SSL check results of defend2.org

NEW You can also bulk check multiple servers.

Discover if the webservers of defend2.org can be reached through a secure connection.

Summary

Report created Sun, 07 Jul 2024 23:16:18 +0000

The webservers of defend2.org can be reached through a secure connection.

Servers

Hostname / IP address Certificates Protocol
defend2.org
96.246.224.30
*.defend2.org
HSTS
about 2 years
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
4 s

Certificates

First seen at:

CN=*.defend2.org

Certificate chain
  • *.defend2.org
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption

      • R11
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption

Subject
Common Name (CN)
  • *.defend2.org
Alternative Names
  • *.defend2.org
  • defend2.org
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R11
validity period
Not valid before
2024-07-07
Not valid after
2024-10-05
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
8E:71:25:06:CE:F3:14:5B:E8:35:7B:87:EA:E3:EB:93:D0:21:36:47:08:CE:10:98:D0:44:05:EA:AC:1C:9F:7C
SHA1
29:5E:CD:D3:AC:17:A6:AC:9F:B4:F5:4B:FA:DA:B9:EA:D0:D3:79:FA
X509v3 extensions
subjectKeyIdentifier
  • 09:79:E9:8F:D4:B5:87:67:5D:5A:11:CB:08:79:20:7B:55:C7:32:73
authorityKeyIdentifier
  • keyid:C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
authorityInfoAccess
  • OCSP - URI:http://r11.o.lencr.org
  • CA Issuers - URI:http://r11.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Jul 7 23:04:52.441 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:91:C6:D9:0B:77:DB:EC:B5:2C:BA:6D:
  • 86:37:6F:6A:75:4E:18:F8:7E:21:2B:C0:F9:81:C6:42:
  • 43:CC:18:B4:AA:02:20:1A:D2:9E:F7:13:4F:82:0B:73:
  • 51:9A:1D:94:6A:C7:5C:EB:E8:01:27:72:F5:72:1A:72:
  • 48:0C:3D:A1:2F:17:86
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
  • B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
  • Timestamp : Jul 7 23:04:52.517 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:D7:94:B1:3E:7A:C6:E3:59:74:18:91:
  • F6:9D:BC:CF:C5:16:D2:88:D2:13:54:CE:FC:97:1C:26:
  • 7D:F3:A1:29:81:02:20:13:1C:AF:ED:94:9C:FA:99:72:
  • 06:45:22:84:89:14:FF:BB:24:FD:2C:93:F2:D7:39:BB:
  • 1F:F8:71:C4:FB:27:49

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_443._tcp.defend2.org
  • DANE-EE: Domain Issued Certificate
  • Use full certificate
  • SHA-256 Hash
valid
valid