SSL check results of hk.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for hk.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Tue, 14 Jan 2020 21:30:12 +0000

The mailservers of hk.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @hk.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail1.rox.net
213.214.0.2
10
supported
smtp.hrb.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
mail2.rox.net
213.214.0.1
20
supported
smtp.hrb.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @hk.de address so far. Test mail delivery

Certificates

First seen at:

CN=smtp.hrb.de,OU=IT,O=rockenstein AG,L=Wuerzburg,ST=Bayern,C=DE

Certificate chain
Subject
Country (C)
  • DE
State (ST)
  • Bayern
Locality (L)
  • Wuerzburg
Organization (O)
  • rockenstein AG
Organizational Unit (OU)
  • IT
Common Name (CN)
  • smtp.hrb.de
Alternative Names
  • mail2.rox.net
  • mail1.rox.net
  • imap.rockenstein.de
  • pop.rockenstein.de
  • smtp.rockenstein.de
  • pop3.rockenstein.de
  • mail.rockenstein.de
  • imap.hrb.de
  • mail.hrb.de
  • pop3.hrb.de
  • smtp.hrb.de
Issuer
Country (C)
  • US
Organization (O)
  • GeoTrust Inc.
Common Name (CN)
  • GeoTrust SSL CA - G3
validity period
Not valid before
2017-01-17
Not valid after
2020-03-17
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
63:72:F8:7D:82:15:3A:C5:27:8A:36:A4:60:C1:BC:CC:8D:8C:CB:8F:58:3C:CA:8C:24:24:B2:C6:37:6A:9E:C8
SHA1
B2:01:71:38:40:E0:D2:4B:9B:0F:E6:FC:AF:A0:FE:70:E7:43:8F:2B
X509v3 extensions
crlDistributionPoints
  • Full Name:
  • URI:http://gn.symcb.com/gn.crl
certificatePolicies
  • Policy: 2.23.140.1.2.2
  • CPS: https://www.geotrust.com/resources/repository/legal
  • User Notice:
  • Explicit Text: https://www.geotrust.com/resources/repository/legal
authorityKeyIdentifier
  • keyid:D2:6F:F7:96:F4:85:3F:72:3C:30:7D:23:DA:85:78:9B:A3:7C:5A:7C
authorityInfoAccess
  • OCSP - URI:http://gn.symcd.com
  • CA Issuers - URI:http://gn.symcb.com/gn.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DD:EB:1D:2B:7A:0D:4F:A6:20:8B:81:AD:81:68:70:7E:
  • 2E:8E:9D:01:D5:5C:88:8D:3D:11:C4:CD:B6:EC:BE:CC
  • Timestamp : Jan 17 14:00:04.935 2017 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:B5:93:ED:2D:CF:1E:D8:D7:83:87:31:
  • E3:60:ED:3C:9E:83:B2:7F:3E:EB:13:F7:76:38:B2:71:
  • 28:5D:94:1D:92:02:20:27:DB:7E:6C:A1:B8:E6:EA:5A:
  • 69:9A:BE:EC:F4:00:F3:20:6E:E6:D7:37:49:74:80:13:
  • EE:97:EB:10:95:23:A5
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:B9:09:90:B4:18:58:14:87:BB:13:A2:CC:67:70:0A:
  • 3C:35:98:04:F9:1B:DF:B8:E3:77:CD:0E:C8:0D:DC:10
  • Timestamp : Jan 17 14:00:04.962 2017 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:36:50:27:AF:FC:F0:E5:4D:77:7D:CA:3E:
  • 75:BD:FB:6C:99:50:DA:C6:FB:67:93:5B:EB:6F:52:E2:
  • DA:DA:C6:5E:02:21:00:9C:1B:D8:1B:01:17:C0:1C:7B:
  • 62:A6:39:C5:3B:9B:D4:6B:A5:50:91:2E:59:3A:30:EE:
  • 28:7D:93:E5:33:8F:C0
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : BC:78:E1:DF:C5:F6:3C:68:46:49:33:4D:A1:0F:A1:5F:
  • 09:79:69:20:09:C0:81:B4:F3:F6:91:7F:3E:D9:B8:A5
  • Timestamp : Jan 17 14:00:05.181 2017 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:96:E7:43:63:EC:8F:CE:D6:5A:A8:5D:
  • 67:34:6D:83:B4:DC:74:AC:B8:2C:C3:4C:46:7B:74:0A:
  • 38:C0:DB:E0:0D:02:21:00:F0:1E:77:FA:52:F4:A4:81:
  • E2:27:57:58:2A:2C:B7:5E:85:60:79:4E:7A:D3:F7:B9:
  • 6E:78:5E:BA:E6:0C:3C:08
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : BB:D9:DF:BC:1F:8A:71:B5:93:94:23:97:AA:92:7B:47:
  • 38:57:95:0A:AB:52:E8:1A:90:96:64:36:8E:1E:D1:85
  • Timestamp : Jan 17 14:00:04.958 2017 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:2D:FD:9E:B0:FE:8A:39:BD:0B:DC:33:70:
  • B9:0A:1D:22:C4:4A:EE:95:63:0A:18:8F:FF:0B:4A:5B:
  • 1E:73:C0:60:02:21:00:A2:75:F7:C0:25:A3:71:05:7B:
  • CC:78:29:1E:FD:1E:16:DA:1D:77:B6:B1:6F:34:96:4A:
  • FB:E3:DF:97:16:E3:54