SSL check results of outwrite.ca

NEW You can also bulk check multiple servers.

Discover if the mail servers for outwrite.ca can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Tue, 03 Dec 2019 07:50:30 +0000

The mailservers of outwrite.ca can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @outwrite.ca addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
aspmx.l.google.com
2a00:1450:4013:c00::1b
1
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
aspmx.l.google.com
173.194.79.26
1
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
alt2.aspmx.l.google.com
2404:6800:4008:c00::1b
5
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
13 s
alt2.aspmx.l.google.com
108.177.97.26
5
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
15 s
alt1.aspmx.l.google.com
2404:6800:4003:c04::1b
5
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
18 s
alt1.aspmx.l.google.com
172.217.194.26
5
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
16 s
alt3.aspmx.l.google.com
2607:f8b0:400e:c00::1a
10
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s
alt3.aspmx.l.google.com
173.194.202.26
10
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s
alt4.aspmx.l.google.com
2607:f8b0:4003:c13::1b
10
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
7 s
alt4.aspmx.l.google.com
108.177.9.26
10
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s

Outgoing Mails

We have not received any emails from a @outwrite.ca address so far. Test mail delivery

Certificates

First seen at:

CN=mx.google.com,O=Google LLC,L=Mountain View,ST=California,C=US

Certificate chain
  • mx.google.com
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption

      • GTS CA 1O1
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • GlobalSign (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption

Subject
Country (C)
  • US
State (ST)
  • California
Locality (L)
  • Mountain View
Organization (O)
  • Google LLC
Common Name (CN)
  • mx.google.com
Alternative Names
  • mx.google.com
  • alt1.aspmx.l.google.com
  • alt1.gmail-smtp-in.l.google.com
  • alt1.gmr-smtp-in.l.google.com
  • alt2.aspmx.l.google.com
  • alt2.gmail-smtp-in.l.google.com
  • alt2.gmr-smtp-in.l.google.com
  • alt3.aspmx.l.google.com
  • alt3.gmail-smtp-in.l.google.com
  • alt3.gmr-smtp-in.l.google.com
  • alt4.aspmx.l.google.com
  • alt4.gmail-smtp-in.l.google.com
  • alt4.gmr-smtp-in.l.google.com
  • aspmx.l.google.com
  • aspmx2.googlemail.com
  • aspmx3.googlemail.com
  • aspmx4.googlemail.com
  • aspmx5.googlemail.com
  • gmail-smtp-in.l.google.com
  • gmr-mx.google.com
  • gmr-smtp-in.l.google.com
  • mx1.smtp.goog
  • mx2.smtp.goog
  • mx3.smtp.goog
  • mx4.smtp.goog
Issuer
Country (C)
  • US
Organization (O)
  • Google Trust Services
Common Name (CN)
  • GTS CA 1O1
validity period
Not valid before
2019-11-05
Not valid after
2020-01-28
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
Fingerprints
SHA256
11:8C:7B:EF:2F:FC:97:23:E8:EC:C4:4D:28:62:1D:14:57:C6:90:EB:E3:C8:39:51:53:52:24:BE:84:79:AC:3D
SHA1
3A:21:35:3E:61:2E:1E:D1:7A:06:E2:CE:BB:23:7C:5C:75:BB:C1:ED
X509v3 extensions
subjectKeyIdentifier
  • 52:36:73:25:97:40:45:EC:9C:A7:65:3E:F4:36:6D:8D:BF:91:81:0B
authorityKeyIdentifier
  • keyid:98:D1:F8:6E:10:EB:CF:9B:EC:60:9F:18:90:1B:A0:EB:7D:09:FD:2B
authorityInfoAccess
  • OCSP - URI:http://ocsp.pki.goog/gts1o1
  • CA Issuers - URI:http://pki.goog/gsr2/GTS1O1.crt
certificatePolicies
  • Policy: 2.23.140.1.2.2
  • Policy: 1.3.6.1.4.1.11129.2.5.3
crlDistributionPoints
  • Full Name:
  • URI:http://crl.pki.goog/GTS1O1.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : B2:1E:05:CC:8B:A2:CD:8A:20:4E:87:66:F9:2B:B9:8A:
  • 25:20:67:6B:DA:FA:70:E7:B2:49:53:2D:EF:8B:90:5E
  • Timestamp : Nov 5 08:45:25.432 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:25:EA:3D:B4:A4:EA:C0:2D:F6:8E:F4:98:
  • 34:F4:26:F9:13:BC:49:0B:FE:FE:E3:E4:7C:8D:DF:9C:
  • A1:40:04:40:02:21:00:B6:74:E3:30:2C:50:82:17:89:
  • 80:F7:3C:D2:F3:C7:12:AE:AF:E1:D7:2C:30:5C:02:72:
  • 5C:CE:2E:57:98:03:6A
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5E:A7:73:F9:DF:56:C0:E7:B5:36:48:7D:D0:49:E0:32:
  • 7A:91:9A:0C:84:A1:12:12:84:18:75:96:81:71:45:58
  • Timestamp : Nov 5 08:45:25.480 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:79:D5:51:08:91:53:B8:D9:0A:BF:7B:61:
  • DC:1A:8F:4B:13:3A:D8:67:AA:3B:34:B1:2F:45:97:FD:
  • 4D:37:2F:A3:02:21:00:F6:1E:69:D2:7D:BB:69:0F:8F:
  • 79:85:72:76:58:F9:42:F6:8F:8B:BC:7D:0C:07:B7:53:
  • 52:EE:AB:0C:E8:BA:C9