SSL check results of hermod.arnested.dk

NEW You can also bulk check multiple servers.

Discover if the mail servers for hermod.arnested.dk can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Wed, 13 Jan 2021 07:37:42 +0000

The mailservers of hermod.arnested.dk can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @hermod.arnested.dk addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
hermod.arnested.dk
2a02:c207:2007:7741::1
10
supported
hermod.arnested.dk
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
14 s
hermod.arnested.dk
5.189.168.47
10
supported
hermod.arnested.dk
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
13 s

Outgoing Mails

We have received emails from these servers with @hermod.arnested.dk sender addresses. Test mail delivery

Host TLS Version & Cipher
hermod.arnested.dk (5.189.168.47)
TLSv1.2 AECDH-AES256-SHA
hermod.arnested.dk (IPv6:2a02:c207:2007:7741::1)
TLSv1.2 AECDH-AES256-SHA

Certificates

First seen at:

CN=hermod.arnested.dk

Certificate chain
  • hermod.arnested.dk
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption

      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • DST Root CA X3 (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption

Subject
Common Name (CN)
  • hermod.arnested.dk
Alternative Names
  • hermod.arnested.dk
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2021-01-01
Not valid after
2021-04-01
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
85:30:85:BB:64:71:F1:8E:65:EC:6C:2F:2E:B8:02:DB:FC:B2:01:02:38:03:BA:F3:6C:5A:B6:7D:97:8A:07:E8
SHA1
E2:11:81:FA:9C:DD:F7:09:3F:41:60:99:93:9D:CF:62:17:17:DF:D4
X509v3 extensions
subjectKeyIdentifier
  • 3E:AD:BB:11:5F:E5:CF:E2:08:91:D6:F6:9D:82:32:BA:78:69:6B:0D
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
  • 37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
  • Timestamp : Jan 1 01:22:08.297 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:4F:67:FA:BC:83:6B:1A:24:60:B8:BA:C1:
  • A2:21:74:06:A4:AB:4C:0C:5F:56:94:C4:FF:DC:53:A3:
  • F8:7D:D7:DB:02:20:6C:70:6D:3F:4B:43:36:08:FE:F3:
  • 2A:77:BA:A1:1C:F5:7D:9B:AB:A9:98:2F:F1:4A:3E:C5:
  • 45:89:40:50:8F:E5
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : F6:5C:94:2F:D1:77:30:22:14:54:18:08:30:94:56:8E:
  • E3:4D:13:19:33:BF:DF:0C:2F:20:0B:CC:4E:F1:64:E3
  • Timestamp : Jan 1 01:22:08.311 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:D1:3B:51:B7:08:05:6A:1D:6E:F4:4B:
  • 83:AC:C4:B1:D6:3E:49:C8:1F:3B:B4:C8:66:4B:99:3E:
  • 3C:9A:E2:8B:9B:02:21:00:95:FD:07:BD:B1:DB:5E:E2:
  • DC:B9:F8:BB:80:D4:D0:57:80:E1:EF:BD:8F:76:F8:A0:
  • 46:07:E4:F9:CC:6F:20:6F