SSL check results of schaal-24.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for schaal-24.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Fri, 30 Sep 2022 13:23:57 +0000

The mailservers of schaal-24.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @schaal-24.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
pluto.schaal-it.net
2a01:4f8:161:9292:1:1:101:1
10
supported
mail.schaal-24.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
5 s
pluto.schaal-it.net
136.243.195.91
10
supported
mail.schaal-24.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
4 s

Outgoing Mails

We have received emails from these servers with @schaal-24.de sender addresses. Test mail delivery

Host TLS Version & Cipher
neptun.schaal-it.net (IPv6:2a01:4f8:a1:104:1:1:111:1)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384

Certificates

First seen at:

CN=mail.schaal-24.de

Certificate chain
  • mail.schaal-24.de
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption

      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption

Subject
Common Name (CN)
  • mail.schaal-24.de
Alternative Names
  • mail.schaal-24.de
  • pluto.schaal-it.net
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2022-08-25
Not valid after
2022-11-23
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
3B:79:EF:68:50:C6:B1:F2:2F:03:A0:B0:F8:69:CB:D0:87:7C:91:21:59:18:5A:FF:AB:BC:7C:45:41:F1:0D:88
SHA1
28:FF:41:90:30:72:16:92:94:F4:77:22:8B:68:30:F6:94:18:0E:63
X509v3 extensions
subjectKeyIdentifier
  • 5F:7B:CC:65:75:FD:17:DC:29:53:13:CF:33:63:86:EE:FF:94:FC:AB
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DF:A5:5E:AB:68:82:4F:1F:6C:AD:EE:B8:5F:4E:3E:5A:
  • EA:CD:A2:12:A4:6A:5E:8E:3B:12:C0:20:44:5C:2A:73
  • Timestamp : Aug 25 07:36:05.289 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:8F:38:BC:78:0F:85:75:EB:0F:F5:CF:
  • 7C:77:67:53:E0:96:14:24:00:45:AC:DA:27:EA:A4:35:
  • BD:6B:8B:CC:76:02:21:00:90:97:AD:68:9C:44:1A:F1:
  • 38:06:9A:5B:9C:FF:FF:5A:51:1D:F9:DE:6E:8A:FE:BA:
  • AC:35:3B:3E:70:C6:1B:D8
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
  • 11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
  • Timestamp : Aug 25 07:36:05.301 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:FA:63:04:54:D3:BA:4D:33:CB:E1:A3:
  • BE:4C:1C:C6:A9:31:9C:B2:8D:4E:7C:A7:29:01:C6:58:
  • 9F:51:D3:C5:A6:02:20:4C:07:38:B9:27:88:08:BC:74:
  • 6C:C8:B8:DB:30:49:09:D9:30:6F:02:39:D9:DB:F8:CD:
  • 05:9E:37:92:84:95:26