SSL-Tools

SSL check results of srv1.it-groening.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for srv1.it-groening.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 27 Oct 2021 13:37:29 +0000

The mailservers of srv1.it-groening.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @srv1.it-groening.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
srv1.it-groening.de
94.16.109.165
 -
supported
it-groening.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
srv1.it-groening.de
2a03:4000:51:c83::1
 -
supported
it-groening.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
srv1.it-groening.de
2a03:4000:51:c83:847d:cff:fee3:181d
 -
supported
it-groening.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @srv1.it-groening.de address so far. Test mail delivery

Certificates

First seen at:

CN=it-groening.de

Certificate chain
  • it-groening.de
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • it-groening.de
Alternative Names
  • *.it-groening.de
  • it-groening.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2021-10-27
Not valid after
2022-01-25
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
EE:05:BD:92:41:B6:C8:18:FB:41:E3:BD:65:E4:BF:4A:01:AC:0F:C5:9C:10:E4:ED:F0:88:47:4D:DF:4A:4C:24
SHA1
76:B3:E1:75:3E:B2:6A:41:16:03:4F:8F:5D:C0:9A:3E:33:A9:F5:FB
X509v3 extensions
subjectKeyIdentifier
  • DA:D8:EC:8D:22:AC:DE:14:34:69:1C:B2:BF:2B:08:04:7B:3D:2B:C5
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DF:A5:5E:AB:68:82:4F:1F:6C:AD:EE:B8:5F:4E:3E:5A:
  • EA:CD:A2:12:A4:6A:5E:8E:3B:12:C0:20:44:5C:2A:73
  • Timestamp : Oct 27 12:36:38.186 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:92:D9:5F:46:A0:ED:ED:EF:8A:92:A2:
  • 6D:CC:A1:38:54:17:B2:1A:EE:C0:BD:86:29:72:F8:82:
  • 58:D0:2B:C1:B2:02:20:2A:E2:33:15:22:1E:37:19:E9:
  • 9D:C8:61:A3:D9:59:7F:96:15:68:E1:16:7D:EA:D6:CD:
  • 77:D7:71:3A:EC:E8:40
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
  • 11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
  • Timestamp : Oct 27 12:36:38.225 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:7D:B4:08:10:40:EE:7E:73:8B:72:D1:2B:
  • A0:F2:A2:4C:23:00:A0:F9:83:3D:5A:6A:70:1A:47:A3:
  • 8F:62:4D:A2:02:21:00:F1:3F:5A:0A:9A:D4:40:5D:DC:
  • 89:EA:41:DA:AB:0B:F6:18:FF:7B:34:02:2F:B4:2F:03:
  • 1A:B9:87:CB:BC:E8:1C