SSL check results of tielectric.ch

NEW You can also bulk check multiple servers.

Discover if the mail servers for tielectric.ch can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Sat, 18 Jan 2025 20:24:31 +0000

The mailservers of tielectric.ch can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @tielectric.ch addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx1.serv-cloud.com
2a01:4f8:1c1b:8ff7::1
10
supported
mx1.serv-cloud.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
mx1.serv-cloud.com
128.140.33.171
10
supported
mx1.serv-cloud.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
mx2.serv-cloud.com
2a01:4f9:c011:a59c::1
10
supported
mx2.serv-cloud.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
mx2.serv-cloud.com
95.216.170.227
10
supported
mx2.serv-cloud.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @tielectric.ch address so far. Test mail delivery

Certificates

First seen at:

CN=mx1.serv-cloud.com

Certificate chain
  • mx1.serv-cloud.com
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption

      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption

Subject
Common Name (CN)
  • mx1.serv-cloud.com
Alternative Names
  • mx1.serv-cloud.com
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2024-11-28
Not valid after
2025-02-26
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
8D:E4:8A:F9:31:E8:76:87:41:26:17:33:B7:D6:93:73:B3:49:72:98:A7:D1:48:1C:22:B3:B5:3E:0D:9D:F8:E1
SHA1
99:3D:DE:3C:B5:20:31:CC:31:BF:8D:ED:9F:D8:62:20:B1:FA:01:40
X509v3 extensions
subjectKeyIdentifier
  • 27:52:FB:8A:B6:A2:44:B1:F0:7B:7C:51:CE:AE:5B:72:32:EA:0F:77
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • OCSP - URI:http://r10.o.lencr.org
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
  • 87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
  • Timestamp : Nov 28 04:10:38.155 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:86:74:3D:66:13:0A:92:9C:F0:7A:99:
  • DA:36:54:BF:62:2E:2A:92:E4:90:7B:37:5D:56:FD:E8:
  • BE:89:1B:D1:92:02:21:00:94:89:09:00:6E:DD:68:ED:
  • 9A:B4:B0:22:BB:38:23:62:9C:F0:2E:EB:AA:09:F1:FE:
  • 95:E8:06:32:8A:13:8A:42
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
  • D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
  • Timestamp : Nov 28 04:10:38.141 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:A9:DE:58:93:CE:35:BD:43:C8:E7:5E:
  • 3B:CA:B3:00:5C:AE:5F:15:EF:B6:0D:3E:22:C3:84:E2:
  • BB:51:14:86:71:02:20:55:D6:86:21:0A:99:91:53:62:
  • 0A:62:7F:F8:26:B1:9C:8F:4B:06:9E:A1:9D:91:62:E0:
  • 9D:9C:0E:C0:59:16:54
First seen at:

CN=mx2.serv-cloud.com

Certificate chain
  • mx2.serv-cloud.com
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption

      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption

Subject
Common Name (CN)
  • mx2.serv-cloud.com
Alternative Names
  • mx2.serv-cloud.com
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2024-11-28
Not valid after
2025-02-26
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
59:A6:38:0B:8C:61:CB:15:84:AD:76:E3:A5:7D:24:A6:AC:CF:05:03:4A:CA:77:CA:5A:3E:0B:7A:2B:D0:7F:1E
SHA1
15:40:56:21:8F:9F:5F:2B:CD:BB:AB:4E:86:77:38:5A:5B:63:81:26
X509v3 extensions
subjectKeyIdentifier
  • 3D:FB:07:58:C1:D5:34:10:71:56:F9:37:A7:43:6C:72:42:0B:AA:FB
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • OCSP - URI:http://r10.o.lencr.org
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
  • 87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
  • Timestamp : Nov 28 03:23:09.088 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:14:18:52:DF:FE:56:E8:CF:08:AB:FE:44:
  • CD:E6:32:E3:A1:8E:07:25:12:3D:1C:86:D9:8F:9E:C4:
  • 42:EE:C2:E5:02:20:66:EF:69:B9:55:C5:FD:E9:67:FE:
  • C6:19:A8:E2:28:F7:89:15:96:CF:01:18:56:7E:2F:BC:
  • 6C:61:19:CE:DD:1D
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
  • 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
  • Timestamp : Nov 28 03:23:09.131 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:2E:34:A8:D8:F7:71:FF:05:47:0C:59:4B:
  • 48:8A:06:3A:4F:42:C6:4B:CC:76:A2:76:AC:91:DF:D1:
  • 68:B5:B6:87:02:20:28:E1:25:51:B8:D5:9D:12:F1:BC:
  • 2E:29:74:72:38:8D:1D:38:29:8E:34:33:0C:F9:B7:75:
  • 0F:0B:FB:74:66:46

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mx1.serv-cloud.com
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mx1.serv-cloud.com
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mx2.serv-cloud.com
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mx2.serv-cloud.com
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid