SSL-Tools

SSL check results of nak-nordost.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for nak-nordost.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Tue, 04 Feb 2025 14:42:30 +0000

The mailservers of nak-nordost.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @nak-nordost.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mailserver.nak.org
81.201.153.50
 10
supported
mailserver.nak.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @nak-nordost.de address so far. Test mail delivery

Certificates

First seen at:

CN=mailserver.nak.org

Certificate chain
  • mailserver.nak.org
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mailserver.nak.org
Alternative Names
  • mailserver.nak.org
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2025-01-25
Not valid after
2025-04-25
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
8C:DF:18:44:C3:05:02:D9:DA:C2:34:0C:A9:09:01:30:53:FB:CA:A6:0B:57:CC:6B:92:C7:4D:EE:2C:54:62:65
SHA1
FB:74:8D:16:BA:07:AE:EC:77:40:63:19:84:8B:9D:36:75:C8:33:D3
X509v3 extensions
subjectKeyIdentifier
  • 2F:A6:62:03:91:D7:75:97:1F:18:23:F5:4F:1A:C6:D9:5A:FC:63:03
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • OCSP - URI:http://r10.o.lencr.org
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
  • D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
  • Timestamp : Jan 25 23:46:09.634 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:9F:0F:A8:FC:AE:9C:93:B8:6D:48:DD:
  • 7D:D3:12:55:18:CE:B4:8D:2D:A6:98:24:A6:2F:B6:A3:
  • 7C:71:95:E8:D7:02:20:14:F2:28:FC:70:07:1D:0B:AE:
  • 89:65:FA:6C:95:87:6E:D5:3A:01:32:B3:51:A9:63:43:
  • 00:F0:3B:9E:A9:0C:18
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
  • 16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
  • Timestamp : Jan 25 23:46:09.825 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:1E:4B:71:37:7A:DB:5D:25:2A:B1:90:6A:
  • CD:76:83:B6:B8:D7:CE:69:A7:3E:D1:A5:6A:93:9B:72:
  • 74:62:5E:5C:02:21:00:FE:D2:BD:E3:8E:6A:43:03:89:
  • 00:18:0E:1B:AE:CE:6B:CD:FE:10:2D:D1:E2:99:9E:84:
  • 89:7C:70:13:DE:33:7E