SSL-Tools

SSL check results of synaix.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for synaix.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Mon, 29 Jun 2020 07:31:32 +0000

The mailservers of synaix.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @synaix.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
fml1.euregio-service.de
80.87.171.80
Results incomplete
10
supported
*.euregio-service.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
mx3.euregio-gateway.net
89.1.37.100
 20
supported
mx3.euregio-gateway.net
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
3 s
outbound2.euregio-service.de
80.87.171.51
Results incomplete
30 not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
outbound1.euregio-service.de
80.87.171.89
Results incomplete
30 not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s

Outgoing Mails

We have not received any emails from a @synaix.de address so far. Test mail delivery

Certificates

First seen at:

CN=*.euregio-service.de

Certificate chain
Subject
Common Name (CN)
  • *.euregio-service.de
Alternative Names
  • *.euregio-service.de
  • euregio-service.de
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • RapidSSL RSA CA 2018
validity period
Not valid before
2019-01-30
Not valid after
2021-02-28
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
17:38:7E:4C:EB:14:4B:59:27:35:CD:13:4B:AE:04:CD:0A:F7:22:20:FF:C6:EE:A0:09:05:21:27:5E:F2:F8:89
SHA1
E1:D3:76:9F:A4:B6:C7:D7:93:6A:E7:99:89:B2:FD:2A:ED:6A:6B:9D
X509v3 extensions
authorityKeyIdentifier
  • keyid:53:CA:17:59:FC:6B:C0:03:21:2F:1A:AE:E4:AA:A8:1C:82:56:DA:75
subjectKeyIdentifier
  • 58:A1:30:25:B8:80:AA:60:01:8E:CA:E0:76:86:EB:E3:15:BF:BE:C9
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.rapidssl.com/RapidSSLRSACA2018.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.2
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.1
authorityInfoAccess
  • OCSP - URI:http://status.rapidssl.com
  • CA Issuers - URI:http://cacerts.rapidssl.com/RapidSSLRSACA2018.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:B9:09:90:B4:18:58:14:87:BB:13:A2:CC:67:70:0A:
  • 3C:35:98:04:F9:1B:DF:B8:E3:77:CD:0E:C8:0D:DC:10
  • Timestamp : Jan 30 08:52:31.308 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:A5:EC:F3:80:1B:2F:1E:56:A9:CA:4E:
  • 79:9F:E8:B9:FB:9E:15:9B:14:C2:27:15:8F:4C:D9:06:
  • 95:11:DE:B7:4D:02:21:00:E9:DD:6C:0D:03:21:51:CD:
  • 81:17:91:0F:AC:DF:EE:9D:B4:42:E1:4F:24:85:2E:76:
  • A5:C8:78:55:5A:63:1D:E4
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 87:75:BF:E7:59:7C:F8:8C:43:99:5F:BD:F3:6E:FF:56:
  • 8D:47:56:36:FF:4A:B5:60:C1:B4:EA:FF:5E:A0:83:0F
  • Timestamp : Jan 30 08:52:31.545 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:38:11:69:94:48:1D:A9:DE:DA:60:E6:77:
  • 2E:69:38:DB:1C:3E:FE:C8:EF:60:DC:93:2B:C6:95:47:
  • 3E:4B:B8:C8:02:20:28:4C:F8:E2:D8:C1:7F:09:E5:D8:
  • 96:6B:66:2C:63:6F:C9:69:7E:47:7D:8F:D9:CE:1F:F1:
  • D0:23:CD:A8:8D:30
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 6F:53:76:AC:31:F0:31:19:D8:99:00:A4:51:15:FF:77:
  • 15:1C:11:D9:02:C1:00:29:06:8D:B2:08:9A:37:D9:13
  • Timestamp : Jan 30 08:52:32.339 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:95:A1:B9:3E:66:55:A2:AC:C0:B1:14:
  • EB:F2:AA:DE:4B:F2:B6:BF:14:1C:9A:86:5F:61:29:44:
  • 5B:FC:24:A6:44:02:21:00:B8:40:8D:8B:18:EB:7A:61:
  • 2B:AB:9C:A0:98:B8:FA:0F:AA:83:02:AF:F3:A2:04:6E:
  • 9A:72:04:DD:47:43:D6:79
First seen at:

CN=mx3.euregio-gateway.net

Certificate chain
Subject
Common Name (CN)
  • mx3.euregio-gateway.net
Alternative Names
  • mx3.euregio-gateway.net
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • RapidSSL RSA CA 2018
validity period
Not valid before
2020-03-17
Not valid after
2021-03-17
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
AD:A3:C2:B8:02:20:18:4E:8F:6D:4C:CA:72:48:AD:AC:F4:FF:D5:E7:86:4F:C8:61:F4:F8:3D:C1:61:58:90:93
SHA1
6E:48:E4:CD:E9:10:B4:C9:FD:AE:06:09:2F:EB:F4:4B:A7:19:98:91
X509v3 extensions
authorityKeyIdentifier
  • keyid:53:CA:17:59:FC:6B:C0:03:21:2F:1A:AE:E4:AA:A8:1C:82:56:DA:75
subjectKeyIdentifier
  • AE:87:C6:B3:3A:09:98:2E:D3:C3:3F:A9:07:7A:D0:C7:76:AF:F9:0B
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.rapidssl.com/RapidSSLRSACA2018.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.2
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.1
authorityInfoAccess
  • OCSP - URI:http://status.rapidssl.com
  • CA Issuers - URI:http://cacerts.rapidssl.com/RapidSSLRSACA2018.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : BB:D9:DF:BC:1F:8A:71:B5:93:94:23:97:AA:92:7B:47:
  • 38:57:95:0A:AB:52:E8:1A:90:96:64:36:8E:1E:D1:85
  • Timestamp : Mar 17 13:06:36.420 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:C5:92:4D:33:EF:1F:94:0E:9E:4C:22:
  • 1B:2B:9F:60:4A:38:CC:85:DF:A9:36:B7:0C:2D:F8:2F:
  • FA:63:0D:94:3F:02:21:00:8D:AA:0E:12:3E:50:BE:76:
  • 27:C5:D0:13:6D:04:FA:B7:4B:99:5D:0A:3A:65:6F:AD:
  • BD:11:B9:6A:C6:3C:D3:B5
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
  • 37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
  • Timestamp : Mar 17 13:06:36.468 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:AD:79:56:3C:31:C3:E0:7C:B8:26:6B:
  • 4D:B6:F1:86:57:B7:91:56:B6:07:C3:7A:C9:60:96:AF:
  • B2:D7:3E:17:57:02:20:08:21:CC:E8:D7:BA:81:5D:D1:
  • 02:EE:A0:C1:9B:BD:AB:D4:9F:58:51:30:20:CB:56:B9:
  • 10:AE:FA:9C:AD:87:46

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.fml1.euregio-service.de
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
_25._tcp.fml1.euregio-service.de
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
_25._tcp.fml1.euregio-service.de
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
_25._tcp.fml1.euregio-service.de
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
valid
_25._tcp.mx3.euregio-gateway.net
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
valid
_25._tcp.mx3.euregio-gateway.net
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
_25._tcp.outbound2.euregio-service.de
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
_25._tcp.outbound2.euregio-service.de
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
_25._tcp.outbound2.euregio-service.de
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
_25._tcp.outbound2.euregio-service.de
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
_25._tcp.outbound1.euregio-service.de
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
_25._tcp.outbound1.euregio-service.de
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
_25._tcp.outbound1.euregio-service.de
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
_25._tcp.outbound1.euregio-service.de
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid