SSL check results of matratzen-concord.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for matratzen-concord.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Sun, 05 Jul 2020 23:00:14 +0000

We can not guarantee a secure connection to the mailservers of matratzen-concord.de!

Please contact the operator of matratzen-concord.de and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/matratzen-concord.de

Servers

Incoming Mails

These servers are responsible for incoming mails to @matratzen-concord.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.matratzen-concord.de
195.243.144.60
10
supported
GBE9000.concord1.local
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12 s
mail1.matratzen-concord.de
195.50.184.170
Results incomplete
20 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
backupmx.domain-robot.org
2001:8d8:580:401:217:160:113:166
30
supported
*.domain-robot.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
18 s
backupmx.domain-robot.org
217.160.113.166
30
supported
*.domain-robot.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
18 s

Outgoing Mails

We have not received any emails from a @matratzen-concord.de address so far. Test mail delivery

Certificates

First seen at:

CN=*.domain-robot.org

Certificate chain
Subject
Common Name (CN)
  • *.domain-robot.org
Alternative Names
  • *.domain-robot.org
  • domain-robot.org
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • RapidSSL RSA CA 2018
validity period
Not valid before
2018-08-08
Not valid after
2020-10-06
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
05:FA:6E:AF:5F:29:64:A6:D3:A7:47:1A:09:31:BC:E3:21:FD:A3:CC:86:22:FF:72:DC:FA:BE:04:F3:2B:D0:A8
SHA1
3C:D9:59:52:0F:C3:2D:72:FF:CF:7E:75:65:37:2E:1A:1B:87:A2:6F
X509v3 extensions
authorityKeyIdentifier
  • keyid:53:CA:17:59:FC:6B:C0:03:21:2F:1A:AE:E4:AA:A8:1C:82:56:DA:75
subjectKeyIdentifier
  • 65:78:20:92:DE:B9:78:AC:2E:39:AD:5D:43:A5:F6:9D:B8:19:77:21
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.rapidssl.com/RapidSSLRSACA2018.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.2
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.1
authorityInfoAccess
  • OCSP - URI:http://status.rapidssl.com
  • CA Issuers - URI:http://cacerts.rapidssl.com/RapidSSLRSACA2018.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:B9:09:90:B4:18:58:14:87:BB:13:A2:CC:67:70:0A:
  • 3C:35:98:04:F9:1B:DF:B8:E3:77:CD:0E:C8:0D:DC:10
  • Timestamp : Aug 8 07:49:31.366 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:75:A9:30:B8:C8:64:32:9F:37:F3:F4:C3:
  • 63:C3:6B:13:04:56:8A:46:D1:F1:9D:AF:EF:AA:BE:22:
  • D1:DB:F1:27:02:20:73:47:A4:29:34:57:AF:10:8A:73:
  • C4:EE:4E:B3:E8:BC:48:DD:08:DC:A7:B9:38:8D:14:FB:
  • A2:87:B9:DC:F3:96
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 87:75:BF:E7:59:7C:F8:8C:43:99:5F:BD:F3:6E:FF:56:
  • 8D:47:56:36:FF:4A:B5:60:C1:B4:EA:FF:5E:A0:83:0F
  • Timestamp : Aug 8 07:49:31.575 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:35:20:A9:D7:DC:32:4D:0A:1B:2E:FE:87:
  • C5:DA:ED:97:6E:86:B5:AD:88:8E:EB:67:65:CD:CD:FB:
  • 1B:D0:16:1B:02:21:00:DF:58:1E:D8:F5:46:15:14:CC:
  • 09:B0:93:F6:C2:2A:A8:47:AF:E0:6A:F6:78:45:24:C7:
  • A3:A6:2A:67:74:D8:FE
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : EE:4B:BD:B7:75:CE:60:BA:E1:42:69:1F:AB:E1:9E:66:
  • A3:0F:7E:5F:B0:72:D8:83:00:C4:7B:89:7A:A8:FD:CB
  • Timestamp : Aug 8 07:49:31.413 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:E5:30:3E:59:A1:6F:83:D8:83:CC:F3:
  • C8:2A:C9:20:B3:17:C3:50:17:CB:48:65:14:E2:BB:47:
  • 8D:D4:A0:DD:AD:02:21:00:AA:34:24:FE:53:C4:5B:51:
  • EF:89:27:14:41:BD:0B:9F:29:40:1D:50:B2:8A:2E:A7:
  • BE:AD:38:42:67:2D:17:9A
First seen at:

CN=GBE9000.concord1.local

Certificate chain
  • GBE9000.concord1.local (Certificate is self-signed.)
    • remaining
    • 1024 bit
    • md5WithRSAEncryption
    • Hostname Mismatch
    • Unknown Authority

Subject
Common Name (CN)
  • GBE9000.concord1.local
Issuer

Certificate is self-signed.

validity period
Not valid before
2014-04-04
Not valid after
2030-02-12
Fingerprints
SHA256
59:80:5D:68:84:C3:E3:90:92:F0:64:5B:1F:1D:F9:8C:7A:05:84:9E:E5:03:29:57:44:98:FD:D5:DF:DC:5C:C2
SHA1
42:EC:BC:46:DF:E9:BF:E6:38:13:0A:F2:7B:93:9B:46:37:C2:74:48