SSL check results of rabarber.it

NEW You can also bulk check multiple servers.

Discover if the mail servers for rabarber.it can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Mon, 03 May 2021 14:03:07 +0000

We can not guarantee a secure connection to the mailservers of rabarber.it!

Please contact the operator of rabarber.it and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/rabarber.it

Servers

Incoming Mails

These servers are responsible for incoming mails to @rabarber.it addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
rabarber.xs4all.space
82.161.151.38
15
supported
rabarber.xs4all.space
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
3 s
archive.antenna.nl
138.201.85.164
Results incomplete
25
supported
not checked
DANE
missing
PFS
unsupported
Heartbleed
not vulnerable
Weak ciphers
supported
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have received emails from these servers with @rabarber.it sender addresses. Test mail delivery

Host TLS Version & Cipher
rabarber.xs4all.space (82.161.151.38)
TLSv1.3 TLS_AES_256_GCM_SHA384

Certificates

First seen at:

CN=rabarber.xs4all.space

Certificate chain
  • rabarber.xs4all.space
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption

      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • DST Root CA X3 (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption

Subject
Common Name (CN)
  • rabarber.xs4all.space
Alternative Names
  • rabarber.xs4all.space
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2021-05-03
Not valid after
2021-08-01
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
6E:84:6B:2C:1B:FC:0F:3C:53:0C:65:BF:BD:57:05:34:D7:DF:38:1C:48:30:48:69:32:F2:CD:09:F3:51:00:80
SHA1
46:F7:0E:3A:82:B5:48:FC:74:5D:D5:B4:D5:60:41:3D:D7:ED:4D:F4
X509v3 extensions
subjectKeyIdentifier
  • B2:F2:27:54:71:F8:86:9A:BA:99:16:B5:6A:D0:3A:38:27:AD:D7:E6
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 44:94:65:2E:B0:EE:CE:AF:C4:40:07:D8:A8:FE:28:C0:
  • DA:E6:82:BE:D8:CB:31:B5:3F:D3:33:96:B5:B6:81:A8
  • Timestamp : May 3 09:51:14.432 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:BC:CE:70:D1:EF:DA:2C:5D:52:F9:8B:
  • CA:C9:8F:3F:36:EF:1E:3B:73:29:E7:D7:28:7B:60:74:
  • A2:47:F4:93:1E:02:20:7F:B3:48:1E:E2:F3:7F:50:C5:
  • DE:94:0B:6C:BC:36:26:DF:56:93:94:BD:2C:F8:9E:01:
  • D8:92:A9:F1:B5:CC:F1
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89:
  • 79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7
  • Timestamp : May 3 09:51:14.486 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:9C:A1:7D:A7:6E:98:A1:E1:45:BF:ED:
  • 10:0D:0E:F5:D9:BA:82:40:6B:0E:37:B5:9E:86:A6:2A:
  • B5:AE:20:21:9D:02:21:00:B9:16:A8:E6:58:E8:47:0E:
  • A3:1E:8E:81:C4:64:C6:CB:94:10:AC:B8:C7:F5:F4:D0:
  • 94:BD:81:EB:63:66:EF:7E