herne.de - TLS / STARTTLS Test

Discover if the mail servers for herne.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Tue, 21 Dec 2021 14:47:17 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of herne.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @herne.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mailgate.herne.de 194.24.230.133	10	supported	*.herne.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2021-12-21 1 s

Outgoing Mails

We have not received any emails from a @herne.de address so far. Test mail delivery

Certificates

First seen at: 2020-09-11

CN=*.herne.de,OU=IT,O=Stadt Herne,L=Herne,ST=Nordrhein-Westfalen,C=DE

Certificate chain

*.herne.de
- 2022-05-24 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Country (C)

State (ST)

Nordrhein-Westfalen

Locality (L)

Herne

Organization (O)

Stadt Herne

Organizational Unit (OU)

Common Name (CN)

*.herne.de

Alternative Names

*.herne.de
herne.de

Issuer

Country (C)

Organization (O)

DigiCert Inc

Organizational Unit (OU)

www.digicert.com

Common Name (CN)

GeoTrust TLS RSA CA G1

validity period

Not valid before: 2020-03-25
Not valid after: 2022-05-24

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: EB:B1:64:9D:23:70:9D:D0:75:D8:E9:A7:41:EC:F4:54:05:C3:88:61:16:87:76:FD:CF:52:80:62:3E:DE:34:41
SHA1: 30:0B:7A:79:51:1A:ED:C6:EB:45:78:22:59:7E:BD:20:3A:08:77:CF

X509v3 extensions

authorityKeyIdentifier

keyid:94:4F:D4:5D:8B:E4:A4:E2:A6:80:FE:FD:D8:F9:00:EF:A3:BE:02:57

subjectKeyIdentifier

FC:6F:15:F0:5E:FC:E3:21:D7:55:E0:A9:7A:51:A1:D8:44:6E:87:B7

crlDistributionPoints

Full Name:
URI:http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl

certificatePolicies

Policy: 2.16.840.1.114412.1.1
CPS: https://www.digicert.com/CPS
Policy: 2.23.140.1.2.2

authorityInfoAccess

OCSP - URI:http://status.geotrust.com
CA Issuers - URI:http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 29:79:BE:F0:9E:39:39:21:F0:56:73:9F:63:A5:77:E5:
BE:57:7D:9C:60:0A:F8:F9:4D:5D:26:5C:25:5D:C7:84
Timestamp : Mar 25 11:32:46.698 2020 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:E1:10:5B:7E:22:07:1B:F6:57:4F:58:
A8:81:87:6B:52:5B:CA:FF:5C:6C:6A:C1:F8:53:30:E2:
78:0F:89:9A:41:02:20:5E:49:20:A0:7E:86:A4:D0:20:
EE:3B:97:65:D4:FE:35:6D:D5:19:9D:A9:4C:93:F6:88:
AB:CA:92:9A:AC:B6:02
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 22:45:45:07:59:55:24:56:96:3F:A1:2F:F1:F7:6D:86:
E0:23:26:63:AD:C0:4B:7F:5D:C6:83:5C:6E:E2:0F:02
Timestamp : Mar 25 11:32:46.762 2020 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:98:EE:77:4E:AC:F7:DD:F9:87:43:5A:
4C:C8:21:27:D7:34:D3:72:A2:BC:9C:E4:AA:8B:19:3B:
23:2E:FC:65:99:02:21:00:E5:17:A3:0A:74:EA:B0:32:
97:EA:0F:AB:DA:D0:10:D1:12:05:4C:1D:88:95:B1:16:
75:0A:45:0F:AB:98:B9:19
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 41:C8:CA:B1:DF:22:46:4A:10:C6:A1:3A:09:42:87:5E:
4E:31:8B:1B:03:EB:EB:4B:C7:68:F0:90:62:96:06:F6
Timestamp : Mar 25 11:32:46.693 2020 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:7A:08:FF:8A:A3:64:FC:7D:73:58:31:AA:
CE:3F:6E:E9:00:6F:59:D4:47:01:36:A6:2D:3F:87:0D:
96:F0:66:59:02:21:00:F7:9A:CD:E0:3A:D5:9F:C5:F6:
4C:B9:06:E0:C0:59:5F:E0:7D:D4:D5:5B:9A:7E:F8:8A:
25:E8:1F:60:1A:0F:EE

SSL check results of herne.de