SSL-Tools

SSL check results of kveldulfur.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for kveldulfur.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Mon, 20 Jan 2025 14:46:29 +0000

The mailservers of kveldulfur.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @kveldulfur.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx.kveldulfur.de
81.14.232.244
 10
supported
mx.kveldulfur.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
5 s

Outgoing Mails

We have not received any emails from a @kveldulfur.de address so far. Test mail delivery

Certificates

First seen at:

CN=mx.kveldulfur.de

Certificate chain
  • mx.kveldulfur.de
    • remaining
    • 256 bit
    • ecdsa-with-SHA384
      • E6
        • remaining
        • 384 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mx.kveldulfur.de
Alternative Names
  • *.mx.kveldulfur.de
  • mx.kveldulfur.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • E6
validity period
Not valid before
2024-12-15
Not valid after
2025-03-15
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
E6:3D:49:97:54:57:A1:74:6D:A5:6F:DF:4C:FD:13:1F:25:DD:C3:5E:20:C4:37:CD:68:F8:4D:99:9A:12:4F:61
SHA1
AA:4D:D6:9A:3F:B2:CD:4D:19:8C:42:38:A8:8C:D0:78:92:E5:1E:F7
X509v3 extensions
subjectKeyIdentifier
  • 51:6D:6F:A2:A9:2D:AD:88:C6:FC:88:E5:C3:34:DB:88:F5:5D:B1:00
authorityKeyIdentifier
  • keyid:93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2
authorityInfoAccess
  • OCSP - URI:http://e6.o.lencr.org
  • CA Issuers - URI:http://e6.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DE:85:81:D7:50:24:7C:6B:CD:CB:AF:56:37:C5:E7:81:
  • C6:4C:E4:6E:D6:17:63:9F:8F:34:A7:26:C9:E2:BD:37
  • Timestamp : Dec 15 17:49:51.092 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:A7:7C:6E:9E:4F:57:73:E6:65:0C:1D:
  • 12:B5:AF:8F:34:7F:B2:B0:63:78:05:D3:43:8B:DD:03:
  • 60:B3:CF:2D:56:02:21:00:95:48:45:05:6A:12:6E:FF:
  • 48:C2:14:D0:00:7C:0F:59:DC:AE:0B:CD:30:D9:5E:F4:
  • 68:F3:DF:DF:CC:B5:18:3A
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
  • 22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
  • Timestamp : Dec 15 17:49:51.121 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:C1:2B:EA:19:54:29:55:AF:95:DC:C5:
  • 52:EB:6E:24:7B:B2:FA:06:59:17:AB:51:F8:FE:9E:5C:
  • D2:8F:57:D5:8A:02:20:54:B0:C5:4E:74:59:67:A2:4A:
  • 0A:27:3A:D7:B4:D9:71:8F:20:AB:EF:F4:01:FD:BD:FB:
  • 03:42:86:3A:A0:52:25

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mx.kveldulfur.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid