SSL-Tools

SSL check results of mail.khwe.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for mail.khwe.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Mon, 27 Jan 2025 01:30:26 +0000

The mailservers of mail.khwe.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @mail.khwe.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.khwe.de
87.245.2.30
 -
supported
mail.khwe.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @mail.khwe.de address so far. Test mail delivery

Certificates

First seen at:

CN=mail.khwe.de

Certificate chain
  • mail.khwe.de
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mail.khwe.de
Alternative Names
  • autodiscover.khwe.de
  • mail.khwe.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2025-01-05
Not valid after
2025-04-05
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
79:32:3D:EC:06:0E:F9:4F:4D:B7:10:E8:1C:AA:3C:47:92:54:76:0E:2E:0D:B4:F7:24:BE:23:91:32:C8:12:BF
SHA1
C3:DB:65:A8:7A:E7:A7:4C:35:D1:DA:F0:F5:C8:87:A7:25:F4:B9:1C
X509v3 extensions
subjectKeyIdentifier
  • 42:3D:0D:F6:DC:54:F4:E5:DC:9D:06:F7:33:03:F7:BD:AC:BA:FC:F4
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • OCSP - URI:http://r10.o.lencr.org
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
  • D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
  • Timestamp : Jan 5 02:21:20.609 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:E3:67:6D:54:0B:35:E8:38:DD:44:73:
  • B2:DA:3B:F4:96:F0:43:D1:7F:7C:0A:00:6F:7D:AF:C0:
  • 3F:5D:B8:C9:77:02:21:00:F6:B1:1D:6F:DD:4A:12:85:
  • 30:2A:9B:C9:77:84:05:CE:45:00:08:0E:51:DF:82:89:
  • A2:F6:B6:70:2A:18:9E:67
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
  • 16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
  • Timestamp : Jan 5 02:21:20.799 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:9B:57:AD:F3:3D:BA:4C:02:6F:6A:AF:
  • 6F:F0:A9:79:81:AA:C7:66:28:2A:23:E3:45:6F:27:7E:
  • B4:72:51:77:B1:02:21:00:F3:FB:92:9F:7A:C8:4E:DF:
  • B8:E4:2E:5C:E6:0A:CA:10:C8:23:A4:63:4F:64:48:D9:
  • 0A:7B:93:CB:1B:62:2E:45