SSL check results of support3.gov.sg

NEW You can also bulk check multiple servers.

Discover if the mail servers for support3.gov.sg can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Fri, 12 Oct 2018 13:01:02 +0000

The mailservers of support3.gov.sg can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @support3.gov.sg addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx1.sgict.gov.sg
160.96.212.113
10
supported
mx1.sgict.gov.sg
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
21.0 s
mx1.sgict.gov.sg
160.96.212.114
10
supported
mx1.sgict.gov.sg
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
21.0 s
mx1.sgict.gov.sg
160.96.212.115
10
supported
mx1.sgict.gov.sg
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
21.0 s
mx1.sgict.gov.sg
160.96.212.116
10
supported
mx1.sgict.gov.sg
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
21.0 s
mx2.sgict.gov.sg
160.96.214.113
20
supported
mx2.sgict.gov.sg
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
21.0 s
mx2.sgict.gov.sg
160.96.214.114
20
supported
mx2.sgict.gov.sg
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
21.0 s
mx2.sgict.gov.sg
160.96.214.115
20
supported
mx2.sgict.gov.sg
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
21.0 s
mx2.sgict.gov.sg
160.96.214.116
20
supported
mx2.sgict.gov.sg
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
22.0 s
mx3.sgict.gov.sg
160.96.212.116
50
supported
mx1.sgict.gov.sg
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
22.0 s
mx4.sgict.gov.sg
160.96.214.116
60
supported
mx2.sgict.gov.sg
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
21.0 s

Outgoing Mails

We have not received any emails from a @support3.gov.sg address so far. Test mail delivery

Certificates

First seen at:

mx1.sgict.gov.sg

Certificate chain
Subject
Country (C)
  • SG
Locality (L)
  • Singapore
jurisdictionC
  • SG
Organization (O)
  • Government Technology Agency
Business category
  • Government Entity
Serial number
  • T16GB0002G
Common Name (CN)
  • mx1.sgict.gov.sg
Alternative Names
  • mx1.sgict.gov.sg
  • mx3.sgict.gov.sg
  • smpt11.sgict.gov.sg
  • smtp13.sgict.gov.sg
  • smtp15.sgict.gov.sg
  • smtp17.sgict.gov.sg
Issuer
Country (C)
  • US
Organization (O)
  • Entrust, Inc.
Organizational Unit (OU)
  • See www.entrust.net/legal-terms
  • (c) 2014 Entrust, Inc. - for authorized use only
Common Name (CN)
  • Entrust Certification Authority - L1M
validity period
Not valid before
2018-08-16
Not valid after
2020-08-16
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
7F:7A:9A:6D:63:02:A6:50:FC:BB:55:91:38:18:4C:F0:1F:2E:3C:DF:4E:CF:DE:3B:12:29:69:D0:94:E5:1E:86
SHA1
12:20:86:56:8B:DD:5D:47:7E:C1:B4:A1:B9:A2:C0:F9:B2:EE:F5:1C
X509v3 extensions
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1(0)
  • Log ID : 55:81:D4:C2:16:90:36:01:4A:EA:0B:9B:57:3C:53:F0:
  • C0:E4:38:78:70:25:08:17:2F:A3:AA:1D:07:13:D3:0C
  • Timestamp : Aug 16 10:03:45.941 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:9A:86:04:7D:68:E8:88:75:29:3F:D4:
  • 3E:49:BC:C9:7D:87:F2:BD:C4:F1:BA:7B:E3:DC:D6:EE:
  • 50:35:C1:D0:30:02:21:00:98:2B:25:58:F3:74:02:98:
  • CF:B8:57:96:B4:63:62:D5:69:6E:DB:C9:DD:DC:C5:12:
  • 35:D9:0E:E0:D0:55:41:C5
  • Signed Certificate Timestamp:
  • Version : v1(0)
  • Log ID : 87:75:BF:E7:59:7C:F8:8C:43:99:5F:BD:F3:6E:FF:56:
  • 8D:47:56:36:FF:4A:B5:60:C1:B4:EA:FF:5E:A0:83:0F
  • Timestamp : Aug 16 10:03:45.949 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:56:8C:3D:11:CE:0D:59:8F:AA:40:F5:0E:
  • 15:6E:AF:53:77:30:4F:C5:93:3F:76:40:11:D7:62:BF:
  • 19:B5:BB:2C:02:20:13:BD:70:92:2A:2D:7C:7B:21:C8:
  • 73:74:4C:C7:AC:EA:BA:0D:C9:76:BF:53:DB:35:82:96:
  • D9:3F:49:FC:24:F2
  • Signed Certificate Timestamp:
  • Version : v1(0)
  • Log ID : DD:EB:1D:2B:7A:0D:4F:A6:20:8B:81:AD:81:68:70:7E:
  • 2E:8E:9D:01:D5:5C:88:8D:3D:11:C4:CD:B6:EC:BE:CC
  • Timestamp : Aug 16 10:03:45.930 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:F6:CB:FE:57:82:B6:E7:87:2B:2F:91:
  • FC:28:EF:BE:5F:61:CC:36:D2:86:9D:68:40:D0:59:45:
  • 73:EE:E8:EA:68:02:21:00:A4:F4:AB:71:8E:96:98:DB:
  • BD:AB:E5:79:53:91:10:24:C4:D6:18:BC:B5:EA:14:DE:
  • 2E:5A:09:91:6B:C0:2C:8D
  • Signed Certificate Timestamp:
  • Version : v1(0)
  • Log ID : BB:D9:DF:BC:1F:8A:71:B5:93:94:23:97:AA:92:7B:47:
  • 38:57:95:0A:AB:52:E8:1A:90:96:64:36:8E:1E:D1:85
  • Timestamp : Aug 16 10:03:45.963 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:83:52:0E:D4:F8:FB:E4:F0:FA:B7:04:
  • D9:CD:AA:B8:A5:6B:1B:B3:A0:B0:EE:AD:4C:74:2F:9F:
  • 05:0E:3A:21:40:02:20:15:CD:92:FD:4B:09:85:9B:7D:
  • FB:BF:E8:57:21:35:F7:B1:80:36:2B:2B:49:C1:F5:A0:
  • 25:49:35:C8:5F:0C:81
authorityInfoAccess
  • OCSP - URI:http://ocsp.entrust.net
  • CA Issuers - URI:http://aia.entrust.net/l1m-chain256.cer
crlDistributionPoints
  • Full Name:
  • URI:http://crl.entrust.net/level1m.crl
certificatePolicies
  • Policy: 2.16.840.1.114028.10.1.2
  • CPS: http://www.entrust.net/rpa
  • Policy: 2.23.140.1.1
authorityKeyIdentifier
  • keyid:C3:F7:D0:B5:2A:30:AD:AF:0D:91:21:70:39:54:DD:BC:89:70:C7:3A
subjectKeyIdentifier
  • B1:B6:AF:BB:3E:08:A7:23:66:7F:35:0D:77:44:7F:34:75:A1:93:EF
First seen at:

mx2.sgict.gov.sg

Certificate chain
Subject
Country (C)
  • SG
Locality (L)
  • Singapore
jurisdictionC
  • SG
Organization (O)
  • Government Technology Agency
Business category
  • Government Entity
Serial number
  • T16GB0002G
Common Name (CN)
  • mx2.sgict.gov.sg
Alternative Names
  • mx2.sgict.gov.sg
  • mx4.sgict.gov.sg
  • smpt12.sgict.gov.sg
  • smtp14.sgict.gov.sg
  • smtp16.sgict.gov.sg
  • smtp18.sgict.gov.sg
Issuer
Country (C)
  • US
Organization (O)
  • Entrust, Inc.
Organizational Unit (OU)
  • See www.entrust.net/legal-terms
  • (c) 2014 Entrust, Inc. - for authorized use only
Common Name (CN)
  • Entrust Certification Authority - L1M
validity period
Not valid before
2018-08-16
Not valid after
2020-08-16
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
14:3F:2A:FB:A0:2D:DA:D0:53:D2:EE:F2:72:64:77:7C:F5:5D:2C:AB:97:CE:1A:43:0D:46:9F:C4:98:AF:7F:D0
SHA1
9B:96:B2:76:49:8B:B7:8F:78:E9:F0:D8:46:3B:32:6A:E1:95:B5:D3
X509v3 extensions
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1(0)
  • Log ID : 87:75:BF:E7:59:7C:F8:8C:43:99:5F:BD:F3:6E:FF:56:
  • 8D:47:56:36:FF:4A:B5:60:C1:B4:EA:FF:5E:A0:83:0F
  • Timestamp : Aug 16 10:00:45.199 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:35:EF:67:B9:3E:6E:52:2F:11:06:2C:CC:
  • 64:CA:59:99:14:1B:75:BB:ED:64:58:71:06:07:01:06:
  • D4:17:1D:5E:02:20:1E:5B:FD:D6:89:42:D9:78:CD:B1:
  • 9A:37:73:B2:4D:50:2C:E9:F2:AC:5C:6D:1E:F4:AC:EF:
  • 68:A4:22:F2:0C:A2
  • Signed Certificate Timestamp:
  • Version : v1(0)
  • Log ID : 55:81:D4:C2:16:90:36:01:4A:EA:0B:9B:57:3C:53:F0:
  • C0:E4:38:78:70:25:08:17:2F:A3:AA:1D:07:13:D3:0C
  • Timestamp : Aug 16 10:00:45.232 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:BB:BE:8C:D0:34:32:95:14:32:52:B0:
  • F7:C0:06:FD:6A:11:80:EF:D9:32:BD:9A:C0:43:F2:61:
  • AF:35:8D:42:DC:02:20:0F:22:F2:5D:00:FE:A1:C7:C0:
  • 44:F9:C8:44:DB:43:83:4F:B8:7E:A8:34:49:A9:1C:22:
  • 7C:81:52:C4:7E:3C:B5
  • Signed Certificate Timestamp:
  • Version : v1(0)
  • Log ID : 56:14:06:9A:2F:D7:C2:EC:D3:F5:E1:BD:44:B2:3E:C7:
  • 46:76:B9:BC:99:11:5C:C0:EF:94:98:55:D6:89:D0:DD
  • Timestamp : Aug 16 10:00:45.257 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:3B:FA:CA:E6:3E:66:B6:10:92:46:87:FC:
  • 1E:24:AA:AD:12:78:A5:EB:CE:0F:F7:6B:A7:DF:68:4C:
  • 9E:14:7E:0E:02:20:1E:43:F8:C0:D7:04:91:56:ED:53:
  • CC:BB:AC:95:2B:60:47:8C:D4:87:FB:EB:2B:47:58:59:
  • 70:33:1C:ED:58:41
  • Signed Certificate Timestamp:
  • Version : v1(0)
  • Log ID : BB:D9:DF:BC:1F:8A:71:B5:93:94:23:97:AA:92:7B:47:
  • 38:57:95:0A:AB:52:E8:1A:90:96:64:36:8E:1E:D1:85
  • Timestamp : Aug 16 10:00:45.243 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:50:5B:40:B8:BF:96:6D:6B:22:90:2F:6C:
  • 72:4B:5A:54:08:F6:56:13:56:B1:91:9B:00:66:E5:E8:
  • 46:36:6B:BB:02:20:14:E3:FC:BD:AF:32:17:F5:66:69:
  • C6:24:F5:F1:E6:D1:2D:85:DB:3E:3F:BA:A6:A5:F7:9A:
  • 75:AC:C3:31:6F:A6
authorityInfoAccess
  • OCSP - URI:http://ocsp.entrust.net
  • CA Issuers - URI:http://aia.entrust.net/l1m-chain256.cer
crlDistributionPoints
  • Full Name:
  • URI:http://crl.entrust.net/level1m.crl
certificatePolicies
  • Policy: 2.16.840.1.114028.10.1.2
  • CPS: http://www.entrust.net/rpa
  • Policy: 2.23.140.1.1
authorityKeyIdentifier
  • keyid:C3:F7:D0:B5:2A:30:AD:AF:0D:91:21:70:39:54:DD:BC:89:70:C7:3A
subjectKeyIdentifier
  • 77:A4:57:D6:D9:C2:4A:C8:04:4E:A2:3A:FD:3D:E4:89:27:0D:D1:B1