SSL-Tools

SSL check results of ivimail.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for ivimail.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Fri, 15 Aug 2025 12:29:04 +0000

The mailservers of ivimail.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @ivimail.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mbx01.ivimail.de
87.140.99.76
 10
supported
mbx01.ivimail.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
mbx02.ivimail.de
217.86.246.123
 20
supported
mbx02.ivimail.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @ivimail.de address so far. Test mail delivery

Certificates

First seen at:

CN=mbx02.ivimail.de

Certificate chain
  • mbx02.ivimail.de
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mbx02.ivimail.de
Alternative Names
  • mbx02.ivimail.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2025-07-08
Not valid after
2025-10-06
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
F2:70:BB:2C:4D:87:E6:F2:52:36:DA:4A:2E:4B:9B:05:50:08:8C:B8:09:99:E5:50:F8:F6:13:FB:EF:8C:F5:EF
SHA1
37:0F:32:4A:C6:83:40:9E:73:F1:89:8A:1C:22:45:F4:99:DE:8F:D2
X509v3 extensions
subjectKeyIdentifier
  • 20:8E:F7:42:4D:FB:B8:B4:92:30:34:F3:4A:FE:D4:60:49:ED:25:4B
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r10.c.lencr.org/26.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:42:C5:06:49:60:61:54:8F:0F:D4:EA:9C:FB:7A:2D:
  • 26:45:4D:87:A9:7F:2F:DF:45:59:F6:27:4F:3A:84:54
  • Timestamp : Jul 8 17:28:33.516 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:D6:F6:93:86:94:92:A4:C1:1C:5F:DE:
  • AB:5F:AC:38:20:E7:DD:AF:DF:3F:DD:04:06:17:80:BF:
  • A2:C6:13:F1:D0:02:20:40:90:6B:B1:39:E5:82:FE:04:
  • BD:2B:A7:D8:ED:7A:17:2E:23:F2:C8:E4:7F:CA:08:70:
  • BF:B6:4D:07:C8:33:4B
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
  • F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
  • Timestamp : Jul 8 17:28:39.516 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:96:11:F0:C3:D5:B6:E7:ED:80:B5:42:
  • 26:AB:9B:C3:58:4C:CB:D9:00:9E:BF:36:F7:77:29:EC:
  • 0C:E9:07:43:EA:02:21:00:F3:DE:3A:71:4A:A3:37:84:
  • A3:04:6A:AE:4C:28:00:6E:05:17:85:B2:82:ED:88:74:
  • EF:E6:94:E3:74:A2:57:F7
First seen at:

CN=mbx01.ivimail.de

Certificate chain
  • mbx01.ivimail.de
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mbx01.ivimail.de
Alternative Names
  • mbx01.ivimail.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2025-07-12
Not valid after
2025-10-10
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
05:93:73:82:74:EC:A4:D7:DF:45:0B:53:84:42:54:CA:F2:25:64:01:59:70:9C:5E:2B:63:EC:AC:9A:F6:35:B2
SHA1
53:01:76:D6:C3:DC:27:AB:F2:7A:DF:91:C2:08:A8:A7:83:20:F5:FE
X509v3 extensions
subjectKeyIdentifier
  • BE:C0:F3:81:81:54:16:1B:B8:9B:30:38:2C:2E:F1:29:04:32:58:87
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r10.c.lencr.org/124.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:42:C5:06:49:60:61:54:8F:0F:D4:EA:9C:FB:7A:2D:
  • 26:45:4D:87:A9:7F:2F:DF:45:59:F6:27:4F:3A:84:54
  • Timestamp : Jul 12 03:53:53.876 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:21:8C:B8:C6:F1:D8:00:69:B9:6E:51:15:
  • 9B:2C:06:DB:24:73:0D:EE:F8:9E:21:ED:11:5F:34:A9:
  • 53:7C:50:38:02:20:5D:26:3E:E6:18:8F:87:20:B8:A9:
  • 39:19:7B:F8:14:94:39:D1:75:4C:E8:8A:CF:60:BF:FF:
  • 61:CB:2A:0D:D5:51
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DD:DC:CA:34:95:D7:E1:16:05:E7:95:32:FA:C7:9F:F8:
  • 3D:1C:50:DF:DB:00:3A:14:12:76:0A:2C:AC:BB:C8:2A
  • Timestamp : Jul 12 03:53:53.952 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:E8:B1:84:EA:D4:12:FC:49:3C:64:7D:
  • 45:F1:60:DB:A4:99:B4:76:9F:1A:0D:F5:20:66:1F:4C:
  • 08:23:E0:2E:19:02:20:12:D8:31:53:1F:44:2B:6F:09:
  • F1:5B:0F:3A:DD:90:07:A1:FF:DF:DB:F8:DC:CA:A2:64:
  • 6E:8E:F5:FA:08:59:89