SSL-Tools

SSL check results of libersec.li

NEW You can also bulk check multiple servers.

Discover if the mail servers for libersec.li can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 15 May 2024 17:18:54 +0000

The mailservers of libersec.li can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @libersec.li addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx.libersec.li
80.248.195.167
 10
supported
mx.libersec.li
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @libersec.li address so far. Test mail delivery

Certificates

First seen at:

CN=mx.libersec.li

Certificate chain
  • mx.libersec.li
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mx.libersec.li
Alternative Names
  • mx.libersec.li
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2024-03-27
Not valid after
2024-06-25
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
F0:F7:59:08:CB:88:9E:51:49:65:E5:1F:D5:BC:1B:59:14:C2:95:5E:4E:ED:DC:AD:6A:08:3A:DD:C0:6C:15:F7
SHA1
EA:61:2E:52:81:5B:1C:C7:44:01:01:C7:BB:EB:94:61:06:F1:20:4B
X509v3 extensions
subjectKeyIdentifier
  • 04:4C:DD:DE:E0:00:41:3F:7A:D8:13:F4:6E:43:A8:95:5A:67:32:58
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Mar 27 16:36:47.363 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:B6:CA:0F:62:83:C3:77:E6:D1:23:14:
  • 05:DE:DF:6C:D3:0B:8E:76:BC:D7:8B:40:FB:EF:89:16:
  • C6:A5:C7:6E:07:02:21:00:BC:3A:61:B1:9F:58:98:88:
  • 8B:D8:1C:4A:A4:2E:D1:9E:93:F7:CB:A8:F2:D8:F2:5C:
  • 19:B8:8E:99:D4:CA:F0:C2
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
  • 67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
  • Timestamp : Mar 27 16:36:47.363 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:16:87:5A:31:9E:96:7E:E5:E0:05:AB:99:
  • B7:BD:8B:3E:A4:ED:85:D9:6A:28:86:F8:F6:D0:DB:76:
  • F6:CF:48:FB:02:21:00:AD:09:E5:E6:5D:3F:3F:AF:B1:
  • 49:28:F6:FA:DD:7B:C2:F0:67:20:18:48:61:EB:0F:21:
  • 2A:8B:06:4F:93:8E:91