SSL-Tools

SSL check results of jaroslavkomora.cz

NEW You can also bulk check multiple servers.

Discover if the mail servers for jaroslavkomora.cz can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sun, 21 Jun 2020 00:37:42 +0000

We can not guarantee a secure connection to the mailservers of jaroslavkomora.cz!

Please contact the operator of jaroslavkomora.cz and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/jaroslavkomora.cz

Servers

Incoming Mails

These servers are responsible for incoming mails to @jaroslavkomora.cz addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
relay.zoner.com
2a00:19a0:3:78::d9c6:7817:1
 1
supported
*.zoner.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
3 s
relay.zoner.com
217.198.120.23
 1
supported
*.zoner.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
10mx.zoner.com
217.198.120.36
 10
supported
*.zoner.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
3 s
15mx.zoner.com
81.0.233.6
Results incomplete
15
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
21 s

Outgoing Mails

We have not received any emails from a @jaroslavkomora.cz address so far. Test mail delivery

Certificates

First seen at:

CN=*.zoner.com

Certificate chain
Subject
Common Name (CN)
  • *.zoner.com
Alternative Names
  • *.zoner.com
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • RapidSSL RSA CA 2018
validity period
Not valid before
2018-10-17
Not valid after
2020-10-17
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
DF:2A:76:5E:BD:69:69:32:96:58:5B:02:8B:E8:93:2D:66:1F:91:E4:75:36:5C:68:F5:AA:B6:1D:BC:DA:35:04
SHA1
86:DC:E2:C4:4F:A7:32:A9:EC:B1:45:C8:EC:9E:DC:DA:81:52:8F:DB
X509v3 extensions
authorityKeyIdentifier
  • keyid:53:CA:17:59:FC:6B:C0:03:21:2F:1A:AE:E4:AA:A8:1C:82:56:DA:75
subjectKeyIdentifier
  • EE:CE:D5:FE:0E:41:66:BE:56:BA:9F:67:A3:F9:52:10:4F:7F:B0:EE
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.rapidssl.com/RapidSSLRSACA2018.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.2
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.1
authorityInfoAccess
  • OCSP - URI:http://status.rapidssl.com
  • CA Issuers - URI:http://cacerts.rapidssl.com/RapidSSLRSACA2018.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:B9:09:90:B4:18:58:14:87:BB:13:A2:CC:67:70:0A:
  • 3C:35:98:04:F9:1B:DF:B8:E3:77:CD:0E:C8:0D:DC:10
  • Timestamp : Oct 17 07:49:00.958 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:72:53:5C:41:4D:52:8E:E5:25:C5:9F:88:
  • 5C:A5:B2:4C:ED:AE:CD:4D:32:FB:83:34:EF:C1:C5:E0:
  • EA:4C:DA:81:02:21:00:83:33:5D:EA:F1:93:46:D3:4E:
  • 72:22:CD:99:4D:08:59:52:77:A5:1E:21:CB:EA:9C:DB:
  • 03:F0:D1:83:A3:1B:8E
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 87:75:BF:E7:59:7C:F8:8C:43:99:5F:BD:F3:6E:FF:56:
  • 8D:47:56:36:FF:4A:B5:60:C1:B4:EA:FF:5E:A0:83:0F
  • Timestamp : Oct 17 07:49:01.227 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:2D:0B:92:A4:33:65:04:6B:7C:AA:3A:1D:
  • 90:6C:49:F2:E7:9C:22:24:4A:0D:30:15:0B:C1:A1:5C:
  • 65:5A:4B:4A:02:20:59:C2:40:B2:6C:31:03:8B:4B:AA:
  • 22:4D:F0:D6:99:E2:08:33:07:53:36:1A:EC:DF:59:07:
  • BD:CD:F9:9A:A5:D1
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 6F:53:76:AC:31:F0:31:19:D8:99:00:A4:51:15:FF:77:
  • 15:1C:11:D9:02:C1:00:29:06:8D:B2:08:9A:37:D9:13
  • Timestamp : Oct 17 07:49:01.336 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:19:EC:FE:6E:92:DC:99:7D:F9:40:E2:2F:
  • 43:75:85:AB:4B:63:1E:7F:DA:55:39:26:D3:62:AB:EB:
  • C1:CB:C6:35:02:20:4D:27:BF:01:8A:67:A3:B4:B9:5C:
  • E3:CB:23:C8:79:8D:B4:B8:1C:00:89:BF:FD:03:05:C4:
  • 25:5F:18:A5:D5:BD
First seen at:

CN=*.zoner.com

Certificate chain
Subject
Common Name (CN)
  • *.zoner.com
Alternative Names
  • *.zoner.com
  • zoner.com
Issuer
Country (C)
  • US
Organization (O)
  • GeoTrust Inc.
Common Name (CN)
  • RapidSSL SHA256 CA - G4
validity period
Not valid before
2016-02-17
Not valid after
2019-02-19
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
3F:E9:42:79:B8:7B:4B:8A:BF:D5:0B:31:0A:DE:FE:73:BF:6F:1C:D4:D2:0B:2A:7E:C1:BC:82:B9:9C:26:F5:1F
SHA1
E4:48:FF:B9:D3:41:94:B7:91:73:48:F6:08:16:28:80:00:FE:BA:2E
X509v3 extensions
authorityKeyIdentifier
  • keyid:F3:B5:56:0C:C4:09:B0:B4:CF:1F:AA:F9:DD:23:56:F0:77:E8:A1:F9
authorityInfoAccess
  • OCSP - URI:http://gz.symcd.com
  • CA Issuers - URI:http://gz.symcb.com/gz.crt
crlDistributionPoints
  • Full Name:
  • URI:http://gz.symcb.com/gz.crl
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • CPS: https://www.rapidssl.com/legal