SSL-Tools

SSL check results of prod.hdi.service.onpier.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for prod.hdi.service.onpier.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 23 Jun 2022 12:56:23 +0000

The mailservers of prod.hdi.service.onpier.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @prod.hdi.service.onpier.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mxa.eu.mailgun.org
3.122.29.183
 0
supported
*.eu.mailgun.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
mxa.eu.mailgun.org
35.156.190.149
 0
supported
*.eu.mailgun.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
mxa.eu.mailgun.org
35.157.140.183
 0
supported
*.eu.mailgun.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
mxb.eu.mailgun.org
35.156.190.149
 0
supported
*.eu.mailgun.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
mxb.eu.mailgun.org
35.157.140.183
 0
supported
*.eu.mailgun.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
mxb.eu.mailgun.org
3.122.29.183
 0
supported
*.eu.mailgun.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @prod.hdi.service.onpier.de address so far. Test mail delivery

Certificates

First seen at:

CN=*.eu.mailgun.org,O=MAILGUN TECHNOLOGIES\, INC,L=San Francisco,ST=California,C=US

Certificate chain
Subject
Country (C)
  • US
State (ST)
  • California
Locality (L)
  • San Francisco
Organization (O)
  • MAILGUN TECHNOLOGIES, INC
Common Name (CN)
  • *.eu.mailgun.org
Alternative Names
  • *.eu.mailgun.org
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • Thawte RSA CA 2018
validity period
Not valid before
2020-05-26
Not valid after
2022-07-20
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
91:A1:02:AE:22:24:24:57:BC:0C:32:0E:64:72:D5:73:26:98:BB:08:0D:21:20:5F:C1:07:6C:B3:6E:94:67:7C
SHA1
C5:D4:7C:45:C7:28:38:EE:5A:5D:3B:50:1B:B8:E1:3B:39:83:88:14
X509v3 extensions
authorityKeyIdentifier
  • keyid:A3:C8:5E:65:54:E5:30:78:C1:05:EA:07:0A:6A:59:CC:B9:FE:DE:5A
subjectKeyIdentifier
  • 0D:4C:91:30:B0:C4:56:4E:5B:6D:72:2B:4B:02:D5:1B:3B:D4:FE:23
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.thawte.com/ThawteRSACA2018.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.1
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.2
authorityInfoAccess
  • OCSP - URI:http://status.thawte.com
  • CA Issuers - URI:http://cacerts.thawte.com/ThawteRSACA2018.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 29:79:BE:F0:9E:39:39:21:F0:56:73:9F:63:A5:77:E5:
  • BE:57:7D:9C:60:0A:F8:F9:4D:5D:26:5C:25:5D:C7:84
  • Timestamp : May 26 23:07:03.014 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:C2:38:48:E8:EE:17:2D:B1:11:6B:87:
  • F0:F7:66:D6:5F:9C:05:54:BC:F9:E3:1C:45:DF:3C:4C:
  • B8:88:8B:95:24:02:21:00:C7:CB:4A:4D:13:EB:49:76:
  • 0C:51:26:30:37:F1:43:CF:19:03:13:7D:67:08:99:45:
  • 3A:20:DE:5D:60:CF:8C:A9
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 22:45:45:07:59:55:24:56:96:3F:A1:2F:F1:F7:6D:86:
  • E0:23:26:63:AD:C0:4B:7F:5D:C6:83:5C:6E:E2:0F:02
  • Timestamp : May 26 23:07:03.033 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:F9:DB:B4:1A:85:24:5B:85:EC:B3:0D:
  • 37:23:57:05:5C:9B:ED:66:74:8C:13:8C:60:37:44:4E:
  • 64:36:B4:CC:53:02:21:00:C1:C7:53:AC:8C:34:47:BB:
  • 94:37:D3:32:2C:7C:A5:AC:DB:7F:61:F7:92:38:42:18:
  • 35:43:61:F4:0B:EB:01:BC
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 51:A3:B0:F5:FD:01:79:9C:56:6D:B8:37:78:8F:0C:A4:
  • 7A:CC:1B:27:CB:F7:9E:88:42:9A:0D:FE:D4:8B:05:E5
  • Timestamp : May 26 23:07:03.114 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:C4:FE:C5:A8:66:36:3F:AD:4C:8F:1F:
  • 20:C4:73:E4:57:F2:42:C9:E4:A3:88:84:73:0F:1C:54:
  • 73:A7:F4:B6:D0:02:21:00:DB:3A:D0:36:35:2A:6E:BE:
  • 13:1B:22:8D:A8:C6:69:24:B7:92:3F:0C:97:41:39:5B:
  • D3:65:75:04:AE:E4:4D:60