SSL-Tools

SSL check results of mdewendt.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for mdewendt.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 18 Apr 2024 16:56:03 +0000

The mailservers of mdewendt.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @mdewendt.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
ben.mdewendt.de
2a03:4000:1a:708::1
 10
supported
mdewendt.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
4 s
ben.mdewendt.de
185.162.251.199
 10
supported
mdewendt.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
martin.mdewendt.de
2001:8d8:1800:475::1
 15
supported
mdewendt.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
5 s
martin.mdewendt.de
82.165.120.123
 15
supported
mdewendt.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
3 s
tim.mdewendt.de
2a03:4000:24:50::1
 20
supported
mdewendt.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
3 s
tim.mdewendt.de
185.233.104.98
 20
supported
mdewendt.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
3 s
berlin.mdewendt.de
2a01:239:205:4c00::1
 25
supported
berlin.mdewendt.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
4 s
berlin.mdewendt.de
85.215.208.151
 25
supported
berlin.mdewendt.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
3 s

Outgoing Mails

We have received emails from these servers with @mdewendt.de sender addresses. Test mail delivery

Host TLS Version & Cipher
tim.mdewendt.de (IPv6:2a03:4000:24:50::1)
TLSv1.3 TLS_AES_256_GCM_SHA384

Certificates

First seen at:

CN=mdewendt.de

Certificate chain
  • mdewendt.de
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mdewendt.de
Alternative Names
  • martin.mdewendt.de
  • mdewendt.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2024-04-15
Not valid after
2024-07-14
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
58:65:A5:18:00:F2:C0:F0:81:C3:3B:23:03:38:03:7A:88:F7:68:04:FF:8B:55:3A:3C:A2:6B:E9:3E:74:8E:B2
SHA1
16:0E:16:62:36:9B:73:28:6D:5B:95:D4:2C:B9:95:CA:A0:0C:1B:34
X509v3 extensions
subjectKeyIdentifier
  • 9A:57:AB:5B:96:0D:46:25:01:9B:48:2D:71:FD:60:69:FB:3F:02:FE
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
  • ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
  • Timestamp : Apr 15 22:15:33.062 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:B5:6E:B0:17:7D:B1:35:6C:CD:F2:DC:
  • 43:56:A8:07:EE:F4:CD:18:C6:0D:01:BE:8B:8E:61:5D:
  • 28:56:4D:28:62:02:20:50:64:5B:97:5B:DE:C2:A4:20:
  • 67:D4:8E:CD:F1:BB:28:EE:01:03:9E:9D:72:8F:9A:2C:
  • C5:20:61:0A:03:10:FA
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
  • 4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
  • Timestamp : Apr 15 22:15:33.298 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:02:4B:1E:51:C9:28:3F:D7:92:18:06:B5:
  • C1:BB:93:3D:DE:96:F3:57:1C:33:48:6F:E1:FF:D6:7F:
  • 14:C1:44:C4:02:20:32:A7:09:93:93:5C:FE:1D:89:06:
  • 4F:F4:EB:B3:2D:46:CF:CB:68:37:3A:EB:2D:6B:0B:EF:
  • 49:53:16:BB:CB:E1
First seen at:

CN=mdewendt.de

Certificate chain
  • mdewendt.de
    • remaining
    • 384 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mdewendt.de
Alternative Names
  • *.mdewendt.de
  • mdewendt.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2024-03-27
Not valid after
2024-06-25
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
1B:CE:3E:F6:78:10:5D:3C:CB:0E:73:7D:6C:AD:7C:35:79:6E:2C:EC:B8:1E:4E:B9:E8:44:E0:D8:BB:30:55:67
SHA1
99:FB:45:11:6B:B5:40:E0:78:28:86:66:1F:85:FD:26:DF:1C:05:D5
X509v3 extensions
subjectKeyIdentifier
  • A8:10:3C:9F:CE:79:2A:EA:88:B2:74:C4:90:86:9C:CA:B8:CC:D0:B0
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
  • 67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
  • Timestamp : Mar 27 23:05:53.045 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:D2:EB:45:1B:14:FE:8B:9B:DB:DD:9B:
  • 02:AB:A7:6C:02:67:02:25:00:C7:20:CE:55:B6:27:01:
  • 86:48:35:0C:F1:02:21:00:FD:DC:73:62:DB:0A:F5:9F:
  • 9D:EE:B5:79:42:0F:5D:20:99:2E:C2:FB:41:81:F6:58:
  • AD:5D:AE:0D:85:E3:59:B9
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
  • 65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
  • Timestamp : Mar 27 23:05:53.081 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:5B:96:35:32:B7:31:E2:EC:45:F2:B7:33:
  • 2D:79:9D:D4:15:72:33:BB:B6:18:EE:B0:04:6D:E9:16:
  • DD:D2:B7:ED:02:20:3B:BE:23:AA:47:0A:76:7C:68:A8:
  • 39:21:DC:24:5A:98:5F:0A:D4:2B:EB:68:52:4B:AC:28:
  • 83:D0:58:3C:42:71
First seen at:

CN=berlin.mdewendt.de

Certificate chain
  • berlin.mdewendt.de
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • berlin.mdewendt.de
Alternative Names
  • berlin.mdewendt.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2024-04-11
Not valid after
2024-07-10
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
27:0D:A1:45:A6:22:A4:DE:55:2C:F7:74:7C:24:C0:50:AA:F7:53:F1:68:4E:46:06:55:91:C2:FA:E3:37:DE:17
SHA1
33:53:9B:4F:04:0D:48:7D:92:D5:03:61:3F:36:24:C9:86:8C:B5:74
X509v3 extensions
subjectKeyIdentifier
  • EC:D4:8F:9E:F0:E5:BD:BD:6D:4E:2B:7D:19:D3:84:15:36:DE:75:C8
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Apr 11 06:09:44.351 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:F0:47:57:E1:24:85:0A:A1:26:8E:FD:
  • 5F:BE:1E:DB:A5:32:A5:95:E5:23:2C:9F:08:B3:46:E6:
  • F8:E2:43:E2:51:02:20:2A:B5:3D:40:75:B3:6C:EE:A2:
  • 02:BF:73:56:F3:96:53:DF:04:DC:4B:79:3B:15:6E:8A:
  • 1C:67:F3:F3:9B:73:05
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
  • 4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
  • Timestamp : Apr 11 06:09:44.557 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:5E:BE:02:76:D5:A3:00:3C:72:92:08:48:
  • D4:40:B2:C2:93:4F:2F:DD:4A:86:6E:8A:5B:53:1F:BC:
  • 6C:8E:06:C9:02:21:00:88:BD:6C:A7:E4:75:CD:D7:E4:
  • 54:89:A4:2E:92:A9:E8:B8:9F:F9:B5:06:53:56:3C:7B:
  • E5:44:FB:E5:21:E1:9A
First seen at:

CN=mdewendt.de

Certificate chain
  • mdewendt.de
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mdewendt.de
Alternative Names
  • *.mdewendt.de
  • mdewendt.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2024-03-30
Not valid after
2024-06-28
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
E6:6A:D7:4F:F0:68:A5:1B:E6:2B:20:77:5B:74:36:2E:57:D0:56:0D:99:86:08:95:AB:3D:49:AA:99:7B:1E:EC
SHA1
48:EE:04:8C:F3:9C:C6:3D:61:21:FC:B8:89:8B:03:42:C5:B0:54:55
X509v3 extensions
subjectKeyIdentifier
  • 3B:57:0B:02:A9:27:60:88:87:76:2D:DE:E0:8E:3F:E2:35:94:3D:0D
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
  • 65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
  • Timestamp : Mar 30 23:05:45.241 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:A3:2F:E2:80:86:76:AC:D1:67:AD:FD:
  • 48:30:48:26:25:50:22:7E:89:A5:5D:C1:F7:CF:87:F9:
  • 92:F5:6C:DC:C4:02:21:00:E6:86:72:9D:36:F4:34:C5:
  • 1B:CD:12:16:79:C5:A9:6E:7D:46:95:0C:9C:64:22:3C:
  • 92:0D:B7:7A:95:03:8F:1B
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Mar 30 23:05:45.203 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:58:A9:51:71:AF:C2:EA:59:17:07:78:7F:
  • 29:3E:DC:8C:95:81:6A:7C:BD:E9:BC:55:51:8A:6C:9B:
  • 7F:3A:DB:6A:02:21:00:B8:79:06:EB:52:B7:58:2D:50:
  • E8:12:C6:85:D5:1D:A4:DE:F3:45:27:AD:B2:B6:99:BA:
  • F5:F0:44:61:4A:CD:DF

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.martin.mdewendt.de
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.tim.mdewendt.de
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.berlin.mdewendt.de
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.ben.mdewendt.de
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid