SSL-Tools

SSL check results of viona-trainer.com

NEW You can also bulk check multiple servers.

Discover if the mail servers for viona-trainer.com can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 27 Aug 2020 00:35:04 +0000

No connection to the mailservers of viona-trainer.com could be established.

Servers

Incoming Mails

These servers are responsible for incoming mails to @viona-trainer.com addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
relay1.inexio.net
2a01:5c0:0:4::204
Results incomplete
10
supported
relay1.inexio.net
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
relay1.inexio.net
131.117.148.204
Results incomplete
10
supported
relay1.inexio.net
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
3 s
relay2.inexio.net
2a01:5c0:0:5::140
Results incomplete
10
supported
relay2.inexio.net
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
relay2.inexio.net
131.117.148.140
Results incomplete
10
supported
relay2.inexio.net
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @viona-trainer.com address so far. Test mail delivery

Certificates

First seen at:

CN=relay1.inexio.net

Certificate chain
Subject
Common Name (CN)
  • relay1.inexio.net
Alternative Names
  • relay1.inexio.net
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • Thawte RSA CA 2018
validity period
Not valid before
2019-12-19
Not valid after
2022-01-17
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
4C:4E:67:B5:0E:77:BC:E6:61:96:B9:52:A6:6E:F5:DE:C1:D6:58:DD:11:46:83:D3:1A:6B:89:C5:3A:13:00:5F
SHA1
41:DA:4C:DB:24:0E:9F:AE:8B:27:42:43:8A:7C:26:A9:9A:0D:73:74
X509v3 extensions
authorityKeyIdentifier
  • keyid:A3:C8:5E:65:54:E5:30:78:C1:05:EA:07:0A:6A:59:CC:B9:FE:DE:5A
subjectKeyIdentifier
  • 2B:41:C2:57:29:99:87:6D:0F:CD:6C:20:BE:3F:83:02:51:57:3A:5A
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.thawte.com/ThawteRSACA2018.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.2
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.1
authorityInfoAccess
  • OCSP - URI:http://status.thawte.com
  • CA Issuers - URI:http://cacerts.thawte.com/ThawteRSACA2018.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : EE:4B:BD:B7:75:CE:60:BA:E1:42:69:1F:AB:E1:9E:66:
  • A3:0F:7E:5F:B0:72:D8:83:00:C4:7B:89:7A:A8:FD:CB
  • Timestamp : Dec 19 09:09:32.913 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:6D:4B:16:B0:48:DF:74:73:D7:47:6B:81:
  • 6A:15:54:45:35:90:B0:BC:4D:2E:08:AE:74:16:06:4D:
  • 5B:9E:E7:12:02:20:54:46:A4:7E:16:C5:E9:EB:5A:99:
  • 51:8E:D9:3D:6D:A3:90:62:4C:D1:CC:3E:86:20:10:EC:
  • 18:BA:BB:18:37:7A
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 87:75:BF:E7:59:7C:F8:8C:43:99:5F:BD:F3:6E:FF:56:
  • 8D:47:56:36:FF:4A:B5:60:C1:B4:EA:FF:5E:A0:83:0F
  • Timestamp : Dec 19 09:09:32.991 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:B9:52:B0:5F:08:D4:EF:D8:CE:37:19:
  • 90:27:63:8E:F4:8E:36:BE:3C:9B:08:D1:C2:70:45:21:
  • 51:A4:45:0A:0D:02:21:00:CC:6A:B7:D5:56:B8:63:96:
  • 82:2E:17:A0:60:9A:6E:80:84:30:C8:1D:9A:35:57:56:
  • 77:1D:6D:83:38:40:2B:2A
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 56:14:06:9A:2F:D7:C2:EC:D3:F5:E1:BD:44:B2:3E:C7:
  • 46:76:B9:BC:99:11:5C:C0:EF:94:98:55:D6:89:D0:DD
  • Timestamp : Dec 19 09:09:32.989 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:DD:C9:AA:DE:98:1A:A4:AF:1D:ED:8B:
  • 83:B2:AD:69:56:9B:D0:32:14:58:D9:17:A4:EF:E2:18:
  • 48:B4:1E:9C:33:02:20:7F:E1:DE:FD:DC:61:59:F4:B2:
  • 14:EC:9F:F1:A8:5D:11:29:71:3B:26:1A:11:AA:72:19:
  • E0:89:A5:70:B7:D2:29
First seen at:

CN=relay2.inexio.net

Certificate chain
Subject
Common Name (CN)
  • relay2.inexio.net
Alternative Names
  • relay2.inexio.net
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • Thawte RSA CA 2018
validity period
Not valid before
2019-12-19
Not valid after
2022-01-17
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
07:7D:36:EE:52:B6:FB:DC:FA:FF:F7:B2:99:18:41:8E:47:44:85:15:1A:2E:BB:61:07:7F:2A:CF:B9:81:32:60
SHA1
94:64:61:25:5B:5C:A6:7D:D2:23:C4:3A:5C:84:38:6A:39:D5:9F:AC
X509v3 extensions
authorityKeyIdentifier
  • keyid:A3:C8:5E:65:54:E5:30:78:C1:05:EA:07:0A:6A:59:CC:B9:FE:DE:5A
subjectKeyIdentifier
  • 42:4A:7A:53:19:9F:2C:E2:63:DD:9E:7E:6F:81:6C:C1:25:C8:D2:55
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.thawte.com/ThawteRSACA2018.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.2
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.1
authorityInfoAccess
  • OCSP - URI:http://status.thawte.com
  • CA Issuers - URI:http://cacerts.thawte.com/ThawteRSACA2018.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:B9:09:90:B4:18:58:14:87:BB:13:A2:CC:67:70:0A:
  • 3C:35:98:04:F9:1B:DF:B8:E3:77:CD:0E:C8:0D:DC:10
  • Timestamp : Dec 19 09:09:43.059 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:B0:83:01:5A:44:EA:7C:DC:74:1D:00:
  • 2E:BA:DC:61:2B:9D:E1:D2:5F:42:0A:A8:36:5C:D9:ED:
  • 3F:EA:3E:6C:1B:02:20:48:0A:27:45:43:98:34:13:79:
  • 00:45:3A:0C:1D:8E:F2:C8:45:B4:5E:62:0E:68:DC:AA:
  • 76:3C:E8:2B:08:6D:47
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 56:14:06:9A:2F:D7:C2:EC:D3:F5:E1:BD:44:B2:3E:C7:
  • 46:76:B9:BC:99:11:5C:C0:EF:94:98:55:D6:89:D0:DD
  • Timestamp : Dec 19 09:09:43.183 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:A7:7C:54:14:68:5E:67:0F:E2:1D:1D:
  • 1F:88:1D:3D:CC:F8:5D:2E:BD:12:F2:00:E3:24:40:47:
  • 53:C4:0A:6C:34:02:21:00:87:62:DE:70:5B:7C:B5:DD:
  • 8A:93:A4:20:96:83:39:79:B4:6E:39:B2:95:BE:CC:1F:
  • 35:72:A5:89:F3:88:B5:AD
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : BB:D9:DF:BC:1F:8A:71:B5:93:94:23:97:AA:92:7B:47:
  • 38:57:95:0A:AB:52:E8:1A:90:96:64:36:8E:1E:D1:85
  • Timestamp : Dec 19 09:09:43.062 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:AF:C1:35:51:90:FC:57:43:45:3A:45:
  • B4:23:AE:7C:49:C7:C7:9A:62:D0:71:56:18:86:0F:60:
  • 53:45:7A:FB:E6:02:20:46:50:0A:CF:AB:02:0D:1A:8A:
  • 4F:DE:82:44:09:57:98:76:20:7F:77:FA:DD:2F:68:17:
  • 80:B9:2A:9E:7B:05:26

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.relay1.inexio.net
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.relay2.inexio.net
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid