SSL check results of zscimelice.cz

NEW You can also bulk check multiple servers.

Discover if the mail servers for zscimelice.cz can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Thu, 09 Jan 2025 01:30:06 +0000

We can not guarantee a secure connection to the mailservers of zscimelice.cz!

Please contact the operator of zscimelice.cz and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/zscimelice.cz

Servers

Incoming Mails

These servers are responsible for incoming mails to @zscimelice.cz addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx.skok.cz
2001:1528:181::223:67
Results incomplete
10
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
mx.skok.cz
2001:1528:181::76:244
Results incomplete
10
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
mx.skok.cz
2001:1528:181::76:183
Results incomplete
10
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
mx.skok.cz
109.123.223.67
10
supported
*.skok.cz
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • ECDHE_RSA_WITH_RC4_128_SHA
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
mx.skok.cz
77.78.76.183
10
supported
*.skok.cz
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • ECDHE_RSA_WITH_RC4_128_SHA
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
mx.skok.cz
77.78.76.244
10
supported
*.skok.cz
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • ECDHE_RSA_WITH_RC4_128_SHA
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
mxbackup.skok.cz
2a01:430:36:1::253:129
Results incomplete
20
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
mxbackup.skok.cz
89.185.253.129
20
supported
*.skok.cz
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • ECDHE_RSA_WITH_RC4_128_SHA
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @zscimelice.cz address so far. Test mail delivery

Certificates

First seen at:

CN=*.skok.cz

Certificate chain
  • *.skok.cz
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption

      • R11
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption

Subject
Common Name (CN)
  • *.skok.cz
Alternative Names
  • *.skok.cz
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R11
validity period
Not valid before
2024-12-13
Not valid after
2025-03-13
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
6B:B0:1B:9F:F0:A1:50:AC:65:CE:8F:30:F7:AD:3E:D3:F4:07:74:EA:F5:AE:BE:1A:E9:8A:1D:D9:B3:EF:55:96
SHA1
61:75:A0:77:3C:72:6C:47:4A:D9:48:3B:5E:04:91:77:FB:29:AF:0C
X509v3 extensions
subjectKeyIdentifier
  • 7D:51:B1:08:A9:65:35:32:8A:53:06:D9:39:28:BD:FD:D7:E3:D9:6E
authorityKeyIdentifier
  • keyid:C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
authorityInfoAccess
  • OCSP - URI:http://r11.o.lencr.org
  • CA Issuers - URI:http://r11.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
  • 87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
  • Timestamp : Dec 13 02:44:50.560 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:18:F3:50:D2:C9:51:DD:CA:A1:12:7E:EE:
  • 15:4F:E0:A3:9D:F2:C9:18:5F:AC:0D:DF:AD:F7:B5:B6:
  • 00:98:A2:3A:02:20:36:56:4A:D5:35:CA:9F:04:23:9B:
  • F4:FB:46:22:6D:4E:54:29:A9:4A:D3:16:54:F7:A9:9F:
  • A8:27:A8:CC:16:02
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
  • 16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
  • Timestamp : Dec 13 02:44:50.720 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:7F:2D:66:A7:2D:B9:54:87:C7:9A:F9:F3:
  • F2:6E:5E:29:82:C2:4C:08:D8:50:79:2F:67:1B:99:F2:
  • 73:54:0B:5C:02:21:00:CD:FC:BC:FE:08:86:D4:D8:F0:
  • 9B:FE:3F:7A:3D:4D:68:0A:EC:7C:9C:0D:A7:61:15:30:
  • FD:38:C9:92:B4:FC:B1