SSL check results of slxh.nl

NEW You can also bulk check multiple servers.

Discover if the mail servers for slxh.nl can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Wed, 14 Oct 2020 15:35:10 +0000

The mailservers of slxh.nl can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @slxh.nl addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx2.slxh.eu
2a01:4f8:1c17:52e5::25
10
supported
mx2.slxh.eu
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
3 s
mx2.slxh.eu
88.198.152.81
10
supported
mx2.slxh.eu
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @slxh.nl address so far. Test mail delivery

Certificates

First seen at:

CN=mx2.slxh.eu

Certificate chain
Subject
Common Name (CN)
  • mx2.slxh.eu
Alternative Names
  • mail.slxh.eu
  • mail.slxh.nl
  • mx2.slxh.eu
  • mx2.slxh.nl
  • smtp.slxh.eu
  • smtp.slxh.nl
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • Let's Encrypt Authority X3
validity period
Not valid before
2020-10-08
Not valid after
2021-01-06
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
EF:B3:31:A4:34:4D:3A:53:0B:6B:AA:34:F4:7C:9E:AE:37:7E:6B:E3:D7:EF:D7:C2:1E:99:12:A1:04:C1:F9:92
SHA1
F4:0E:9F:71:40:34:2A:E4:93:19:1B:AC:87:81:3F:81:0D:45:21:80
X509v3 extensions
subjectKeyIdentifier
  • 07:08:AD:86:71:93:61:B2:A9:EE:5C:BD:8C:3B:FD:4F:66:35:7B:11
authorityKeyIdentifier
  • keyid:A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1
authorityInfoAccess
  • OCSP - URI:http://ocsp.int-x3.letsencrypt.org
  • CA Issuers - URI:http://cert.int-x3.letsencrypt.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 6F:53:76:AC:31:F0:31:19:D8:99:00:A4:51:15:FF:77:
  • 15:1C:11:D9:02:C1:00:29:06:8D:B2:08:9A:37:D9:13
  • Timestamp : Oct 8 12:05:59.617 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:6D:ED:BF:51:06:2C:C2:3B:42:7B:BE:D4:
  • 2E:BC:F9:1C:16:60:1F:30:50:C5:B9:B3:6D:44:26:6D:
  • 30:18:6A:0C:02:21:00:EB:44:10:B1:BF:D9:70:4C:2D:
  • DE:E3:B0:4C:92:D9:71:17:20:85:0A:41:BD:69:83:6B:
  • E3:6B:CA:7F:E2:8E:AD
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : F6:5C:94:2F:D1:77:30:22:14:54:18:08:30:94:56:8E:
  • E3:4D:13:19:33:BF:DF:0C:2F:20:0B:CC:4E:F1:64:E3
  • Timestamp : Oct 8 12:06:00.071 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:75:A9:0D:62:B5:92:50:53:8B:6D:FE:82:
  • 38:C5:C0:F2:E5:3B:01:3D:B8:2E:0F:1D:A2:37:A1:AC:
  • 9E:2F:03:37:02:21:00:D6:8A:CC:EF:95:4F:26:48:11:
  • B1:53:31:D6:8D:AE:01:4F:94:DE:96:C7:F1:16:32:86:
  • CD:60:BF:61:EF:FC:75

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mx2.slxh.eu
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx2.slxh.eu
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mx2.slxh.eu
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx2.slxh.eu
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx2.slxh.eu
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx2.slxh.eu
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid