SSL-Tools

SSL check results of larurale.fr

NEW You can also bulk check multiple servers.

Discover if the mail servers for larurale.fr can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Fri, 24 Mar 2023 20:31:21 +0000

The mailservers of larurale.fr can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @larurale.fr addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
spool.mail.gandi.net
217.70.178.1
 10
supported
spool.mail.gandi.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
3 s
fb.mail.gandi.net
217.70.178.216
 50
supported
fb.mail.gandi.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
fb.mail.gandi.net
217.70.178.215
 50
supported
fb.mail.gandi.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
4 s
fb.mail.gandi.net
217.70.178.217
 50
supported
fb.mail.gandi.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @larurale.fr address so far. Test mail delivery

Certificates

First seen at:

CN=fb.mail.gandi.net

Certificate chain
Subject
Common Name (CN)
  • fb.mail.gandi.net
Alternative Names
  • fb.mail.gandi.net
  • www.fb.mail.gandi.net
Issuer
Country (C)
  • FR
State (ST)
  • Paris
Locality (L)
  • Paris
Organization (O)
  • Gandi
Common Name (CN)
  • Gandi Standard SSL CA 2
validity period
Not valid before
2022-05-12
Not valid after
2023-06-03
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
3B:62:DD:DA:DB:59:D4:0C:BB:10:D1:E6:D9:04:AC:65:42:17:A7:D7:64:DC:29:07:3E:4B:33:7F:BE:FD:8A:21
SHA1
7F:0E:2D:BA:FB:C8:91:D0:44:35:72:20:55:67:12:0E:BC:4D:E3:CB
X509v3 extensions
authorityKeyIdentifier
  • keyid:B3:90:A7:D8:C9:AF:4E:CD:61:3C:9F:7C:AD:5D:7F:41:FD:69:30:EA
subjectKeyIdentifier
  • 42:ED:47:D0:CB:7F:00:0C:56:36:82:92:53:70:F2:93:E3:09:D2:C9
certificatePolicies
  • Policy: 1.3.6.1.4.1.6449.1.2.2.26
  • CPS: https://cps.usertrust.com
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://crl.usertrust.com/GandiStandardSSLCA2.crl
authorityInfoAccess
  • CA Issuers - URI:http://crt.usertrust.com/GandiStandardSSLCA2.crt
  • OCSP - URI:http://ocsp.usertrust.com
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : AD:F7:BE:FA:7C:FF:10:C8:8B:9D:3D:9C:1E:3E:18:6A:
  • B4:67:29:5D:CF:B1:0C:24:CA:85:86:34:EB:DC:82:8A
  • Timestamp : May 12 17:01:04.595 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:5F:16:7F:82:7D:E1:B4:2F:3D:DF:4C:AE:
  • 38:03:BB:4B:60:C1:27:DF:AD:31:1A:FC:07:81:4D:FC:
  • 94:01:19:64:02:21:00:CE:51:BB:50:31:62:AF:B6:C5:
  • 4B:49:1E:28:5B:AA:3C:F1:7D:62:0E:FF:BB:87:E3:D0:
  • 24:F1:DB:D3:15:C9:22
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7A:32:8C:54:D8:B7:2D:B6:20:EA:38:E0:52:1E:E9:84:
  • 16:70:32:13:85:4D:3B:D2:2B:C1:3A:57:A3:52:EB:52
  • Timestamp : May 12 17:01:04.587 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:F7:DC:9A:70:69:48:A2:DA:9F:82:93:
  • 18:66:C8:36:5B:B1:9C:56:29:97:C4:21:4B:9E:DF:36:
  • C2:25:15:89:8A:02:21:00:9E:57:02:AE:BD:B3:47:1F:
  • E8:7F:16:DA:D5:F8:1F:18:60:16:3B:DD:F2:91:84:26:
  • B9:E3:D1:71:A7:1A:EF:AC
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : E8:3E:D0:DA:3E:F5:06:35:32:E7:57:28:BC:89:6B:C9:
  • 03:D3:CB:D1:11:6B:EC:EB:69:E1:77:7D:6D:06:BD:6E
  • Timestamp : May 12 17:01:04.536 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:8A:D2:D1:10:8D:4F:24:26:D6:67:90:
  • 48:58:BB:EC:ED:ED:6E:37:51:38:A2:D6:13:10:26:27:
  • 87:A3:9B:D1:D0:02:20:4E:2C:1D:BF:22:49:E6:B0:92:
  • A9:DA:E3:EB:11:A8:C5:21:3C:B2:1D:24:D5:F3:43:72:
  • 71:8F:B5:B4:38:14:CD
First seen at:

CN=spool.mail.gandi.net

Certificate chain
Subject
Common Name (CN)
  • spool.mail.gandi.net
Alternative Names
  • spool.mail.gandi.net
  • www.spool.mail.gandi.net
Issuer
Country (C)
  • FR
State (ST)
  • Paris
Locality (L)
  • Paris
Organization (O)
  • Gandi
Common Name (CN)
  • Gandi Standard SSL CA 2
validity period
Not valid before
2022-05-11
Not valid after
2023-06-03
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
B1:7B:8A:BD:F3:D0:90:00:4A:12:F9:A1:67:B4:0A:24:78:C5:B0:6D:57:DA:8E:BE:9D:6D:C8:7C:12:E4:F5:36
SHA1
4E:A6:AF:36:FA:1C:AD:B9:28:B0:15:77:DF:8C:25:0A:4C:BA:D7:E1
X509v3 extensions
authorityKeyIdentifier
  • keyid:B3:90:A7:D8:C9:AF:4E:CD:61:3C:9F:7C:AD:5D:7F:41:FD:69:30:EA
subjectKeyIdentifier
  • 9F:A7:4F:67:D6:86:02:88:C7:08:02:38:E6:05:8A:4C:42:8E:A4:98
certificatePolicies
  • Policy: 1.3.6.1.4.1.6449.1.2.2.26
  • CPS: https://cps.usertrust.com
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://crl.usertrust.com/GandiStandardSSLCA2.crl
authorityInfoAccess
  • CA Issuers - URI:http://crt.usertrust.com/GandiStandardSSLCA2.crt
  • OCSP - URI:http://ocsp.usertrust.com
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : AD:F7:BE:FA:7C:FF:10:C8:8B:9D:3D:9C:1E:3E:18:6A:
  • B4:67:29:5D:CF:B1:0C:24:CA:85:86:34:EB:DC:82:8A
  • Timestamp : May 11 14:48:33.787 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:11:27:1D:9D:55:57:08:90:1A:E5:59:5A:
  • EF:13:99:B7:2C:FB:91:79:E5:DF:3E:66:9A:FA:BE:DC:
  • A5:22:B3:E2:02:21:00:B0:DE:EF:1B:3D:4D:DC:EF:D5:
  • 93:03:80:C6:D7:72:65:D8:48:2C:26:FD:97:E9:E7:C5:
  • 64:12:26:D8:F7:98:D0
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7A:32:8C:54:D8:B7:2D:B6:20:EA:38:E0:52:1E:E9:84:
  • 16:70:32:13:85:4D:3B:D2:2B:C1:3A:57:A3:52:EB:52
  • Timestamp : May 11 14:48:33.857 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:8C:A1:D2:14:1D:88:27:31:A0:B6:B3:
  • EE:D5:6E:E4:D5:F5:0C:BC:82:03:17:CF:45:40:05:A9:
  • F2:FC:DA:26:5C:02:20:07:47:7D:43:EA:FB:0F:5C:DA:
  • E7:9D:1F:91:91:2F:4A:42:F4:30:38:5E:EB:FF:ED:B4:
  • 4F:3D:70:EF:EE:38:53
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : E8:3E:D0:DA:3E:F5:06:35:32:E7:57:28:BC:89:6B:C9:
  • 03:D3:CB:D1:11:6B:EC:EB:69:E1:77:7D:6D:06:BD:6E
  • Timestamp : May 11 14:48:33.757 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:2F:74:D9:02:F8:D2:92:2D:07:B9:1E:DA:
  • 26:A9:81:B4:2E:8B:F2:CC:AE:93:F7:2D:41:99:F9:3D:
  • E9:DE:B3:57:02:20:7A:44:BA:C4:A7:96:5B:39:01:5D:
  • C4:ED:0D:21:00:C7:47:49:2C:3E:9E:01:FB:B1:E4:E6:
  • BE:47:6A:62:6C:2B