SSL-Tools

SSL check results of berlin.mdewendt.de

NEW You can also bulk check multiple servers.

Discover if the webservers of berlin.mdewendt.de can be reached through a secure connection.

Summary

JSON Refresh

Report created Thu, 18 Apr 2024 16:57:58 +0000

The webservers of berlin.mdewendt.de can be reached through a secure connection.

Servers

Hostname / IP address Certificates Protocol
berlin.mdewendt.de
85.215.208.151
 berlin.mdewendt.de
HSTS
unexpected EOF
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
berlin.mdewendt.de
2a01:239:205:4c00::1
 berlin.mdewendt.de
HSTS
unexpected EOF
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Certificates

First seen at:

CN=berlin.mdewendt.de

Certificate chain
  • berlin.mdewendt.de
    • remaining
    • 384 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • berlin.mdewendt.de
Alternative Names
  • berlin.mdewendt.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2024-04-11
Not valid after
2024-07-10
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
31:8E:C8:50:88:D2:B9:9A:22:D6:7C:3B:73:46:E2:C2:CF:F0:43:9D:4D:F7:CB:D5:7F:0C:5D:3B:2C:8F:35:34
SHA1
00:20:30:3C:62:5C:59:75:9C:43:53:C4:EB:E5:99:28:CC:DF:37:DD
X509v3 extensions
subjectKeyIdentifier
  • B6:3E:29:6C:54:60:A7:D7:65:CD:28:2B:20:3A:61:99:E1:A6:7F:A5
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Apr 11 06:09:49.776 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:DD:D0:9E:47:02:45:A5:E1:D7:F6:1E:
  • A4:AC:4E:D1:85:57:A2:E3:33:9F:27:8C:11:7C:36:85:
  • 87:0A:4D:AA:21:02:20:0B:12:8F:12:61:33:C2:ED:70:
  • F6:24:02:A3:E2:E3:85:3A:58:BE:D5:7F:B7:E4:87:85:
  • 93:31:6F:E0:5A:17:FB
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
  • 4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
  • Timestamp : Apr 11 06:09:49.964 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:19:B1:51:EC:80:FC:13:5A:83:3A:D0:5E:
  • 15:06:F5:26:E5:97:F1:A3:5D:D9:53:DC:16:70:63:8D:
  • F4:73:A5:31:02:21:00:9A:E4:D0:99:0C:6D:50:22:8D:
  • 56:76:39:1C:8D:BB:45:CA:89:5E:4E:75:24:8C:CE:E8:
  • F4:02:D8:2B:DE:0C:6D

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_443._tcp.berlin.mdewendt.de
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid