SSL-Tools

SSL check results of defend2.org

NEW You can also bulk check multiple servers.

Discover if the webservers of defend2.org can be reached through a secure connection.

Summary

JSON Refresh

Report created Sat, 01 Aug 2020 21:06:40 +0000

The webservers of defend2.org can be reached through a secure connection.

Servers

Hostname / IP address Certificates Protocol
defend2.org
24.146.239.93
 defend2.org
HSTS
about 1 year
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
4 s

Certificates

First seen at:

CN=defend2.org

Certificate chain
Subject
Common Name (CN)
  • defend2.org
Alternative Names
  • defend2.org
  • www.defend2.org
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • Let's Encrypt Authority X3
validity period
Not valid before
2020-07-19
Not valid after
2020-10-17
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
73:B4:06:2A:CB:60:8D:45:09:41:BC:40:4B:F5:73:CE:9F:E0:BC:84:5D:5A:95:15:0C:C7:C4:B4:2E:E7:5B:64
SHA1
43:F2:D8:75:7E:75:52:63:61:F4:4B:99:E2:86:86:1F:39:75:84:8E
X509v3 extensions
subjectKeyIdentifier
  • EE:74:C7:10:61:EE:90:E8:84:A7:6A:87:48:2B:68:77:88:6A:DF:4D
authorityKeyIdentifier
  • keyid:A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1
authorityInfoAccess
  • OCSP - URI:http://ocsp.int-x3.letsencrypt.org
  • CA Issuers - URI:http://cert.int-x3.letsencrypt.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 6F:53:76:AC:31:F0:31:19:D8:99:00:A4:51:15:FF:77:
  • 15:1C:11:D9:02:C1:00:29:06:8D:B2:08:9A:37:D9:13
  • Timestamp : Jul 19 14:23:58.416 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:B6:10:70:C0:1D:CF:5C:1A:97:CB:B9:
  • C3:99:9F:3A:F5:E0:40:A8:36:45:48:E1:4B:4A:3C:28:
  • 92:C0:E3:CA:7F:02:20:59:E8:D2:9A:58:EF:30:BD:CF:
  • BD:FB:49:AB:D4:44:B7:AC:DA:03:1E:40:A7:5B:B8:A1:
  • 58:B8:54:AC:58:75:A6
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 07:B7:5C:1B:E5:7D:68:FF:F1:B0:C6:1D:23:15:C7:BA:
  • E6:57:7C:57:94:B7:6A:EE:BC:61:3A:1A:69:D3:A2:1C
  • Timestamp : Jul 19 14:23:58.419 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:E7:7E:1E:30:92:A4:E4:1D:6D:D9:44:
  • 77:71:BB:0E:99:B1:A5:33:A6:F2:59:52:88:4D:7F:07:
  • BD:11:6C:37:74:02:21:00:98:10:AE:3D:AB:69:78:C8:
  • 85:77:91:AC:3A:9F:4A:9B:62:AB:40:B4:64:49:7E:48:
  • FE:72:54:DA:85:C6:6E:7F

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_443._tcp.defend2.org
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid