xmail.net - TLS / STARTTLS Test

Discover if the mail servers for xmail.net can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 22 Feb 2025 20:46:53 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of xmail.net can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @xmail.net addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mail.xmail.net 2605:7c00:7:1::10	100	supported	mail.xmail.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2025-02-22 68 s
mail.xmail.net 2605:7c00:7:1::9	100	supported	mail.xmail.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2025-02-22 68 s
mail.xmail.net 2605:7c00:7:1::12	100	supported	mail.xmail.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 ~~SSLv3~~	2025-02-22 60 s
mail.xmail.net 65.110.6.9	100	supported	mail.xmail.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 ~~SSLv3~~	2025-02-22 60 s
mail.xmail.net 65.110.6.10	100	supported	mail.xmail.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 ~~SSLv3~~	2025-02-22 60 s
mail.xmail.net 65.110.6.12	100	supported	mail.xmail.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2025-02-22 68 s

Outgoing Mails

We have not received any emails from a @xmail.net address so far. Test mail delivery

Certificates

First seen at: 2025-02-22

CN=mail.xmail.net

Certificate chain

mail.xmail.net
- 2025-05-23 remaining
- 256 bit
- ecdsa-with-SHA384

Subject

Common Name (CN)

mail.xmail.net

Alternative Names

mail.xmail.net

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2025-02-22
Not valid after: 2025-05-23

This certifcate has been verified for the following usages:

Digital Signature
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 9D:D2:D7:02:E5:E0:F2:7C:8F:0F:10:D8:E0:8E:E6:41:48:E6:6F:62:75:07:DE:7A:AF:2C:5A:B5:7C:76:6F:F2
SHA1: 2C:13:72:DA:71:98:94:D0:9A:E7:DB:74:73:C7:DC:D4:D9:DE:00:C1

X509v3 extensions

subjectKeyIdentifier

22:6E:8A:68:DD:7C:59:0E:03:56:29:66:28:07:98:BB:69:97:81:B6

authorityKeyIdentifier

keyid:93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2

authorityInfoAccess

OCSP - URI:http://e6.o.lencr.org
CA Issuers - URI:http://e6.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Feb 22 12:31:04.526 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:56:4E:B1:5A:CB:5D:53:AB:60:CD:B5:2B:
A8:1E:FB:80:E5:8E:A6:B8:C3:C7:D6:8A:89:D4:E4:77:
C8:E5:A4:1A:02:21:00:F0:63:9C:0A:AD:EE:BF:50:81:
15:F6:CA:85:ED:CF:4A:D9:D4:E2:B5:2A:E5:47:B8:21:
0E:59:0E:98:27:19:CE
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
Timestamp : Feb 22 12:31:04.709 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:D5:E7:D6:49:58:A6:FD:FE:F2:9B:92:
74:DF:CD:6A:3C:8F:59:27:29:7C:B0:81:A6:1D:3D:96:
05:89:16:FD:AA:02:20:28:A9:E6:52:0B:2C:7C:96:05:
03:6F:00:74:1D:43:56:80:F5:47:45:1D:9E:01:A4:D8:
7E:C8:E8:99:D8:A9:14

First seen at: 2025-02-22

CN=mail.xmail.net

Certificate chain

mail.xmail.net
- 2025-04-04 remaining
- 256 bit
- ecdsa-with-SHA384

Subject

Common Name (CN)

mail.xmail.net

Alternative Names

mail.xmail.net

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2025-01-04
Not valid after: 2025-04-04

This certifcate has been verified for the following usages:

Digital Signature
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: B2:7E:DD:65:7E:EA:89:AC:C7:6E:6C:6E:EE:6D:AB:25:A8:89:28:10:BD:46:B0:12:F5:CA:5A:FD:D4:41:9B:E4
SHA1: 29:3C:7B:76:0C:3A:D5:FA:5D:07:32:2D:B0:71:D1:E0:99:CA:7F:63

X509v3 extensions

subjectKeyIdentifier

53:E3:BE:A2:CE:BC:21:E1:38:46:2E:99:92:C6:CD:49:FA:16:F1:0B

authorityKeyIdentifier

keyid:93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2

authorityInfoAccess

OCSP - URI:http://e6.o.lencr.org
CA Issuers - URI:http://e6.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Jan 4 12:47:52.993 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:D6:E6:8B:39:3C:C7:1A:E9:DD:03:2F:
7D:C8:7D:C7:99:36:2B:73:BF:E6:41:6A:00:23:6F:F6:
96:C2:D1:6D:F4:02:20:4F:4E:EC:18:C8:96:AA:5E:B3:
05:DE:71:B6:C8:67:3D:5E:64:0E:84:A2:59:73:AC:AC:
69:5C:91:F0:52:27:4F
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
Timestamp : Jan 4 12:47:53.022 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:2C:3C:D2:80:17:46:02:59:EE:DC:D1:D3:
F0:77:01:FE:37:25:0C:9A:A9:62:4F:97:0D:13:E9:97:
08:7E:7C:7C:02:21:00:B4:80:4F:BE:AB:04:E3:BF:2B:
74:F1:1F:7D:94:82:3A:A1:0E:83:49:B8:7D:D8:58:AB:
BF:53:E2:28:38:52:DB

First seen at: 2025-02-22

CN=mail.xmail.net

Certificate chain

mail.xmail.net
- 2025-04-04 remaining
- 256 bit
- ecdsa-with-SHA384

Subject

Common Name (CN)

mail.xmail.net

Alternative Names

mail.xmail.net

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2025-01-04
Not valid after: 2025-04-04

This certifcate has been verified for the following usages:

Digital Signature
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: EA:7C:D9:32:45:61:BE:87:A3:08:C9:C4:7E:86:A5:8F:78:88:1C:A7:0B:65:48:F9:B2:8B:75:91:89:8E:1B:63
SHA1: D7:D1:73:C5:B0:42:C2:25:0A:7F:72:58:1D:24:F1:8A:10:9D:E8:A6

X509v3 extensions

subjectKeyIdentifier

89:25:2B:B6:99:F1:27:C7:17:22:FB:08:CE:F8:FD:2F:2E:BE:FB:84

authorityKeyIdentifier

keyid:9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D

authorityInfoAccess

OCSP - URI:http://e5.o.lencr.org
CA Issuers - URI:http://e5.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Jan 4 13:04:41.023 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:CF:DF:7E:25:F2:56:D9:A1:1B:5E:B0:
6A:0B:6C:59:4D:0B:A9:A3:D2:0F:BF:4C:BF:03:BA:63:
47:8A:6E:A3:4F:02:20:56:BB:3E:52:3B:A6:5D:79:39:
DE:EC:B5:9C:DB:55:44:EF:CE:26:62:DE:B4:AB:61:3B:
B3:BE:42:58:2E:A4:AF
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
Timestamp : Jan 4 13:04:41.048 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:7F:24:80:97:7F:DB:17:13:F9:C1:BA:2B:
F7:15:0C:3E:FC:73:63:9C:6F:E0:08:B6:54:B4:BA:0F:
A5:73:FB:4B:02:21:00:CF:27:42:DA:E4:22:65:33:B4:
38:C8:D7:E5:E2:D6:8A:A9:30:5A:B1:00:57:2B:9A:16:
C5:2C:E3:DC:FD:F9:7A

SSL check results of xmail.net

Summary

The mailservers of xmail.net can be reached through a secure connection.

Servers

Incoming Mails

Outgoing Mails

Certificates

CN=mail.xmail.net

CN=mail.xmail.net

CN=mail.xmail.net