SSL-Tools

SSL check results of plantenvinder.nl

NEW You can also bulk check multiple servers.

Discover if the mail servers for plantenvinder.nl can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sun, 15 May 2022 12:07:36 +0000

The mailservers of plantenvinder.nl can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @plantenvinder.nl addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
plantenvinder.nl
2a01:7c8:bb0a:c9:5054:ff:fee3:a223
 10
supported
ftp.plantenvinder.nl
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
plantenvinder.nl
93.119.0.235
 10
supported
ftp.plantenvinder.nl
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
web.carien.eu
2a01:7c8:bb0a:c9:5054:ff:fee3:a223
 20
supported
web.carien.eu
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
web.carien.eu
93.119.0.235
 20
supported
web.carien.eu
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
relay.ixlhosting.nl
2a01:7c8:d008:3e0:5054:ff:fe5d:f765
Results incomplete
30
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
relay.ixlhosting.nl
136.144.237.126
Results incomplete
30
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @plantenvinder.nl address so far. Test mail delivery

Certificates

First seen at:

CN=ftp.plantenvinder.nl

Certificate chain
  • ftp.plantenvinder.nl
    • remaining
    • 384 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • ftp.plantenvinder.nl
Alternative Names
  • ftp.plantenvinder.nl
  • mail.plantenvinder.nl
  • plantenvinder.nl
  • pop.plantenvinder.nl
  • smtp.plantenvinder.nl
  • www.plantenvinder.nl
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2022-04-04
Not valid after
2022-07-03
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
68:33:99:35:A7:C5:31:28:12:4A:DD:55:57:6A:4F:57:B9:95:30:6B:DC:D2:80:DD:B1:13:5F:1C:2F:16:C0:5F
SHA1
C3:B5:33:87:E2:E2:AF:1C:A1:41:A3:FD:2F:D5:D6:4F:B5:08:F0:4F
X509v3 extensions
subjectKeyIdentifier
  • C7:C4:40:BE:23:4B:8F:7B:60:59:C1:3F:86:EC:3D:EB:D3:20:A8:C4
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
  • 11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
  • Timestamp : Apr 4 22:23:34.079 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:1A:90:54:E0:D4:D5:5B:01:FC:16:2E:47:
  • B4:80:DA:99:AE:63:F7:32:F8:D5:63:B6:0B:E6:14:AA:
  • 86:40:92:51:02:21:00:9B:60:90:72:1A:A8:66:C6:D4:
  • 5E:2C:69:52:55:79:84:6A:54:A1:99:B8:DC:DF:0C:6E:
  • 51:25:A3:65:60:3E:7C
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 41:C8:CA:B1:DF:22:46:4A:10:C6:A1:3A:09:42:87:5E:
  • 4E:31:8B:1B:03:EB:EB:4B:C7:68:F0:90:62:96:06:F6
  • Timestamp : Apr 4 22:23:34.549 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:74:77:E9:74:17:4B:51:15:56:C9:E6:BC:
  • 54:61:EA:D8:F7:59:39:E5:6D:B3:E6:FA:EB:3E:43:48:
  • D1:6F:73:1B:02:21:00:D3:10:36:3C:F7:21:09:96:D0:
  • 58:64:51:B6:54:05:F7:FF:C2:70:F7:AC:AE:51:D0:59:
  • 96:36:2D:20:EA:53:61
First seen at:

CN=web.carien.eu

Certificate chain
  • web.carien.eu
    • remaining
    • 384 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • web.carien.eu
Alternative Names
  • web.carien.eu
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2022-04-30
Not valid after
2022-07-29
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
59:BE:B1:EA:3E:A7:4D:3B:4B:20:0F:A4:DB:86:69:79:C1:15:CB:21:BE:96:AC:B7:3A:49:B2:07:FD:FE:00:D6
SHA1
AD:3C:80:CC:A5:C5:94:21:23:D6:A5:BD:59:33:5A:4B:36:10:23:E7
X509v3 extensions
subjectKeyIdentifier
  • 13:E5:98:7E:94:02:88:E8:90:03:C9:E7:B4:FE:79:5D:90:FC:F4:4A
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DF:A5:5E:AB:68:82:4F:1F:6C:AD:EE:B8:5F:4E:3E:5A:
  • EA:CD:A2:12:A4:6A:5E:8E:3B:12:C0:20:44:5C:2A:73
  • Timestamp : Apr 30 22:30:46.241 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:40:BA:1B:3B:A4:57:F0:2A:DD:70:C4:72:
  • 86:FD:D1:E9:DB:C9:AC:97:E1:9A:F5:A0:A7:C3:94:55:
  • 5E:AB:C4:28:02:20:79:5C:A6:7C:2F:9A:AB:EA:68:91:
  • AC:4D:36:A5:EB:EB:92:23:B8:BB:6D:93:4D:D1:73:0C:
  • 2B:53:7D:0F:16:18
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 29:79:BE:F0:9E:39:39:21:F0:56:73:9F:63:A5:77:E5:
  • BE:57:7D:9C:60:0A:F8:F9:4D:5D:26:5C:25:5D:C7:84
  • Timestamp : Apr 30 22:30:46.253 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:C8:54:7B:FF:33:2C:DE:17:DA:87:CB:
  • 06:77:F7:46:DE:7A:E7:FD:FA:88:11:8F:AA:3E:58:D7:
  • 28:36:34:18:87:02:20:34:0F:90:A8:75:26:16:49:C9:
  • AC:83:42:35:74:1A:18:A7:D0:31:BC:00:64:7F:AA:2B:
  • 46:B2:9B:CE:7F:9D:C3

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.relay.ixlhosting.nl
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.plantenvinder.nl
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.plantenvinder.nl
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.web.carien.eu
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.web.carien.eu
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid