SSL-Tools

SSL check results of kox-net.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for kox-net.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 30 Dec 2020 06:43:04 +0000

The mailservers of kox-net.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @kox-net.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
ex.kox-net.de
2a01:4f9:c010:41c6::1
Results incomplete
10 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
ex.kox-net.de
95.216.210.6
 10
supported
kox-net.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • SSLv3
4 s

Outgoing Mails

We have received emails from these servers with @kox-net.de sender addresses. Test mail delivery

Host TLS Version & Cipher
ex.kox-net.de (95.216.210.6)
TLSv1.3 TLS_AES_256_GCM_SHA384

Certificates

First seen at:

CN=kox-net.de

Certificate chain
Subject
Common Name (CN)
  • kox-net.de
Alternative Names
  • ex.kox-net.de
  • kox-net.de
  • www.kox-net.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • Let's Encrypt Authority X3
validity period
Not valid before
2020-11-03
Not valid after
2021-02-01
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
A3:73:95:16:40:AC:4A:D4:E6:00:86:86:E3:8F:22:DE:E8:91:AC:3A:B1:6D:35:F0:1C:7A:BE:B5:2D:E6:7C:0D
SHA1
3F:39:4E:8B:15:4D:47:DD:AA:57:78:DC:59:54:90:C2:C0:39:AA:FE
X509v3 extensions
subjectKeyIdentifier
  • 5A:F7:93:73:00:EF:73:DB:14:E8:48:C7:2F:4F:DA:17:21:DC:1A:1A
authorityKeyIdentifier
  • keyid:A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1
authorityInfoAccess
  • OCSP - URI:http://ocsp.int-x3.letsencrypt.org
  • CA Issuers - URI:http://cert.int-x3.letsencrypt.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 6F:53:76:AC:31:F0:31:19:D8:99:00:A4:51:15:FF:77:
  • 15:1C:11:D9:02:C1:00:29:06:8D:B2:08:9A:37:D9:13
  • Timestamp : Nov 3 05:01:26.511 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:E9:FA:B6:6E:98:3C:2B:6F:2E:9F:5D:
  • 57:95:55:BC:4F:9D:7F:E2:A5:16:49:EA:59:4F:61:F6:
  • 36:C0:E8:B3:AD:02:20:3D:B8:AD:78:2B:4D:CB:EC:0B:
  • EB:53:06:81:34:DD:3E:B0:CB:F7:35:63:29:17:3B:A0:
  • 68:EF:1C:6F:29:16:D6
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : F6:5C:94:2F:D1:77:30:22:14:54:18:08:30:94:56:8E:
  • E3:4D:13:19:33:BF:DF:0C:2F:20:0B:CC:4E:F1:64:E3
  • Timestamp : Nov 3 05:01:26.465 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:A3:72:40:CD:60:5E:ED:3E:9B:C6:20:
  • 15:2D:EE:54:0B:21:A5:AF:7A:6C:EA:6C:08:6C:49:38:
  • 2F:1D:61:1D:B0:02:21:00:DB:9A:2C:B8:97:FF:56:7B:
  • A7:51:CF:27:E9:26:4F:02:1B:66:C6:71:18:93:77:76:
  • 8C:47:19:C7:2A:AC:45:03