SSL-Tools

SSL check results of spaeltidruck.ch

NEW You can also bulk check multiple servers.

Discover if the mail servers for spaeltidruck.ch can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 11 Nov 2023 15:59:11 +0000

The mailservers of spaeltidruck.ch can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @spaeltidruck.ch addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
spaeltidruck1.cleanmail.ch
91.208.173.98
 10
supported
cleanmail.ch
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
19 s
spaeltidruck2.cleanmail.ch
195.141.89.98
 10
supported
cleanmail.ch
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s

Outgoing Mails

We have not received any emails from a @spaeltidruck.ch address so far. Test mail delivery

Certificates

First seen at:

CN=cleanmail.ch

Certificate chain
  • cleanmail.ch
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • cleanmail.ch
Alternative Names
  • *.cleanmail.ch
  • cleanmail.ch
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2023-11-05
Not valid after
2024-02-03
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
51:01:E6:E6:40:AB:E8:C1:F8:D2:C6:B5:82:6F:91:6C:52:A4:C3:CD:A2:05:AC:25:CE:15:55:E9:F6:98:E7:20
SHA1
63:F3:A2:EE:1F:61:0B:85:08:EA:DB:78:A3:E5:AF:FC:60:29:78:10
X509v3 extensions
subjectKeyIdentifier
  • 6B:08:ED:CB:D7:B0:6C:3C:A4:7E:3D:8A:CF:30:5F:48:39:17:79:AB
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
  • 67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
  • Timestamp : Nov 5 05:22:17.205 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:DA:43:BF:D6:F3:FA:98:EB:1E:D0:26:
  • 08:A1:AA:CA:4B:9D:5F:F2:1A:2E:3C:8F:42:A2:4D:18:
  • 4E:4D:CC:8C:A4:02:20:68:63:21:5A:D8:86:CF:80:81:
  • 20:71:7B:DC:20:E2:95:64:DB:E8:36:88:97:94:7D:5E:
  • 32:0A:3E:16:02:BB:09
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Nov 5 05:22:17.206 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:E1:E9:6E:48:53:20:73:08:33:B5:7B:
  • B8:26:22:C0:38:C3:F3:D9:BF:F6:C8:C4:CB:15:38:70:
  • E4:9D:38:E5:1B:02:21:00:AC:27:12:E5:E5:7A:28:AF:
  • A0:3B:AC:41:69:F3:D1:3C:B6:68:23:7B:10:BF:2D:A7:
  • CE:59:6D:92:C4:47:F6:65