SSL-Tools

SSL check results of raybeam.uk

NEW You can also bulk check multiple servers.

Discover if the mail servers for raybeam.uk can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Tue, 06 Jan 2026 08:35:36 +0000

We can not guarantee a secure connection to the mailservers of raybeam.uk!

Please contact the operator of raybeam.uk and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/raybeam.uk

Servers

Incoming Mails

These servers are responsible for incoming mails to @raybeam.uk addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
incoming-mail.aa.net.uk
2001:8b0:0:62::28
 20
supported
incoming-mail.aa.net.uk
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
3 s
incoming-mail.aa.net.uk
2001:8b0:0:62::29
 20
supported
incoming-mail.aa.net.uk
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
incoming-mail.aa.net.uk
90.155.62.28
 20
supported
incoming-mail.aa.net.uk
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
incoming-mail.aa.net.uk
90.155.62.29
 20
supported
incoming-mail.aa.net.uk
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
tertiary-mx.co.uk
2001:8b0:0:30::29
Results incomplete
30
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
tertiary-mx.co.uk
81.187.30.29
 30
supported
tertiary-mx.co.uk
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
30 s

Outgoing Mails

We have not received any emails from a @raybeam.uk address so far. Test mail delivery

Certificates

First seen at:

CN=tertiary-mx.co.uk

Certificate chain
  • tertiary-mx.co.uk
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R12
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • tertiary-mx.co.uk
Alternative Names
  • tertiary-mx.co.uk
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R12
validity period
Not valid before
2025-12-10
Not valid after
2026-03-10
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
73:38:60:33:A7:10:39:44:8F:6F:14:7A:DD:FB:C4:F8:8B:4A:5E:0B:3B:C6:9E:55:9A:6A:21:FD:9F:D7:CA:C0
SHA1
67:F0:00:4C:2B:6E:4C:E4:BF:20:65:5E:91:CA:DB:40:55:A4:AF:A2
X509v3 extensions
subjectKeyIdentifier
  • 84:B0:C1:B8:55:BE:AB:C9:00:10:69:2B:EA:8F:EC:CC:ED:92:F1:B1
authorityKeyIdentifier
  • keyid:00:B5:29:F2:2D:8E:6F:31:E8:9B:4C:AD:78:3E:FA:DC:E9:0C:D1:D2
authorityInfoAccess
  • CA Issuers - URI:http://r12.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r12.c.lencr.org/52.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 0E:57:94:BC:F3:AE:A9:3E:33:1B:2C:99:07:B3:F7:90:
  • DF:9B:C2:3D:71:32:25:DD:21:A9:25:AC:61:C5:4E:21
  • Timestamp : Dec 11 00:20:06.270 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:A5:C6:AD:4D:95:8F:CE:5C:41:48:72:
  • 73:B1:15:90:C9:FF:7E:B6:29:11:3D:44:34:3D:73:27:
  • BB:C5:58:B9:D3:02:21:00:FA:B1:18:78:F1:09:7F:46:
  • 4A:B7:77:CF:F8:BB:43:55:47:05:B2:AA:89:76:3C:55:
  • 58:88:66:46:F3:3C:75:B5
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A5:C9:78:92:5D:57:46:17:82:87:0D:D8:89:66:0B:5C:
  • 55:64:8B:7D:00:40:F2:EC:07:68:51:D1:88:69:19:F7
  • Timestamp : Dec 11 00:20:06.830 2025 GMT
  • Extensions: 00:00:05:00:2B:1F:C9:41
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:50:99:D2:3E:C1:A3:C9:06:43:69:85:11:
  • AB:30:2B:00:36:5E:FD:28:B1:DF:65:52:A1:2B:C1:84:
  • 2E:8F:50:5A:02:21:00:90:26:8A:DD:B8:55:DF:E1:26:
  • 0E:E8:A1:A1:A2:D3:E0:B2:E0:2A:D8:F0:E0:56:36:17:
  • 9A:2A:53:B3:8F:F4:3A
First seen at:

CN=incoming-mail.aa.net.uk

Certificate chain
  • incoming-mail.aa.net.uk
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R13
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • incoming-mail.aa.net.uk
Alternative Names
  • c.incoming-mail.co.uk
  • c.secondary-mx.co.uk
  • c.secondary-mx.uk
  • incoming-mail.aa.net.uk
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R13
validity period
Not valid before
2025-12-10
Not valid after
2026-03-10
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
32:5B:A2:CD:4C:CB:99:A3:95:23:CC:79:5B:6D:7E:B0:42:D9:2F:DF:F8:55:06:24:17:9C:13:CA:A7:30:4B:7E
SHA1
49:2E:9C:71:D0:1E:F1:30:1A:74:0A:5A:E8:3B:7A:E4:19:97:1A:8E
X509v3 extensions
subjectKeyIdentifier
  • 76:16:96:DC:72:29:30:75:74:79:89:DF:29:E9:8D:79:8C:4B:0F:92
authorityKeyIdentifier
  • keyid:E7:AB:9F:0F:2C:33:A0:53:D3:5E:4F:78:C8:B2:84:0E:3B:D6:92:33
authorityInfoAccess
  • CA Issuers - URI:http://r13.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r13.c.lencr.org/86.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 49:9C:9B:69:DE:1D:7C:EC:FC:36:DE:CD:87:64:A6:B8:
  • 5B:AF:0A:87:80:19:D1:55:52:FB:E9:EB:29:DD:F8:C3
  • Timestamp : Dec 11 00:22:42.499 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:29:38:BD:A4:3B:79:EA:FE:D2:55:91:1B:
  • A0:A3:5B:3F:32:6B:87:A8:35:E4:4C:70:3B:9C:14:B0:
  • 6E:D1:4C:B9:02:20:4E:51:3A:45:66:D9:D8:D0:D8:FE:
  • 5C:6F:22:D7:44:0E:F3:3F:54:55:AA:6F:74:9C:4F:53:
  • FA:80:17:93:20:4A
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 71:7E:95:F3:C2:38:8A:6D:B1:E3:84:49:3D:31:E1:5A:
  • A9:62:08:76:2D:42:00:E0:05:0C:D0:67:B5:A6:61:E2
  • Timestamp : Dec 11 00:22:42.708 2025 GMT
  • Extensions: 00:00:05:00:03:D7:26:47
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:57:7B:B1:70:D8:5D:8C:A3:0C:34:2D:45:
  • B1:FB:93:80:DD:7F:C9:F8:D0:74:DB:FF:9E:99:A7:E3:
  • E8:F9:99:2B:02:20:4B:3F:44:32:DF:A1:1F:11:F0:E0:
  • 86:FF:BB:19:63:81:D3:FC:1A:CE:F7:02:92:A1:A9:E0:
  • 65:0D:BF:20:DB:36
First seen at:

CN=incoming-mail.aa.net.uk

Certificate chain
  • incoming-mail.aa.net.uk
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R13
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • incoming-mail.aa.net.uk
Alternative Names
  • c.incoming-mail.co.uk
  • c.secondary-mx.co.uk
  • c.secondary-mx.uk
  • incoming-mail.aa.net.uk
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R13
validity period
Not valid before
2025-12-19
Not valid after
2026-03-19
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
D2:19:2F:DF:42:1E:4B:F4:CA:E9:F4:A4:2F:76:91:AF:60:EC:58:1A:99:05:68:8D:62:9A:53:61:ED:50:CB:3E
SHA1
FD:AD:97:B2:65:66:76:22:74:B4:78:02:EE:7E:B0:6E:35:86:30:09
X509v3 extensions
subjectKeyIdentifier
  • 00:C2:B4:D6:9F:36:0A:05:9B:63:D2:26:85:E4:54:7D:9F:0D:C1:F0
authorityKeyIdentifier
  • keyid:E7:AB:9F:0F:2C:33:A0:53:D3:5E:4F:78:C8:B2:84:0E:3B:D6:92:33
authorityInfoAccess
  • CA Issuers - URI:http://r13.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r13.c.lencr.org/47.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:
  • F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7
  • Timestamp : Dec 19 12:38:08.034 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:B1:86:D0:08:51:0A:14:26:2B:EC:17:
  • 4C:60:52:C3:D1:79:4F:68:67:B6:82:88:16:D5:80:59:
  • 8B:10:04:9B:9A:02:21:00:AB:95:EE:50:6D:74:EE:39:
  • 21:9A:F1:38:D8:C3:BA:06:BD:3B:F7:D0:0B:16:E3:D4:
  • A7:81:16:09:61:A7:44:DF
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : D1:6E:A9:A5:68:07:7E:66:35:A0:3F:37:A5:DD:BC:03:
  • A5:3C:41:12:14:D4:88:18:F5:E9:31:B3:23:CB:95:04
  • Timestamp : Dec 19 12:38:08.231 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:15:95:6A:D4:27:40:73:3A:E2:41:59:B7:
  • DC:B2:14:CA:27:DF:65:4C:28:AB:4C:23:46:63:51:57:
  • 4A:FF:35:3E:02:21:00:FC:3B:03:5A:19:43:7A:41:F7:
  • 6E:CE:AA:93:58:82:F4:72:C4:CF:9E:AE:96:AA:37:1B:
  • DA:9D:E2:9F:BF:BC:DC