:58:F9:02:21:00:BA:96:EF:2A:E0:F7:7E:2E:C2:
  • A0:F6:F3:E2:6C:3F:47:A5:3F:97:30:D0:72:D8:D5:F3:
  • 69:6F:C4:A4:CD:DC:A3
First seen at:

CN=mail.guyet.net

Certificate chain
  • mail.guyet.net
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R11
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mail.guyet.net
Alternative Names
  • autodiscover.guyet.net
  • mail.guyet.net
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R11
validity period
Not valid before
2025-02-12
Not valid after
2025-05-13
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
6F:52:0B:72:48:48:1E:32:00:4A:6F:22:7D:B8:A9:B4:95:C2:BA:39:77:45:C7:60:23:86:1E:3F:0D:31:84:6C
SHA1
5E:1E:6A:0E:96:BF:31:E8:73:AD:F8:75:A1:F1:A2:9D:82:BA:E2:CD
X509v3 extensions
subjectKeyIdentifier
  • E9:2B:49:EF:75:EE:3E:4E:89:36:4A:3A:37:6F:4C:FF:CE:A6:6B:21
authorityKeyIdentifier
  • keyid:C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
authorityInfoAccess
  • OCSP - URI:http://r11.o.lencr.org
  • CA Issuers - URI:http://r11.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
  • D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
  • Timestamp : Feb 12 10:44:19.525 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:41:01:0C:B7:BD:9E:20:76:26:78:F1:6B:
  • 20:D2:5C:DB:8E:09:D3:02:F3:42:D2:B4:6A:30:06:F9:
  • 0B:98:69:CB:02:20:5E:59:37:0F:1D:DD:62:E0:5E:77:
  • DC:BD:8A:DD:37:73:3C:6B:4E:E9:5B:BF:D4:79:2A:51:
  • 24:86:A4:DE:8F:DA
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
  • D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
  • Timestamp : Feb 12 10:44:19.523 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:9E:AF:45:FB:0B:D9:A4:53:70:BC:0A:
  • 27:A1:05:5A:F5:B9:14:97:E5:A4:8F:9A:60:47:D7:FA:
  • 77:79:38:C6:AF:02:21:00:CD:A0:34:4A:3E:26:07:44:
  • 6F:CA:B3:D0:5D:30:C8:CF:F9:AA:F1:4F:CE:55:27:BD:
  • 10:06:9A:D3:B7:5A:32:C6