SSL check results of teacher.sk

NEW You can also bulk check multiple servers.

Discover if the mail servers for teacher.sk can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Wed, 30 Oct 2024 21:05:30 +0000

The mailservers of teacher.sk can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @teacher.sk addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
amos.teacher.sk
109.74.145.53
10
supported
amos.teacher.sk
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s

Outgoing Mails

We have not received any emails from a @teacher.sk address so far. Test mail delivery

Certificates

First seen at:

CN=amos.teacher.sk

Certificate chain
  • amos.teacher.sk
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption

      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption

Subject
Common Name (CN)
  • amos.teacher.sk
Alternative Names
  • amos.teacher.sk
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2024-09-02
Not valid after
2024-12-01
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
56:0E:98:FB:E2:1D:24:9A:DA:1C:A4:E9:5F:9C:9C:D5:BA:64:53:55:EC:A5:1E:C2:F7:CD:DF:CE:1F:DA:ED:AA
SHA1
D5:37:15:E3:E8:9A:3B:23:BD:6A:D4:D3:56:10:E1:8B:0C:43:68:B6
X509v3 extensions
subjectKeyIdentifier
  • B8:4F:EA:E8:3E:FD:8B:4C:1E:3B:DA:2A:FC:DF:5C:2F:47:E0:8D:4B
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • OCSP - URI:http://r10.o.lencr.org
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
  • B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
  • Timestamp : Sep 2 10:48:24.475 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:63:36:31:9B:FA:E2:B9:61:A2:7E:1C:E8:
  • 39:70:31:B0:ED:15:8B:46:6C:36:0C:29:E8:44:7B:EB:
  • 89:1F:D5:D6:02:20:03:29:D7:F2:FD:44:BD:EE:26:7A:
  • 29:53:84:91:42:E2:47:2D:52:67:7E:B9:7D:CD:38:1F:
  • 14:9D:F1:C5:DD:BA
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Sep 2 10:48:24.427 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:C1:20:82:86:F1:57:14:07:41:87:1C:
  • 25:A5:88:F9:CA:65:5E:2F:B4:A1:B7:DB:3B:5C:E8:E4:
  • 9C:AF:5A:64:4B:02:21:00:F6:8C:71:52:C7:38:BF:01:
  • B1:92:04:9F:9A:9C:A6:24:EC:C6:38:FC:D5:4E:11:B6:
  • 20:ED:32:EB:B1:41:E3:B9

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.amos.teacher.sk
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid