SSL check results of nbp.pl

NEW You can also bulk check multiple servers.

Discover if the mail servers for nbp.pl can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Tue, 23 Oct 2018 01:45:16 +0000

We can not guarantee a secure connection to the mailservers of nbp.pl!

Please contact the operator of nbp.pl and ask him or her to solve this problem. This result stays accessible under the following address:

https://ssl-tools.net/mailservers/nbp.pl

Servers

Incoming Mails

These servers are responsible for incoming mails to @nbp.pl addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx2.nbp.pl
195.85.196.54
1
supported
mx1.nbp.pl
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
14.0 s
mx1.nbp.pl
193.109.212.54
1
supported
mx1.nbp.pl
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
14.0 s
mx3.nbp.pl
193.109.212.53
Results incomplete
10 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11.0 s
mx4.nbp.pl
195.85.196.53
Results incomplete
10 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11.0 s

Outgoing Mails

We have not received any emails from a @nbp.pl address so far. Test mail delivery

Certificates

First seen at:

mx1.nbp.pl

Certificate chain
Subject
Country (C)
  • PL
Locality (L)
  • Warszawa
Organization (O)
  • Narodowy Bank Polski
Organizational Unit (OU)
  • DIT
Common Name (CN)
  • mx1.nbp.pl
Alternative Names
  • mx1.nbp.pl
  • mx2.nbp.pl
  • mx3.nbp.pl
  • mx4.nbp.pl
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Common Name (CN)
  • DigiCert SHA2 Secure Server CA
validity period
Not valid before
2018-01-25
Not valid after
2020-01-30
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
41:90:81:E9:7E:99:71:BD:4E:D5:EF:4B:93:D8:7F:28:06:08:A9:14:A9:AD:EC:A0:B1:FF:A4:0E:7A:3E:FD:DF
SHA1
54:33:6B:B4:55:9C:74:8C:FA:89:1F:E9:88:AE:37:07:CD:97:C4:2A
X509v3 extensions
authorityKeyIdentifier
  • keyid:0F:80:61:1C:82:31:61:D5:2F:28:E7:8D:46:38:B4:2C:E1:C6:D9:E2
subjectKeyIdentifier
  • 09:79:96:67:38:AA:2E:9E:F5:38:E8:F1:B0:B4:62:AA:17:99:6D:33
crlDistributionPoints
  • Full Name:
  • URI:http://crl3.digicert.com/ssca-sha2-g6.crl
  • Full Name:
  • URI:http://crl4.digicert.com/ssca-sha2-g6.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.1
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.2
authorityInfoAccess
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt