mx0.fmi-groupe.fr - TLS / STARTTLS Test

Discover if the mail servers for mx0.fmi-groupe.fr can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Fri, 16 Apr 2021 08:10:31 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Valid

The mailservers of mx0.fmi-groupe.fr can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @mx0.fmi-groupe.fr addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mx0.fmi-groupe.fr 82.196.24.16	-	supported	*.fmi-groupe.fr	DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2021-04-16 13 s

Outgoing Mails

We have not received any emails from a @mx0.fmi-groupe.fr address so far. Test mail delivery

Certificates

First seen at: 2021-04-16

CN=*.fmi-groupe.fr

Certificate chain

*.fmi-groupe.fr
- 2022-04-14 remaining
- 4096 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

*.fmi-groupe.fr

Alternative Names

*.fmi-groupe.fr
fmi-groupe.fr

Issuer

Country (C)

Organization (O)

DigiCert Inc

Organizational Unit (OU)

www.digicert.com

Common Name (CN)

Thawte RSA CA 2018

validity period

Not valid before: 2021-04-15
Not valid after: 2022-04-14

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 99:57:5B:42:92:CD:3F:24:57:E7:EF:E1:34:6E:AC:DC:15:01:B5:A6:52:4B:79:17:8B:60:D6:F9:4D:F1:94:98
SHA1: 74:43:77:B5:7E:D0:AD:58:66:E6:AA:DC:FF:84:EE:D7:AE:7A:AC:D8

X509v3 extensions

authorityKeyIdentifier

keyid:A3:C8:5E:65:54:E5:30:78:C1:05:EA:07:0A:6A:59:CC:B9:FE:DE:5A

subjectKeyIdentifier

BC:14:11:5E:F0:12:F7:25:DE:D2:75:23:CC:25:6A:52:92:25:3B:06

crlDistributionPoints

Full Name:
URI:http://cdp.thawte.com/ThawteRSACA2018.crl

certificatePolicies

Policy: 2.23.140.1.2.1
CPS: http://www.digicert.com/CPS

authorityInfoAccess

OCSP - URI:http://status.thawte.com
CA Issuers - URI:http://cacerts.thawte.com/ThawteRSACA2018.crt

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 29:79:BE:F0:9E:39:39:21:F0:56:73:9F:63:A5:77:E5:
BE:57:7D:9C:60:0A:F8:F9:4D:5D:26:5C:25:5D:C7:84
Timestamp : Apr 15 13:32:42.962 2021 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:17:EF:BA:F5:56:8A:6B:80:6D:22:56:05:
A9:51:86:1B:5D:0C:A9:37:19:EB:F4:4B:E3:CC:00:1A:
BD:16:C1:D8:02:20:04:A4:71:2F:29:FA:00:5F:86:9E:
36:2F:20:AE:E1:45:08:40:48:8D:4C:5F:00:AB:3D:A8:
C8:E5:7D:3A:E1:B0
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 22:45:45:07:59:55:24:56:96:3F:A1:2F:F1:F7:6D:86:
E0:23:26:63:AD:C0:4B:7F:5D:C6:83:5C:6E:E2:0F:02
Timestamp : Apr 15 13:32:42.871 2021 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:79:BD:00:1D:AF:E5:1F:6A:29:00:CA:B9:
07:59:33:CA:43:6C:B7:2C:5D:CB:89:ED:73:66:1F:92:
07:67:68:CD:02:21:00:EF:7F:8E:53:31:EA:79:77:B1:
C7:20:15:B6:40:0A:27:EB:E7:E2:DA:3B:E7:35:FD:08:
94:6D:FB:C0:25:A2:F7
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 51:A3:B0:F5:FD:01:79:9C:56:6D:B8:37:78:8F:0C:A4:
7A:CC:1B:27:CB:F7:9E:88:42:9A:0D:FE:D4:8B:05:E5
Timestamp : Apr 15 13:32:42.924 2021 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:6B:86:EA:51:52:C3:85:3C:94:C3:26:07:
B6:97:32:7A:90:D3:9D:48:16:C7:40:BB:94:38:D5:58:
0B:60:F6:EC:02:20:78:E8:74:E0:73:C0:B3:BF:F0:D6:
36:6D:8B:D5:8B:0E:9E:D8:70:0C:DC:68:1D:4E:9A:39:
BF:97:6C:C4:6D:BB

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name	Options	DNSSEC	Matches
_25._tcp.mx0.fmi-groupe.fr	DANE-EE: Domain Issued Certificate Use subject public key SHA-256 Hash	valid	valid

SSL check results of mx0.fmi-groupe.fr