SSL-Tools

SSL check results of rkh-kassel.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for rkh-kassel.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 11 Nov 2023 18:07:44 +0000

No connection to the mailservers of rkh-kassel.de could be established.

Servers

Incoming Mails

These servers are responsible for incoming mails to @rkh-kassel.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.rkh-kassel.de
83.135.38.84
Results incomplete
10
supported
*.rkh-kassel.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
de.umantis.com
213.198.99.213
Results incomplete
30 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s

Outgoing Mails

We have not received any emails from a @rkh-kassel.de address so far. Test mail delivery

Certificates

First seen at:

CN=*.rkh-kassel.de

Certificate chain
Subject
Common Name (CN)
  • *.rkh-kassel.de
Alternative Names
  • *.rkh-kassel.de
  • rkh-kassel.de
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • Thawte TLS RSA CA G1
validity period
Not valid before
2023-02-15
Not valid after
2024-02-25
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
5D:E1:73:17:BF:50:71:30:D3:EE:D9:78:1D:DF:2E:94:D5:F3:BB:CC:40:6F:E5:35:35:4B:F0:05:3F:65:1A:FA
SHA1
8E:BA:34:73:96:61:C5:A4:30:9A:37:5D:53:29:EF:80:A1:DB:25:06
X509v3 extensions
authorityKeyIdentifier
  • keyid:A5:8C:FE:32:CC:EB:0F:2C:D4:19:C6:08:B8:00:24:88:5D:C3:C5:B7
subjectKeyIdentifier
  • D1:CC:5F:A1:1D:6D:AE:86:A4:01:34:42:D3:5D:8E:A7:2A:0D:31:85
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.thawte.com/ThawteTLSRSACAG1.crl
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • CPS: http://www.digicert.com/CPS
authorityInfoAccess
  • OCSP - URI:http://status.thawte.com
  • CA Issuers - URI:http://cacerts.thawte.com/ThawteTLSRSACAG1.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
  • 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
  • Timestamp : Feb 15 07:00:47.707 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:A8:9A:4B:71:E6:2F:30:38:16:82:C5:
  • F2:E4:2F:5B:7E:29:52:05:B3:52:E1:C4:50:64:5A:CF:
  • 56:17:F4:11:7C:02:21:00:BA:07:71:28:53:CF:7E:C9:
  • DB:53:3C:E6:AC:00:5E:C7:98:44:CF:8A:65:BB:22:57:
  • BC:27:26:18:59:97:13:0A
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 73:D9:9E:89:1B:4C:96:78:A0:20:7D:47:9D:E6:B2:C6:
  • 1C:D0:51:5E:71:19:2A:8C:6B:80:10:7A:C1:77:72:B5
  • Timestamp : Feb 15 07:00:47.786 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:E9:FF:98:D8:1A:2F:9C:44:22:50:B2:
  • 7C:B9:E9:65:F3:5E:0C:09:EA:97:FE:9B:96:01:80:6E:
  • 72:38:4F:4F:D1:02:20:76:5F:E7:3D:AE:F0:A8:EE:AF:
  • 97:0E:26:E6:AF:85:ED:F4:7D:5C:7B:2D:39:0F:AA:FE:
  • 13:63:71:ED:64:D8:BD
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Feb 15 07:00:47.742 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:04:D5:48:53:D0:C0:F6:72:2D:BF:AA:01:
  • 79:03:E2:DB:0E:9D:0C:7A:C3:1A:17:13:E6:EC:36:42:
  • 8C:90:AA:A0:02:21:00:A2:94:F5:D8:34:C9:FF:05:BD:
  • 1C:61:D0:5F:73:94:F7:92:AD:DE:9F:30:96:93:34:AB:
  • F0:65:3D:34:91:5E:5F