SSL-Tools

SSL check results of opzet.nl

NEW You can also bulk check multiple servers.

Discover if the mail servers for opzet.nl can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Tue, 09 Jun 2020 00:30:26 +0000

We can not guarantee a secure connection to the mailservers of opzet.nl!

Please contact the operator of opzet.nl and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/opzet.nl

Servers

Incoming Mails

These servers are responsible for incoming mails to @opzet.nl addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
bsmtp.opzet.nl
213.197.220.101
 10
supported
*.opzet.nl
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12 s
etrn.is.nl
213.133.46.8
Results incomplete
20
supported
not checked
DANE
missing
PFS
not checked
Heartbleed
not vulnerable
Weak ciphers
not checked
2 s

Outgoing Mails

We have not received any emails from a @opzet.nl address so far. Test mail delivery

Certificates

First seen at:

CN=*.opzet.nl

Certificate chain
Subject
Common Name (CN)
  • *.opzet.nl
Alternative Names
  • *.opzet.nl
  • opzet.nl
Issuer
Country (C)
  • GB
State (ST)
  • Greater Manchester
Locality (L)
  • Salford
Organization (O)
  • Sectigo Limited
Common Name (CN)
  • Sectigo RSA Domain Validation Secure Server CA
validity period
Not valid before
2020-05-26
Not valid after
2021-05-27
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
1F:5A:9D:72:B4:A7:04:CD:11:9C:F6:67:9B:8D:F5:BF:39:FC:49:58:EA:72:0F:35:6D:AB:F6:56:99:4B:5A:DE
SHA1
0C:E1:8F:C3:89:0F:73:D0:24:D7:2E:70:C0:94:27:61:85:1F:76:59
X509v3 extensions
authorityKeyIdentifier
  • keyid:8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
subjectKeyIdentifier
  • A4:67:74:03:2B:BA:DE:21:28:D6:C3:A0:C7:90:CF:5B:B4:34:32:D4
certificatePolicies
  • Policy: 1.3.6.1.4.1.6449.1.2.2.7
  • CPS: https://sectigo.com/CPS
  • Policy: 2.23.140.1.2.1
authorityInfoAccess
  • CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
  • OCSP - URI:http://ocsp.sectigo.com
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89:
  • 79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7
  • Timestamp : May 26 09:08:52.246 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:F4:84:7A:69:46:42:09:4C:F7:D2:BA:
  • 37:91:EE:09:05:8F:2E:2B:6D:45:EA:C3:56:3C:BE:A3:
  • 0E:E2:34:A4:EA:02:21:00:B3:DD:B8:89:F8:7A:67:4E:
  • AD:50:6B:AC:85:08:3C:04:47:42:75:E8:21:65:15:94:
  • 99:19:4C:41:F7:25:26:A9
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 94:20:BC:1E:8E:D5:8D:6C:88:73:1F:82:8B:22:2C:0D:
  • D1:DA:4D:5E:6C:4F:94:3D:61:DB:4E:2F:58:4D:A2:C2
  • Timestamp : May 26 09:08:52.431 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:B0:4A:0F:04:13:2B:13:F4:FB:6D:93:
  • 32:D8:6C:C3:C1:BC:F2:98:45:1A:06:19:A0:E1:5A:FE:
  • D7:09:CC:24:6A:02:20:04:CC:2B:B3:2F:CD:CF:E5:F9:
  • 9F:9C:BE:04:CE:53:DC:CB:9A:AA:CE:A5:FB:BC:98:8A:
  • 1D:2E:A8:F8:8E:31:F0