ud.su3.de - TLS / STARTTLS Test

Discover if the mail servers for ud.su3.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 05 Dec 2024 01:32:10 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of ud.su3.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @ud.su3.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mail.su3.de 212.71.23.189	10	supported	mail.aixcited.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-12-05 40 s
mail2.su3.de 212.71.23.187	20	supported	*.aixcited.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2024-12-05 9 s

Outgoing Mails

We have not received any emails from a @ud.su3.de address so far. Test mail delivery

Certificates

First seen at: 2024-11-29

CN=*.aixcited.de

Certificate chain

*.aixcited.de
- 2025-02-26 remaining
- 256 bit
- ecdsa-with-SHA384

Subject

Common Name (CN)

*.aixcited.de

Alternative Names

*.aixcited.de
*.aixsec.com
*.aixsec.de
*.aixsec.net
*.aixsec.org
*.amps.de
*.berater-sozietaet-rheinland.de
*.berater-sozietaet.de
*.gbr8876t.de
*.gbr8876t.eu
*.noertemann.net
*.panthersailing.de
*.panthersailing.eu
*.rietz.be
*.su3.de
*.sustainablesportslab.eu
*.xn--berater-soziett-elb.de
*.xn--berater-soziett-rheinland-yec.de

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2024-11-28
Not valid after: 2025-02-26

This certifcate has been verified for the following usages:

Digital Signature
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 7E:1D:A6:C9:7C:F7:8B:CB:4C:84:27:A5:F1:B5:EA:E9:D3:94:46:99:29:1F:AA:14:91:53:B2:EC:3F:B0:87:5B
SHA1: 2F:0A:A2:D5:C4:44:AE:1D:7B:D2:F4:46:17:B8:01:DC:93:55:EE:A0

X509v3 extensions

subjectKeyIdentifier

80:0E:F4:A4:F8:35:A5:E6:EE:60:6C:3C:1E:E9:46:4B:27:BC:02:3D

authorityKeyIdentifier

keyid:93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2

authorityInfoAccess

OCSP - URI:http://e6.o.lencr.org
CA Issuers - URI:http://e6.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
Timestamp : Nov 28 16:56:44.796 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:71:17:B7:86:C7:54:37:50:77:DF:89:35:
DE:29:C6:AB:3F:DC:62:30:E8:F4:BC:2D:AE:A6:39:9A:
A3:E7:BD:30:02:20:79:D2:7B:CE:D4:9A:E2:C4:A7:69:
14:08:7E:B1:54:67:FA:1E:5E:1A:03:22:6C:8E:7F:8C:
33:9D:1D:5E:20:C2
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
Timestamp : Nov 28 16:56:44.794 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:1B:76:F5:4F:7A:AE:E5:41:97:84:14:53:
F8:0F:B0:84:33:3D:E0:D4:CA:39:0A:00:28:D3:BC:A3:
42:0F:AF:49:02:20:6A:FA:71:DF:D6:A5:EF:2A:40:84:
E9:E2:A8:DF:9D:68:92:67:35:DF:92:01:66:6A:F9:95:
37:B0:1A:E5:8D:FA

First seen at: 2024-12-01

CN=mail.aixcited.de

Certificate chain

mail.aixcited.de
- 2025-02-28 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

mail.aixcited.de

Alternative Names

mail.aixcited.de
mail.aixsec.com
mail.aixsec.de
mail.aixsec.net
mail.aixsec.org
mail.amps.de
mail.gbr8876t.de
mail.gbr8876t.eu
mail.noertemann.net
mail.panthersailing.de
mail.panthersailing.eu
mail.rietz.be
mail.su3.de
ud.aixcited.de
ud.aixsec.com
ud.aixsec.de
ud.aixsec.net
ud.aixsec.org
ud.amps.de
ud.gbr8876t.de
ud.gbr8876t.eu
ud.noertemann.net
ud.panthersailing.de
ud.panthersailing.eu
ud.rietz.be
ud.su3.de

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2024-11-30
Not valid after: 2025-02-28

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 53:8B:27:6B:DB:52:72:AB:20:93:EE:7F:32:9E:98:0B:D1:16:3F:CF:72:F7:4C:8C:13:BC:0F:C3:E9:FA:90:39
SHA1: 3D:5E:3B:CC:BA:09:C8:E3:76:04:03:F7:01:94:EA:59:15:63:95:BA

X509v3 extensions

subjectKeyIdentifier

EE:59:6B:53:84:92:E2:08:1B:81:90:16:00:8C:43:A5:7E:81:80:5E

authorityKeyIdentifier

keyid:C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9

authorityInfoAccess

OCSP - URI:http://r11.o.lencr.org
CA Issuers - URI:http://r11.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
Timestamp : Nov 30 12:43:49.970 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:9D:A6:F8:A4:25:13:5E:EC:B1:CE:F5:
7F:B8:62:3D:FF:32:48:82:86:E5:BF:58:64:BC:8F:C1:
F8:85:94:30:7A:02:20:69:2B:D6:C2:F2:D6:CE:30:47:
56:AE:65:C6:11:35:BF:B7:F8:83:C0:43:BE:43:E3:BF:
74:61:79:F7:55:A6:61
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
Timestamp : Nov 30 12:43:50.025 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:33:6B:B9:A6:2F:C2:F4:49:B0:76:E5:C1:
30:7C:7D:23:63:AC:06:65:4D:BC:F9:72:7B:76:8C:B9:
C0:3E:B4:36:02:20:0F:91:30:69:CF:1E:AF:9A:32:6D:
5F:6B:F0:0B:C2:ED:3B:FD:97:53:E4:58:8F:D9:50:25:
FE:8A:9D:5D:D7:53

SSL check results of ud.su3.de

Summary

The mailservers of ud.su3.de can be reached through a secure connection.

Servers

Incoming Mails

Outgoing Mails

Certificates

CN=*.aixcited.de

CN=mail.aixcited.de