SSL-Tools

SSL check results of netcologne.com

NEW You can also bulk check multiple servers.

Discover if the mail servers for netcologne.com can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 13 Feb 2025 11:41:32 +0000

We can not guarantee a secure connection to the mailservers of netcologne.com!

Please contact the operator of netcologne.com and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/netcologne.com

Servers

Incoming Mails

These servers are responsible for incoming mails to @netcologne.com addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
ncmx1.netcologne.de
2001:4dd0:100:1062:25:a::1
Results incomplete
10
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
2 s
ncmx1.netcologne.de
89.1.8.220
 10
supported
ncmx1.netcologne.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
ncmx2.netcologne.de
2001:4dd0:100:1062:25:a::2
Results incomplete
10
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
2 s
ncmx2.netcologne.de
89.1.8.221
 10
supported
ncmx2.netcologne.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @netcologne.com address so far. Test mail delivery

Certificates

First seen at:

CN=ncmx1.netcologne.de

Certificate chain
  • ncmx1.netcologne.de
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • ncmx1.netcologne.de
Alternative Names
  • ncmx1.netcologne.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2025-01-27
Not valid after
2025-04-27
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
B8:03:DE:E6:3A:38:63:37:CB:49:C9:DE:B8:70:42:C2:8A:B1:E6:59:13:DA:68:10:87:26:30:5A:2D:99:7B:0C
SHA1
8B:9B:59:EF:5D:91:F9:BD:B6:69:12:54:3E:89:7A:AF:09:F9:54:50
X509v3 extensions
subjectKeyIdentifier
  • 92:B9:F3:E0:21:83:26:8E:E3:08:3D:C3:4F:E9:B3:FA:6C:75:DB:F7
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • OCSP - URI:http://r10.o.lencr.org
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
  • D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
  • Timestamp : Jan 27 10:07:12.080 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:CE:62:5E:00:2A:EF:B2:B7:E9:F5:C8:
  • 0A:0D:4B:CE:6C:2F:5F:FC:5B:5D:82:5B:F0:AC:44:4F:
  • 64:8E:F1:AA:4A:02:21:00:E7:AB:E3:0F:38:F8:5F:36:
  • 25:BB:89:F3:2F:AA:C0:38:B9:63:DD:54:5C:B3:69:E8:
  • 96:EE:F2:EB:5D:27:4F:62
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
  • 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
  • Timestamp : Jan 27 10:07:12.081 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:60:95:B1:17:DA:A0:FE:FD:B0:44:C6:F4:
  • 0B:F4:E1:DB:82:93:2B:26:89:35:63:8C:B6:E9:28:58:
  • 6D:51:39:73:02:21:00:DA:60:B7:B2:5A:6E:AB:15:76:
  • 19:1E:6F:35:F7:EC:CC:12:7F:12:52:9F:DB:A5:E1:CB:
  • 3A:0E:82:B0:46:F1:F1
First seen at:

CN=ncmx2.netcologne.de

Certificate chain
  • ncmx2.netcologne.de
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R11
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • ncmx2.netcologne.de
Alternative Names
  • ncmx2.netcologne.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R11
validity period
Not valid before
2025-01-28
Not valid after
2025-04-28
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
FE:0A:2F:29:B9:E3:CB:CB:A7:A0:36:7F:1F:8A:49:32:E9:80:5D:E3:80:DB:00:F2:49:B6:07:7A:A7:D1:CB:30
SHA1
4F:CB:A3:FB:B8:2E:BC:1B:14:89:29:1C:B6:8F:49:B7:CD:2D:04:B4
X509v3 extensions
subjectKeyIdentifier
  • 4A:1E:B0:5E:1B:77:64:94:94:48:6A:17:0A:4B:A2:15:0B:12:42:F3
authorityKeyIdentifier
  • keyid:C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
authorityInfoAccess
  • OCSP - URI:http://r11.o.lencr.org
  • CA Issuers - URI:http://r11.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
  • 22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
  • Timestamp : Jan 28 10:07:13.752 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:26:E9:D8:7C:4D:A8:74:E9:9D:DA:53:91:
  • 04:32:C6:44:F0:95:F1:B2:87:D8:91:07:36:99:1F:02:
  • 09:2F:33:19:02:21:00:99:37:40:19:63:B5:B6:75:F4:
  • FE:A3:F8:D3:85:BD:59:8F:3A:CC:1F:9C:9B:1E:EB:20:
  • 44:66:17:1A:89:CC:A5
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
  • 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
  • Timestamp : Jan 28 10:07:13.736 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:60:C2:39:ED:B0:F7:16:27:9F:CA:46:F1:
  • 20:2E:D4:AD:7C:56:20:69:34:B2:35:7E:5C:22:8E:5E:
  • 97:5E:D3:19:02:21:00:C4:58:E8:A0:CF:08:6A:2C:85:
  • 1B:22:C6:40:FE:33:5B:17:9E:F6:E9:E0:F8:E2:39:46:
  • 43:58:3F:33:67:23:1B