SSL-Tools

SSL check results of wnklr.net

NEW You can also bulk check multiple servers.

Discover if the mail servers for wnklr.net can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sun, 07 Jun 2026 00:30:56 +0000

The mailservers of wnklr.net can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @wnklr.net addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mxext2.mailbox.org
2001:67c:2050:104::2:25:1
 10
supported
*.mailbox.org
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
mxext2.mailbox.org
80.241.60.215
 10
supported
*.mailbox.org
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
mxext1.mailbox.org
2001:67c:2050:104::1:25:1
 10
supported
*.mailbox.org
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
mxext1.mailbox.org
80.241.60.212
 10
supported
*.mailbox.org
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
mxext3.mailbox.org
2001:67c:2050:104::3:25:1
 20
supported
*.mailbox.org
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
mxext3.mailbox.org
80.241.60.216
 20
supported
*.mailbox.org
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @wnklr.net address so far. Test mail delivery

Certificates

First seen at:

CN=*.mailbox.org

Certificate chain
Subject
Common Name (CN)
  • *.mailbox.org
Alternative Names
  • *.mailbox.org
  • mailbox.org
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • Thawte TLS RSA CA G1
validity period
Not valid before
2026-05-18
Not valid after
2026-12-02
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
6D:CC:7C:CA:D5:87:5F:92:6C:0E:CD:35:DA:5D:A9:77:50:95:55:F6:1D:18:93:29:C5:C0:01:52:36:BA:EB:53
SHA1
82:84:59:94:83:CB:73:13:7E:68:C9:06:12:56:A9:D5:42:4C:98:C2
X509v3 extensions
authorityKeyIdentifier
  • keyid:A5:8C:FE:32:CC:EB:0F:2C:D4:19:C6:08:B8:00:24:88:5D:C3:C5:B7
subjectKeyIdentifier
  • 67:75:75:39:E5:87:FF:BB:FA:13:96:E9:08:A1:B5:55:C8:61:AA:08
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • CPS: http://www.digicert.com/CPS
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.thawte.com/ThawteTLSRSACAG1.crl
authorityInfoAccess
  • OCSP - URI:http://status.thawte.com
  • CA Issuers - URI:http://cacerts.thawte.com/ThawteTLSRSACAG1.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : C2:31:7E:57:45:19:A3:45:EE:7F:38:DE:B2:90:41:EB:
  • C7:C2:21:5A:22:BF:7F:D5:B5:AD:76:9A:D9:0E:52:CD
  • Timestamp : May 18 10:42:09.043 2026 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:A0:D4:1E:CA:67:A4:70:EC:09:FC:11:
  • 07:E6:97:A4:DE:1D:9F:38:1F:D1:A2:A4:97:D0:A7:F2:
  • 19:E1:AC:58:D0:02:21:00:E4:4C:51:2D:16:F0:2C:C0:
  • 3A:01:CC:48:1E:2D:3D:36:FA:5A:4F:C4:F8:67:6F:1B:
  • 0C:F2:52:94:7D:25:0E:8A
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : D8:09:55:3B:94:4F:7A:FF:C8:16:19:6F:94:4F:85:AB:
  • B0:F8:FC:5E:87:55:26:0F:15:D1:2E:72:BB:45:4B:14
  • Timestamp : May 18 10:42:09.122 2026 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:61:6E:FB:14:BC:C7:08:3A:D6:03:F1:C6:
  • 3C:D3:3E:70:AF:27:CB:91:29:11:CC:3F:16:F8:A3:92:
  • 6B:C4:5E:3D:02:21:00:C9:5F:B1:04:24:9A:8E:A9:9D:
  • A2:43:79:FD:03:CE:1B:53:E6:FB:3D:3F:A7:F2:1D:B1:
  • AD:2E:4D:32:D5:A6:85
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 94:4E:43:87:FA:EC:C1:EF:81:F3:19:24:26:A8:18:65:
  • 01:C7:D3:5F:38:02:01:3F:72:67:7D:55:37:2E:19:D8
  • Timestamp : May 18 10:42:09.057 2026 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:92:69:73:48:F9:EE:80:3C:CA:86:90:
  • 11:5D:55:4B:9F:23:76:1F:2A:0B:4D:F6:44:58:7C:E4:
  • 79:B7:E2:8F:57:02:20:2B:23:CC:E7:6D:D2:3D:AD:EA:
  • 66:37:4C:F5:61:AC:FE:08:E3:33:FE:10:AA:AD:A2:87:
  • 0F:E5:2F:F9:00:3D:50

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mxext3.mailbox.org
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mxext3.mailbox.org
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mxext3.mailbox.org
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mxext2.mailbox.org
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mxext2.mailbox.org
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mxext2.mailbox.org
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mxext1.mailbox.org
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mxext1.mailbox.org
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mxext1.mailbox.org
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid