vanveenweb.nl - TLS / STARTTLS Test

Discover if the mail servers for vanveenweb.nl can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Fri, 05 Aug 2022 13:15:23 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Valid

The mailservers of vanveenweb.nl can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @vanveenweb.nl addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mail.vanveenweb.nl 2a02:58:100:e00::1	10	supported	*.vanveenweb.nl	DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2022-08-05 2 s
mail.vanveenweb.nl 82.197.218.120	10	supported	*.vanveenweb.nl	DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2022-08-05 2 s

Outgoing Mails

We have not received any emails from a @vanveenweb.nl address so far. Test mail delivery

Certificates

First seen at: 2022-08-05

CN=*.vanveenweb.nl

Certificate chain

*.vanveenweb.nl
- 2022-09-12 remaining
- 384 bit
- ecdsa-with-SHA384

Subject

Common Name (CN)

*.vanveenweb.nl

Alternative Names

*.vanveenweb.nl
vanveenweb.nl

Issuer

Country (C)

Organization (O)

ZeroSSL

Common Name (CN)

ZeroSSL ECC Domain Secure Site CA

validity period

Not valid before: 2022-06-14
Not valid after: 2022-09-12

This certifcate has been verified for the following usages:

Digital Signature
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 15:92:6D:8A:F1:D8:F2:29:97:31:9D:16:E8:E4:F7:5E:02:F1:9C:C4:7E:E9:37:C1:E2:6F:16:F6:FB:2E:5E:5F
SHA1: E8:58:A6:C3:B3:F6:3B:ED:B7:84:31:A5:04:08:42:E1:6F:5E:CE:92

X509v3 extensions

authorityKeyIdentifier

keyid:0F:6B:E6:4B:CE:39:47:AE:F6:7E:90:1E:79:F0:30:91:92:C8:5F:A3

subjectKeyIdentifier

8F:0D:71:EB:BB:98:E5:C3:DB:19:0E:0F:7F:23:69:8E:A6:40:F5:70

certificatePolicies

Policy: 1.3.6.1.4.1.6449.1.2.2.78
CPS: https://sectigo.com/CPS
Policy: 2.23.140.1.2.1

authorityInfoAccess

CA Issuers - URI:http://zerossl.crt.sectigo.com/ZeroSSLECCDomainSecureSiteCA.crt
OCSP - URI:http://zerossl.ocsp.sectigo.com

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
Timestamp : Jun 14 22:02:41.238 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:D1:A0:9D:30:AD:BB:0C:41:D8:3F:3C:
75:4B:4C:D4:8C:E9:AB:C1:45:AC:30:58:5B:02:DC:3B:
C8:D7:27:52:31:02:20:0D:81:14:AF:EA:F8:9F:F2:79:
5B:A8:94:15:BF:16:D0:1A:DE:C1:6F:73:0B:CD:6F:ED:
CB:B2:9F:19:5E:C8:E8
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 41:C8:CA:B1:DF:22:46:4A:10:C6:A1:3A:09:42:87:5E:
4E:31:8B:1B:03:EB:EB:4B:C7:68:F0:90:62:96:06:F6
Timestamp : Jun 14 22:02:41.259 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:3E:3C:77:8D:6B:E9:17:17:6E:C2:5D:8F:
4D:F6:37:B0:C9:8D:B1:EA:AB:CD:94:B7:E0:6D:EE:81:
3D:B4:C6:AF:02:20:27:49:1B:F1:7B:59:EB:E6:75:BA:
E3:B7:AD:FC:64:39:6F:56:D0:9C:CD:3A:E4:58:F3:3B:
6A:A7:50:CD:36:DB

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name	Options	DNSSEC	Matches
_25._tcp.mail.vanveenweb.nl	DANE-EE: Domain Issued Certificate Use full certificate SHA-256 Hash	valid	—
_25._tcp.mail.vanveenweb.nl	DANE-EE: Domain Issued Certificate Use full certificate SHA-256 Hash	valid	valid
_25._tcp.mail.vanveenweb.nl	DANE-EE: Domain Issued Certificate Use full certificate SHA-256 Hash	valid	—

SSL check results of vanveenweb.nl