SSL-Tools

SSL check results of mailia.me

NEW You can also bulk check multiple servers.

Discover if the mail servers for mailia.me can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 27 Sep 2023 17:33:35 +0000

We can not guarantee a secure connection to the mailservers of mailia.me!

Please contact the operator of mailia.me and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/mailia.me

Servers

Incoming Mails

These servers are responsible for incoming mails to @mailia.me addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mailia.me
2a01:cb10:336:cb00:8aae:15d:1acd:52cb
Results incomplete
0 not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
mailia.me
92.148.137.89
Results incomplete
0
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
21 s
mail.mailia.me
2a01:cb10:336:cb00:8aae:15d:1acd:52cb
Results incomplete
1 not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
mail.mailia.me
92.148.137.89
Results incomplete
1
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
21 s
mta-sts.mailia.me
2a01:cb10:336:cb00:8aae:ddff:fe03:5dc1
Results incomplete
8 not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
mail.protonmail.ch
176.119.200.128
 10
supported
protonmail.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
30 s
mail.protonmail.ch
185.70.42.128
 10
supported
protonmail.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
42 s
mail.protonmail.ch
185.205.70.128
 10
supported
protonmail.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
30 s
mailsec.protonmail.ch
185.70.42.129
 20
supported
protonmail.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
19 s
mailsec.protonmail.ch
185.205.70.129
 20
supported
protonmail.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
19 s
mailsec.protonmail.ch
176.119.200.129
 20
supported
protonmail.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
14 s

Outgoing Mails

We have not received any emails from a @mailia.me address so far. Test mail delivery

Certificates

First seen at:

CN=protonmail.com

Certificate chain
  • protonmail.com
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • protonmail.com
Alternative Names
  • *.pm.me
  • *.protonmail.ch
  • *.protonmail.com
  • *.protonvpn.ch
  • *.protonvpn.com
  • protonmail.com
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2023-09-16
Not valid after
2023-12-15
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
BB:20:FD:78:92:0C:6B:67:F7:E1:2C:92:C4:0F:E9:E8:26:60:94:A7:D1:6F:84:75:31:17:83:85:28:32:0B:1C
SHA1
9B:5F:5B:AE:C8:40:F6:56:7E:B0:E7:91:06:23:B5:68:24:8C:0F:1B
X509v3 extensions
subjectKeyIdentifier
  • 33:36:13:CB:1C:5C:7A:BD:79:9C:FB:E5:1D:DB:AB:5F:C6:66:41:06
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : B7:3E:FB:24:DF:9C:4D:BA:75:F2:39:C5:BA:58:F4:6C:
  • 5D:FC:42:CF:7A:9F:35:C4:9E:1D:09:81:25:ED:B4:99
  • Timestamp : Sep 16 14:16:48.797 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:D6:FC:B5:FF:C2:AF:3E:B6:BD:9E:FD:
  • FA:43:5C:7A:36:21:7A:D0:08:54:60:BA:9F:C5:97:F3:
  • E4:67:84:A7:D2:02:21:00:9E:C4:44:2B:4C:6F:7D:BC:
  • DC:9F:20:AA:A3:81:42:4A:F2:C9:36:89:11:1D:90:CA:
  • 4F:8B:9E:2B:3E:CE:E4:E7
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : AD:F7:BE:FA:7C:FF:10:C8:8B:9D:3D:9C:1E:3E:18:6A:
  • B4:67:29:5D:CF:B1:0C:24:CA:85:86:34:EB:DC:82:8A
  • Timestamp : Sep 16 14:16:48.869 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:0A:9E:71:5B:F5:57:43:94:51:41:CF:66:
  • B7:19:90:E2:AB:95:85:E8:37:27:E0:DC:E0:31:D6:BE:
  • CB:98:4F:F8:02:20:4F:21:28:B3:0F:6F:7D:C0:DD:97:
  • 39:55:45:73:35:24:4A:48:D9:05:1B:1F:0B:DA:B1:EE:
  • 6A:24:3B:BB:77:94
First seen at:

CN=protonmail.com

Certificate chain
  • protonmail.com
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • protonmail.com
Alternative Names
  • *.pm.me
  • *.protonmail.ch
  • *.protonmail.com
  • *.protonvpn.ch
  • *.protonvpn.com
  • protonmail.com
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2023-07-23
Not valid after
2023-10-21
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
9C:69:C4:6C:66:58:CD:1F:E6:93:6D:39:AF:9D:B7:B4:FC:E2:B5:78:71:3A:CD:1D:CC:53:05:E2:6D:32:EA:41
SHA1
2C:C3:DB:9F:0C:91:C5:D6:0F:2A:60:6E:88:D4:1F:00:AB:9E:99:01
X509v3 extensions
subjectKeyIdentifier
  • 33:36:13:CB:1C:5C:7A:BD:79:9C:FB:E5:1D:DB:AB:5F:C6:66:41:06
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : B7:3E:FB:24:DF:9C:4D:BA:75:F2:39:C5:BA:58:F4:6C:
  • 5D:FC:42:CF:7A:9F:35:C4:9E:1D:09:81:25:ED:B4:99
  • Timestamp : Jul 23 14:16:48.956 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:27:1E:2E:99:6C:B0:09:25:A9:18:E9:37:
  • 61:A2:FD:00:00:FB:FE:94:55:4D:1C:0A:EA:89:47:36:
  • 3F:68:04:D0:02:21:00:DE:1E:E7:BC:29:66:43:50:44:
  • A0:47:D3:BB:10:90:66:B5:28:F5:3C:D8:10:60:0D:A8:
  • 9D:24:70:C0:1F:D9:B3
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7A:32:8C:54:D8:B7:2D:B6:20:EA:38:E0:52:1E:E9:84:
  • 16:70:32:13:85:4D:3B:D2:2B:C1:3A:57:A3:52:EB:52
  • Timestamp : Jul 23 14:16:48.960 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:41:CE:6F:86:C2:38:6B:60:2D:77:D9:D6:
  • 79:DB:31:D1:7E:B8:0A:E8:60:82:37:D2:E1:F3:DD:88:
  • 47:50:46:CD:02:21:00:A3:65:5A:FD:37:AC:FF:F1:C4:
  • 64:A2:19:32:8F:76:16:88:29:DE:73:AA:BA:23:C5:C0:
  • 4A:34:E3:A4:CA:C5:2A

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mta-sts.mailia.me
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
_25._tcp.mailsec.protonmail.ch
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mailsec.protonmail.ch
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mailia.me
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-512 Hash
valid
_25._tcp.mailia.me
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
_25._tcp.mailia.me
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-512 Hash
valid
_25._tcp.mail.mailia.me
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
_25._tcp.mail.protonmail.ch
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mail.protonmail.ch
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid