SSL-Tools

SSL check results of trnet.cz

NEW You can also bulk check multiple servers.

Discover if the mail servers for trnet.cz can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 26 Jan 2022 12:31:50 +0000

The mailservers of trnet.cz can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @trnet.cz addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
bar11.trnet.cz
89.31.163.23
 1
supported
*.trnet.cz
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
13 s
bar01.trnet.cz
89.31.163.8
 2
supported
*.trnet.cz
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
14 s

Outgoing Mails

We have not received any emails from a @trnet.cz address so far. Test mail delivery

Certificates

First seen at:

CN=*.trnet.cz

Certificate chain
Subject
Common Name (CN)
  • *.trnet.cz
Alternative Names
  • *.trnet.cz
  • trnet.cz
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Common Name (CN)
  • RapidSSL TLS DV RSA Mixed SHA256 2020 CA-1
validity period
Not valid before
2021-02-16
Not valid after
2022-03-19
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
C5:33:BA:AB:74:A1:1E:BE:BD:1C:3A:C2:19:5D:A1:72:D7:3F:E5:4E:0C:75:21:26:EA:47:4F:B7:F2:27:8D:51
SHA1
83:04:27:57:1B:70:7F:5C:65:D7:D9:40:E2:74:9F:BA:F2:DC:6D:1F
X509v3 extensions
authorityKeyIdentifier
  • keyid:A4:8D:E5:BE:7C:79:E4:70:23:6D:2E:29:34:AD:23:58:DC:F5:31:7F
subjectKeyIdentifier
  • B5:3A:63:36:35:AD:F1:74:E9:BA:FC:DB:E8:0C:57:01:6D:00:0A:06
crlDistributionPoints
  • Full Name:
  • URI:http://crl3.digicert.com/RapidSSLTLSDVRSAMixedSHA2562020CA-1.crl
  • Full Name:
  • URI:http://crl4.digicert.com/RapidSSLTLSDVRSAMixedSHA2562020CA-1.crl
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • CPS: http://www.digicert.com/CPS
authorityInfoAccess
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/RapidSSLTLSDVRSAMixedSHA2562020CA-1.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 29:79:BE:F0:9E:39:39:21:F0:56:73:9F:63:A5:77:E5:
  • BE:57:7D:9C:60:0A:F8:F9:4D:5D:26:5C:25:5D:C7:84
  • Timestamp : Feb 16 10:39:07.783 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:F1:FB:71:2A:C4:02:12:F7:F2:27:C0:
  • D8:75:E4:1D:3B:A6:EA:D4:E6:22:F1:00:05:34:CD:EE:
  • C8:02:C3:E1:F7:02:20:01:85:D2:0B:96:ED:BF:81:F0:
  • BF:35:01:56:D4:C9:A5:95:FA:B0:61:9B:12:C4:76:37:
  • 48:23:04:F6:68:ED:D8
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 22:45:45:07:59:55:24:56:96:3F:A1:2F:F1:F7:6D:86:
  • E0:23:26:63:AD:C0:4B:7F:5D:C6:83:5C:6E:E2:0F:02
  • Timestamp : Feb 16 10:39:07.868 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:02:0B:60:66:2B:9E:87:E0:09:C9:39:2C:
  • D1:EF:BD:DB:90:74:9C:2F:22:55:2B:50:4C:C1:70:75:
  • 99:4D:2A:C8:02:20:70:A5:3A:1C:35:33:F3:97:C8:3E:
  • D6:C5:6E:50:10:0A:71:C5:70:A2:51:EF:2E:76:13:6B:
  • 40:98:A1:C1:32:B6