SSL-Tools

SSL check results of tielectric.ch

NEW You can also bulk check multiple servers.

Discover if the mail servers for tielectric.ch can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Tue, 30 Jul 2024 17:48:11 +0000

The mailservers of tielectric.ch can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @tielectric.ch addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx1.serv-cloud.com
2a01:4f8:1c1b:8ff7::1
 10
supported
mx1.serv-cloud.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
3 s
mx1.serv-cloud.com
128.140.33.171
 10
supported
mx1.serv-cloud.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
mx2.serv-cloud.com
2a01:4f9:c011:a59c::1
 10
supported
mx2.serv-cloud.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
5 s
mx2.serv-cloud.com
95.216.170.227
 10
supported
mx2.serv-cloud.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @tielectric.ch address so far. Test mail delivery

Certificates

First seen at:

CN=mx1.serv-cloud.com

Certificate chain
  • mx1.serv-cloud.com
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R11
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mx1.serv-cloud.com
Alternative Names
  • mx1.serv-cloud.com
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R11
validity period
Not valid before
2024-07-30
Not valid after
2024-10-28
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
12:76:58:1A:EE:F6:96:C0:3C:78:7A:0F:E2:D3:5F:A3:42:23:35:67:08:4F:3B:86:5F:13:A1:98:F2:56:03:41
SHA1
BF:72:23:B7:3A:6B:FE:1C:89:AE:BB:DE:AC:3F:CD:26:60:9A:CE:21
X509v3 extensions
subjectKeyIdentifier
  • 6A:A5:A6:B1:37:6B:57:FE:AD:BA:2F:4F:4A:EE:52:8A:81:F2:6D:9D
authorityKeyIdentifier
  • keyid:C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
authorityInfoAccess
  • OCSP - URI:http://r11.o.lencr.org
  • CA Issuers - URI:http://r11.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
  • ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
  • Timestamp : Jul 30 12:30:40.930 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:6C:FA:6B:4B:24:DA:06:4A:4D:E6:36:46:
  • FB:C5:FC:5E:76:55:32:41:40:E4:19:E7:7E:F9:3D:12:
  • B4:56:F1:A9:02:20:21:47:5D:09:03:61:5B:24:3E:EC:
  • F0:E2:2B:5E:D6:61:71:4E:18:B1:37:38:86:E4:4F:41:
  • E0:8F:FC:C0:C4:35
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
  • 83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
  • Timestamp : Jul 30 12:30:40.949 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:A7:B6:0C:B8:45:FD:24:2E:E7:97:A3:
  • 23:07:E4:40:10:35:3E:5A:F7:6D:A1:99:9B:6B:55:5D:
  • 94:96:CA:53:5E:02:21:00:E8:F8:C3:E6:6C:81:E8:1D:
  • 67:A1:58:B3:20:07:58:48:50:05:F0:E1:EC:BF:6C:A1:
  • 84:DB:15:52:EF:EF:15:F7
First seen at:

CN=mx2.serv-cloud.com

Certificate chain
  • mx2.serv-cloud.com
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mx2.serv-cloud.com
Alternative Names
  • mx2.serv-cloud.com
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2024-07-30
Not valid after
2024-10-28
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
ED:A0:C3:B7:37:23:18:87:5A:4E:29:CD:24:B3:69:D4:34:26:A4:63:16:9E:5C:96:D9:62:80:B7:6C:09:37:F7
SHA1
E5:65:37:F6:D6:6F:DE:95:9D:9E:8F:F1:3E:5F:85:F2:7F:BA:2C:10
X509v3 extensions
subjectKeyIdentifier
  • DD:5D:D1:CE:AF:0F:B2:06:6A:A5:57:A2:65:C1:4F:43:8C:FA:E0:31
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • OCSP - URI:http://r10.o.lencr.org
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Jul 30 12:31:42.103 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:1E:D8:64:5D:D7:E3:85:B9:81:38:40:A6:
  • E4:DD:98:49:4E:AD:F6:FF:C9:2F:1A:65:CA:D4:5C:CC:
  • E3:87:A0:3C:02:20:38:F2:8B:6B:E6:69:7D:46:0E:66:
  • B2:AF:47:C4:12:57:31:A8:64:2D:97:18:17:67:B4:C8:
  • 5A:BB:80:F7:61:C4
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
  • B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
  • Timestamp : Jul 30 12:31:42.185 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:E7:FD:4A:8E:87:B2:C3:48:A3:8A:FE:
  • 24:34:20:CC:8F:9F:A0:C7:0F:80:62:02:E1:2F:C3:2E:
  • ED:75:77:FE:C5:02:20:5F:BB:6E:60:FC:EC:35:FD:A9:
  • E8:62:74:10:EA:4D:EB:F4:93:67:C3:A0:09:71:51:FF:
  • F9:40:16:E6:75:8F:79

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mx1.serv-cloud.com
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mx1.serv-cloud.com
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mx2.serv-cloud.com
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mx2.serv-cloud.com
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid