SSL check results of sparkasse-offenbach.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for sparkasse-offenbach.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Thu, 10 Jun 2021 15:43:51 +0000

The mailservers of sparkasse-offenbach.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @sparkasse-offenbach.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
y02es.mail.s-web.de
195.140.96.83
10
supported
*.mail.s-web.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
12 s
y01es.mail.s-web.de
195.140.96.82
10
supported
*.mail.s-web.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
12 s

Outgoing Mails

We have not received any emails from a @sparkasse-offenbach.de address so far. Test mail delivery

Certificates

First seen at:

CN=*.mail.s-web.de,O=Finanz Informatik GmbH & Co. KG,L=Frankfurt am Main,ST=Hessen,C=DE

Certificate chain
Subject
Country (C)
  • DE
State (ST)
  • Hessen
Locality (L)
  • Frankfurt am Main
Organization (O)
  • Finanz Informatik GmbH & Co. KG
Common Name (CN)
  • *.mail.s-web.de
Alternative Names
  • *.mail.s-web.de
Issuer
Country (C)
  • BM
Organization (O)
  • QuoVadis Limited
Common Name (CN)
  • QuoVadis Global SSL ICA G3
validity period
Not valid before
2020-12-22
Not valid after
2021-12-22
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Client Authentication
  • TLS Web Server Authentication
Fingerprints
SHA256
8B:18:BC:22:04:76:CB:C1:42:1D:C3:8F:6A:34:DC:66:75:A9:59:49:A3:6F:7E:A9:CB:0E:7F:DC:3B:CA:66:04
SHA1
2E:D8:AE:F1:E5:B1:95:E8:8D:8C:8F:29:C7:92:62:5F:6A:C2:DC:E0
X509v3 extensions
authorityKeyIdentifier
  • keyid:B3:12:89:B5:A9:4B:35:BC:15:00:F0:80:E9:D8:78:87:F1:13:7C:76
authorityInfoAccess
  • CA Issuers - URI:http://trust.quovadisglobal.com/qvsslg3.crt
  • OCSP - URI:http://ocsp.quovadisglobal.com
certificatePolicies
  • Policy: 1.3.6.1.4.1.8024.0.2.100.1.1
  • CPS: http://www.quovadisglobal.com/repository
  • Policy: 2.23.140.1.2.2
crlDistributionPoints
  • Full Name:
  • URI:http://crl.quovadisglobal.com/qvsslg3.crl
subjectKeyIdentifier
  • 67:A0:42:85:F2:C8:DD:18:7E:47:3D:E4:AA:ED:37:34:5D:FF:DE:EB
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 56:14:06:9A:2F:D7:C2:EC:D3:F5:E1:BD:44:B2:3E:C7:
  • 46:76:B9:BC:99:11:5C:C0:EF:94:98:55:D6:89:D0:DD
  • Timestamp : Dec 22 14:34:52.614 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:D7:66:C8:A6:76:A6:AC:BF:5C:16:B3:
  • 6F:83:27:A6:49:33:BA:CA:75:E8:0B:14:9A:F5:50:DE:
  • B4:0C:54:CB:6A:02:21:00:E0:01:9E:4D:4C:F2:D8:AA:
  • D4:48:5E:D2:8D:14:38:A0:0A:D2:57:9A:EA:63:CF:49:
  • EE:E2:A2:03:4E:11:C2:47
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89:
  • 79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7
  • Timestamp : Dec 22 14:34:52.598 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:1A:99:44:85:14:B2:34:F4:64:89:DE:B7:
  • 75:B2:3D:FA:FB:AA:62:B4:ED:46:FE:45:00:79:4C:73:
  • B2:BF:23:B2:02:21:00:B7:7C:8A:60:94:5C:47:65:52:
  • 59:0D:F0:C9:17:1C:7E:9E:BE:79:0A:36:95:14:D4:04:
  • 1E:92:E5:5A:67:7B:EA