SSL check results of stadtwerke-gotha.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for stadtwerke-gotha.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Sun, 15 Jun 2025 00:30:25 +0000

We can not guarantee a secure connection to the mailservers of stadtwerke-gotha.de!

Please contact the operator of stadtwerke-gotha.de and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/stadtwerke-gotha.de

Servers

Incoming Mails

These servers are responsible for incoming mails to @stadtwerke-gotha.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx1.stadtwerke-gotha.de
194.25.112.193
10
supported
remote.stadtwerke-gotha.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • SSLv3
2 s
mailrelay1.cm-system.de
2003:c3:3811:4::6
50
supported
mailrelay1.cm-system.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
3 s
mailrelay1.cm-system.de
80.149.231.6
50
supported
mailrelay1.cm-system.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
mail5.cm-system.de
2003:c3:3811:6::125
Results incomplete
100 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
mail5.cm-system.de
195.145.156.125
Results incomplete
100 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
mailex.cm-system.de
2003:c3:3811:4::8
Results incomplete
100 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
mailex.cm-system.de
80.149.231.8
Results incomplete
100 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s

Outgoing Mails

We have not received any emails from a @stadtwerke-gotha.de address so far. Test mail delivery

Certificates

First seen at:

emailAddress=raumschuessel@stadtwerke-gotha-netz.de,CN=remote.stadtwerke-gotha.de,OU=IT,O=NA,L=Gotha,ST=Thueringen,C=DE

Certificate chain
  • remote.stadtwerke-gotha.de (Certificate is self-signed.)
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
    • Hostname Mismatch
    • Unknown Authority

Subject
Country (C)
  • DE
State (ST)
  • Thueringen
Locality (L)
  • Gotha
Organization (O)
  • NA
Organizational Unit (OU)
  • IT
Common Name (CN)
  • remote.stadtwerke-gotha.de
Email
  • raumschuessel@stadtwerke-gotha-netz.de
Issuer

Certificate is self-signed.

validity period
Not valid before
2022-06-07
Not valid after
2036-12-31
Fingerprints
SHA256
12:76:52:0A:5D:4F:00:0A:5E:02:3B:04:A4:F8:A0:F5:51:A9:9A:D8:C7:D6:2B:95:B3:D8:5A:33:A6:B3:11:2E
SHA1
97:CB:87:D0:F6:96:64:78:3F:0C:49:98:D6:61:62:78:32:DA:2A:BC
X509v3 extensions
subjectKeyIdentifier
  • 50:DD:ED:BA:98:F0:E5:5E:71:21:CB:94:51:72:8D:07:3F:98:69:C2
authorityKeyIdentifier
  • keyid:50:DD:ED:BA:98:F0:E5:5E:71:21:CB:94:51:72:8D:07:3F:98:69:C2
  • DirName:/C=DE/ST=Thueringen/L=Gotha/O=NA/OU=IT/CN=remote.stadtwerke-gotha.de/emailAddress=raumschuessel@stadtwerke-gotha-netz.de
  • serial:57:CC:D9:3F:90:60:8F:8F:30:E4:D9:2E:34:B1:0E:CB:18:51:85:18
First seen at:

CN=mailrelay1.cm-system.de

Certificate chain
  • mailrelay1.cm-system.de
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption

      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption

Subject
Common Name (CN)
  • mailrelay1.cm-system.de
Alternative Names
  • mailrelay1.cm-system.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2025-06-10
Not valid after
2025-09-08
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
E5:83:6D:A1:7D:0A:8B:0E:FB:B3:DD:A2:AA:69:A7:B6:D2:73:9E:F4:9B:A9:01:EA:43:1F:66:F3:95:18:74:11
SHA1
6B:30:F4:03:FD:0E:F2:5A:00:4F:0A:90:A9:ED:FE:3A:D5:96:1F:39
X509v3 extensions
subjectKeyIdentifier
  • 5C:89:0A:B7:89:4B:D7:A2:30:29:07:84:F0:3F:CD:E0:39:15:4F:14
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://r10.c.lencr.org/118.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:42:C5:06:49:60:61:54:8F:0F:D4:EA:9C:FB:7A:2D:
  • 26:45:4D:87:A9:7F:2F:DF:45:59:F6:27:4F:3A:84:54
  • Timestamp : Jun 11 00:38:14.050 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:A1:A1:79:94:00:5C:F2:8D:17:35:E9:
  • D2:24:C6:56:A3:1E:1F:0F:4F:9E:14:4E:EC:27:94:4A:
  • 0F:86:16:B3:F8:02:21:00:CF:EB:4D:7B:D1:61:45:11:
  • 88:21:C7:E7:7D:7E:F0:B1:41:40:43:4C:89:93:DA:B2:
  • 5F:7C:22:B7:31:EF:18:00
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DD:DC:CA:34:95:D7:E1:16:05:E7:95:32:FA:C7:9F:F8:
  • 3D:1C:50:DF:DB:00:3A:14:12:76:0A:2C:AC:BB:C8:2A
  • Timestamp : Jun 11 00:38:14.066 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:4A:EE:B3:5F:55:15:9B:44:0C:7C:A1:B3:
  • 3F:50:D0:BD:02:FF:05:93:1A:DC:EC:4B:64:82:B6:C3:
  • 00:AB:30:E0:02:21:00:C4:F8:11:5F:DB:38:84:06:FA:
  • C5:29:D1:D6:F1:FF:4F:BA:D4:50:06:6A:14:C5:C8:DE:
  • C9:AD:5D:6E:EC:90:B9