SSL check results of kjim-zillner.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for kjim-zillner.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Tue, 03 Jun 2025 05:58:15 +0000

The mailservers of kjim-zillner.de can be reached through an encrypted connection.

However, we found problems that may affect the security.

Servers

Incoming Mails

These servers are responsible for incoming mails to @kjim-zillner.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
zugang.zillner-net.de
79.201.31.179
10
supported
mail.zillner-net.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
relay.rzone.de
81.169.145.96
Results incomplete
100
supported
relay.rzone.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @kjim-zillner.de address so far. Test mail delivery

Certificates

First seen at:

CN=mail.zillner-net.de

Certificate chain
  • mail.zillner-net.de
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
    • Hostname Mismatch

      • R11
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption

Subject
Common Name (CN)
  • mail.zillner-net.de
Alternative Names
  • mail.kjim-zillner.de
  • mail.zillner-net.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R11
validity period
Not valid before
2025-06-03
Not valid after
2025-09-01
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
FB:D9:FB:BD:06:23:07:51:EE:92:F1:C6:25:D1:04:8A:05:12:A1:F7:57:59:9F:3A:1A:DC:BE:A8:07:91:48:F7
SHA1
07:78:CE:F9:EE:3F:7C:C8:C1:9A:E3:6B:4F:85:21:8E:D3:EC:71:90
X509v3 extensions
subjectKeyIdentifier
  • 6C:9C:D9:03:D0:65:30:21:8E:08:72:48:26:94:FE:88:D0:A9:DF:A2
authorityKeyIdentifier
  • keyid:C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
authorityInfoAccess
  • CA Issuers - URI:http://r11.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r11.c.lencr.org/39.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : ED:3C:4B:D6:E8:06:C2:A4:A2:00:57:DB:CB:24:E2:38:
  • 01:DF:51:2F:ED:C4:86:C5:70:0F:20:DD:B7:3E:3F:E0
  • Timestamp : Jun 3 04:30:21.168 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:E0:FC:80:5A:03:C1:61:62:4B:92:4A:
  • 4B:83:4A:1E:36:43:F6:23:E5:DF:F4:AE:1C:66:C5:1B:
  • 16:83:71:57:CA:02:20:24:1A:9C:9A:2B:28:0B:5D:4B:
  • 03:CE:F1:F8:3D:5C:60:D1:C7:E2:7A:51:C2:D4:24:B3:
  • 02:CD:A7:8A:D9:51:06
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
  • 22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
  • Timestamp : Jun 3 04:30:21.182 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:52:CC:16:3C:33:9C:F9:26:08:10:1F:AF:
  • D6:3D:66:85:02:2F:0B:F5:DC:EE:68:0C:6D:3A:97:F4:
  • AB:1B:43:BB:02:20:11:60:5E:50:85:3D:94:20:D8:87:
  • ED:AF:31:D8:74:30:6E:32:D8:7D:82:EE:05:2F:DE:D5:
  • 36:7B:84:E9:10:15
First seen at:

CN=relay.rzone.de,O=Strato GmbH,ST=Berlin,C=DE

Certificate chain
Subject
Country (C)
  • DE
State (ST)
  • Berlin
Organization (O)
  • Strato GmbH
Common Name (CN)
  • relay.rzone.de
Alternative Names
  • relay.rzone.de
  • www.relay.rzone.de
Issuer
Country (C)
  • GB
State (ST)
  • Greater Manchester
Locality (L)
  • Salford
Organization (O)
  • Sectigo Limited
Common Name (CN)
  • Sectigo RSA Organization Validation Secure Server CA
validity period
Not valid before
2025-03-07
Not valid after
2026-03-07
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
D3:5A:0A:CA:C3:5A:74:5D:3A:72:A7:84:7D:61:23:56:2F:69:08:C5:F5:7F:00:62:1C:54:70:20:76:44:B7:76
SHA1
84:23:75:BA:BD:15:0F:CA:BF:8A:7A:84:74:8A:4C:DB:6A:CD:DA:B3
X509v3 extensions
authorityKeyIdentifier
  • keyid:17:D9:D6:25:27:67:F9:31:C2:49:43:D9:30:36:44:8C:6C:A9:4F:EB
subjectKeyIdentifier
  • D1:10:39:5D:58:0B:C8:17:2B:84:E6:A5:DC:E0:1C:B9:70:5D:91:EA
certificatePolicies
  • Policy: 1.3.6.1.4.1.6449.1.2.1.3.4
  • CPS: https://sectigo.com/CPS
  • Policy: 2.23.140.1.2.2
crlDistributionPoints
  • Full Name:
  • URI:http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
authorityInfoAccess
  • CA Issuers - URI:http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
  • OCSP - URI:http://ocsp.sectigo.com
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 96:97:64:BF:55:58:97:AD:F7:43:87:68:37:08:42:77:
  • E9:F0:3A:D5:F6:A4:F3:36:6E:46:A4:3F:0F:CA:A9:C6
  • Timestamp : Mar 7 19:53:51.417 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:A2:31:3A:DA:3A:5B:AF:17:2D:74:CB:
  • 58:6D:E1:2B:F7:E5:B2:D8:4F:4C:5B:15:CD:C2:CD:14:
  • 2E:32:10:09:DC:02:20:23:18:3E:0D:89:13:87:42:C0:
  • CD:1D:4F:8E:78:CA:7D:26:09:AF:F1:F0:E8:40:11:19:
  • 9D:1D:39:F9:65:27:43
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 19:86:D4:C7:28:AA:6F:FE:BA:03:6F:78:2A:4D:01:91:
  • AA:CE:2D:72:31:0F:AE:CE:5D:70:41:2D:25:4C:C7:D4
  • Timestamp : Mar 7 19:53:51.411 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:56:4E:37:DF:29:5D:DE:7A:AB:BD:34:66:
  • DB:65:DD:3A:C5:5A:88:0C:6F:1E:E0:27:E0:D6:FD:3F:
  • D9:DD:24:26:02:20:5E:F1:0B:99:13:A0:0F:C9:44:17:
  • E7:00:4B:6F:56:9A:86:A4:1C:CD:38:8E:46:47:E6:96:
  • 63:41:AD:60:82:C7
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:
  • F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7
  • Timestamp : Mar 7 19:53:51.428 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:18:2C:CA:FD:2E:11:A7:F9:1B:47:9B:09:
  • 29:91:1A:8A:3C:8B:D2:BB:D3:0B:45:32:3D:2C:96:CC:
  • 61:D6:51:A2:02:21:00:A9:53:90:C2:46:1E:27:23:8D:
  • 03:83:6E:E0:DF:AC:69:86:90:68:CB:F5:FB:CE:B3:68:
  • AC:5A:B5:17:11:4D:39