liederkranz-kriftel.de - TLS / STARTTLS Test

Discover if the mail servers for liederkranz-kriftel.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 18 Apr 2024 21:17:34 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Valid

The mailservers of liederkranz-kriftel.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @liederkranz-kriftel.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mail.ud04.udmedia.de 2a05:d580:0:1337::2c	10	supported	ud04.udmedia.de	DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-04-18 2 s
mail.ud04.udmedia.de 194.117.254.44	10	supported	ud04.udmedia.de	DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-04-18 2 s

Outgoing Mails

We have not received any emails from a @liederkranz-kriftel.de address so far. Test mail delivery

Certificates

First seen at: 2024-04-18

CN=ud04.udmedia.de

Certificate chain

ud04.udmedia.de
- 2024-06-15 remaining
- 256 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

ud04.udmedia.de

Alternative Names

mail.ud04.udmedia.de
ud04.udmedia.de
www.ud04.udmedia.de

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2024-03-17
Not valid after: 2024-06-15

This certifcate has been verified for the following usages:

Digital Signature
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 80:16:39:79:69:CE:00:9E:D6:9C:4C:6C:FE:ED:7B:17:00:18:FA:C3:59:57:41:C3:AE:0F:97:52:43:8C:A8:2A
SHA1: 0E:9B:77:4D:F8:C5:EC:55:66:73:BE:F1:3F:1B:55:34:A6:E9:F9:59

X509v3 extensions

subjectKeyIdentifier

D0:ED:2E:65:F0:06:2E:D2:3C:96:37:64:28:D6:94:C1:8E:62:32:53

authorityKeyIdentifier

keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6

authorityInfoAccess

OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Mar 17 01:07:58.358 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:DF:47:BB:EF:CD:28:E6:0A:D5:98:DC:
E3:0E:B7:51:44:DC:C2:41:63:EC:19:6E:2C:8D:99:8A:
6C:24:6E:91:E0:02:21:00:F1:12:53:9A:73:C9:CE:12:
A8:4D:33:48:63:B0:1F:67:33:E4:F0:D2:40:38:7C:92:
95:E5:E9:95:59:73:21:3D
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Mar 17 01:07:58.437 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:A2:CB:3B:B1:91:24:F7:76:EE:6D:7F:
E3:F4:7B:A4:5E:F6:25:4C:39:69:70:23:81:CD:0B:EE:
61:51:69:92:F9:02:21:00:A5:0E:DF:0B:94:A7:F3:17:
E0:B7:F3:09:C2:8A:EF:4D:CB:D8:5A:51:C5:28:CD:59:
9A:9E:B3:47:DD:61:C4:35

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name	Options	DNSSEC	Matches
_25._tcp.mail.ud04.udmedia.de	DANE-EE: Domain Issued Certificate Use subject public key SHA-256 Hash	valid	—
_25._tcp.mail.ud04.udmedia.de	DANE-EE: Domain Issued Certificate Use subject public key SHA-256 Hash	valid	valid

SSL check results of liederkranz-kriftel.de