SSL-Tools

SSL check results of sirit.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for sirit.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 18 Sep 2025 00:31:10 +0000

The mailservers of sirit.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @sirit.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
utm.sirit.de
213.206.190.196
 10
supported
utm.sirit.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
4 s

Outgoing Mails

We have not received any emails from a @sirit.de address so far. Test mail delivery

Certificates

First seen at:

CN=utm.sirit.de

Certificate chain
  • utm.sirit.de
    • remaining
    • 3072 bit
    • sha256WithRSAEncryption
      • R12
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • utm.sirit.de
Alternative Names
  • utm.sirit.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R12
validity period
Not valid before
2025-09-07
Not valid after
2025-12-06
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
D5:BE:31:F5:69:37:ED:57:98:C6:F3:FD:89:E4:98:E4:42:86:32:31:F5:88:B7:DC:06:34:53:40:B0:2D:87:07
SHA1
A5:A4:E5:C8:CD:80:F8:5B:D9:35:82:2D:FE:87:C9:AA:D4:37:7B:1A
X509v3 extensions
subjectKeyIdentifier
  • BD:81:6F:F9:2F:8B:22:E2:44:A6:22:6E:11:44:B2:5E:9D:53:9F:43
authorityKeyIdentifier
  • keyid:00:B5:29:F2:2D:8E:6F:31:E8:9B:4C:AD:78:3E:FA:DC:E9:0C:D1:D2
authorityInfoAccess
  • CA Issuers - URI:http://r12.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r12.c.lencr.org/121.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 0D:E1:F2:30:2B:D3:0D:C1:40:62:12:09:EA:55:2E:FC:
  • 47:74:7C:B1:D7:E9:30:EF:0E:42:1E:B4:7E:4E:AA:34
  • Timestamp : Sep 7 19:42:59.229 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:3C:40:3B:71:DE:A1:F4:82:77:8C:A7:77:
  • 97:EC:A1:33:81:FA:EF:DD:30:56:99:2E:65:01:71:66:
  • 71:2F:70:A9:02:21:00:C9:C3:8A:FA:3A:A7:93:64:CC:
  • 7A:C9:D0:A2:C4:15:C0:2B:9E:49:60:7D:AE:8D:AE:AD:
  • 4B:E3:94:CA:CA:DA:D1
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
  • F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
  • Timestamp : Sep 7 19:42:59.241 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:1A:44:50:F9:C1:C5:97:95:C4:30:5B:57:
  • 9F:FB:C3:B7:39:C5:FC:78:45:3E:AF:2A:01:2A:C8:E1:
  • CE:EC:84:61:02:21:00:AD:3B:24:7B:69:B2:26:9B:D5:
  • 9B:E5:A1:C9:E5:EE:D9:AF:3F:E3:CC:CD:78:5B:87:FB:
  • 73:A1:9A:70:57:18:DD