SSL-Tools

SSL check results of mailman.arnested.dk

NEW You can also bulk check multiple servers.

Discover if the mail servers for mailman.arnested.dk can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Tue, 11 May 2021 08:14:51 +0000

The mailservers of mailman.arnested.dk can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @mailman.arnested.dk addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
hermod.arnested.dk
2a02:c207:2007:7741::1
 10
supported
hermod.arnested.dk
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
14 s
hermod.arnested.dk
5.189.168.47
 10
supported
hermod.arnested.dk
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
12 s

Outgoing Mails

We have received emails from these servers with @mailman.arnested.dk sender addresses. Test mail delivery

Host TLS Version & Cipher
hermod.arnested.dk (5.189.168.47)
TLSv1.3 TLS_AES_256_GCM_SHA384
hermod.arnested.dk (IPv6:2a02:c207:2007:7741::1)
TLSv1.3 TLS_AES_256_GCM_SHA384

Certificates

First seen at:

CN=hermod.arnested.dk

Certificate chain
  • hermod.arnested.dk
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • DST Root CA X3 (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption
Subject
Common Name (CN)
  • hermod.arnested.dk
Alternative Names
  • hermod.arnested.dk
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2021-05-01
Not valid after
2021-07-30
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
F5:68:A4:EC:0F:86:AD:48:4E:58:B0:04:7E:56:F0:6E:8C:BE:B3:22:12:69:B3:50:ED:86:F5:DA:E6:D0:42:3E
SHA1
2B:A5:61:13:0B:BB:09:09:15:AF:79:6B:25:56:3C:03:33:78:49:52
X509v3 extensions
subjectKeyIdentifier
  • 3E:AD:BB:11:5F:E5:CF:E2:08:91:D6:F6:9D:82:32:BA:78:69:6B:0D
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 94:20:BC:1E:8E:D5:8D:6C:88:73:1F:82:8B:22:2C:0D:
  • D1:DA:4D:5E:6C:4F:94:3D:61:DB:4E:2F:58:4D:A2:C2
  • Timestamp : May 1 19:12:09.635 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:38:DF:B4:07:D7:86:9F:CB:70:5E:4D:64:
  • E6:3D:F2:89:B2:97:D9:53:90:A7:AD:D7:84:34:6A:14:
  • 93:09:A8:4F:02:21:00:E7:90:6A:EF:97:CC:02:DA:8E:
  • 2C:2D:C6:1E:D6:92:CD:23:BC:56:71:A9:7E:44:E2:9D:
  • 8D:60:63:A5:A4:96:08
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : F6:5C:94:2F:D1:77:30:22:14:54:18:08:30:94:56:8E:
  • E3:4D:13:19:33:BF:DF:0C:2F:20:0B:CC:4E:F1:64:E3
  • Timestamp : May 1 19:12:09.630 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:D1:6E:60:D7:BE:78:14:96:3D:17:E6:
  • F4:B4:EF:44:AB:89:2D:D3:4B:6A:61:93:41:95:30:52:
  • 38:03:85:C5:5A:02:20:60:14:D0:C8:9C:01:30:DE:ED:
  • 4E:A3:42:BE:6F:EA:66:0F:5E:79:38:16:0B:45:9F:7D:
  • BF:0F:A5:FB:7B:41:8A