SSL-Tools

SSL check results of onmail.hu

NEW You can also bulk check multiple servers.

Discover if the mail servers for onmail.hu can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Mon, 18 May 2026 00:31:04 +0000

The mailservers of onmail.hu can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @onmail.hu addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.onmail.hu
2a14:2f40:0:102::4d
 10
supported
mail.onmail.hu
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
6 s
mail.onmail.hu
185.65.68.235
 10
supported
mail.onmail.hu
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
3 s

Outgoing Mails

We have not received any emails from a @onmail.hu address so far. Test mail delivery

Certificates

First seen at:

CN=mail.onmail.hu

Certificate chain
  • mail.onmail.hu
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R12
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mail.onmail.hu
Alternative Names
  • autoconfig.fsociety.hu
  • autoconfig.onmail.hu
  • autodiscover.fsociety.hu
  • autodiscover.piconotes.eu
  • mail.onmail.hu
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R12
validity period
Not valid before
2026-05-14
Not valid after
2026-08-12
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
Fingerprints
SHA256
CE:42:A9:CC:F3:78:FF:AE:DA:4B:77:A8:3A:4E:AC:E4:36:4B:49:61:B7:EF:0D:D9:4B:65:BD:2C:E9:67:22:7F
SHA1
AA:25:06:73:5C:8D:60:C4:C7:E8:95:5E:77:C1:BC:3B:B6:74:09:41
X509v3 extensions
subjectKeyIdentifier
  • A6:38:62:9C:47:E4:A5:8F:6F:7C:07:AB:7C:63:A7:28:F2:2D:FC:E7
authorityKeyIdentifier
  • keyid:00:B5:29:F2:2D:8E:6F:31:E8:9B:4C:AD:78:3E:FA:DC:E9:0C:D1:D2
authorityInfoAccess
  • CA Issuers - URI:http://r12.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r12.c.lencr.org/31.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:
  • F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7
  • Timestamp : May 14 11:28:14.143 2026 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:72:B2:54:49:59:29:E8:04:5C:19:1A:A0:
  • DF:89:C8:FE:38:19:51:EA:8D:03:50:F4:14:E0:67:90:
  • 6B:7A:BC:89:02:21:00:FA:86:2C:6C:61:A2:97:34:4B:
  • 79:33:88:A9:62:C4:43:C7:03:29:D8:1B:84:A7:88:89:
  • C1:FD:56:F7:77:1B:74
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A8:26:CB:E3:0A:C6:35:12:46:53:3F:E0:65:F1:4F:19:
  • D9:6E:19:08:13:C4:1D:D9:6D:79:00:B3:12:3C:55:27
  • Timestamp : May 14 11:28:14.982 2026 GMT
  • Extensions: 00:00:05:00:0A:DC:D0:53
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:0E:68:95:74:19:DF:F3:25:35:6C:91:77:
  • B2:CF:94:B7:32:D2:76:38:0C:BC:E8:07:64:4A:54:DD:
  • F4:00:44:C7:02:20:6B:B3:8B:82:D6:87:C9:D4:E4:00:
  • 57:B3:23:4C:59:22:47:E9:BA:FC:73:98:0A:0B:9A:92:
  • 6E:6A:8D:95:EE:D3