SSL-Tools

SSL check results of der-rapperszeller.de

NEW You can also bulk check multiple servers.

Discover if the webservers of der-rapperszeller.de can be reached through a secure connection.

Summary

JSON Refresh

Report created Sat, 08 May 2021 19:44:54 +0000

The webservers of der-rapperszeller.de can be reached through a secure connection.

Servers

Hostname / IP address Certificates Protocol
der-rapperszeller.de
45.136.31.106
 der-rapperszeller.de
HSTS
about 2 years
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Certificates

First seen at:

CN=der-rapperszeller.de

Certificate chain
  • der-rapperszeller.de
    • remaining
    • 256 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • DST Root CA X3 (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption
Subject
Common Name (CN)
  • der-rapperszeller.de
Alternative Names
  • *.der-rapperszeller.de
  • der-rapperszeller.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2021-04-21
Not valid after
2021-07-20
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
CA:E8:80:D6:22:0C:BC:AE:F8:10:2A:C7:FA:07:4D:A6:74:DD:FF:48:AB:21:FA:27:A3:1A:C3:96:39:82:2D:80
SHA1
5E:F4:DC:58:AB:D3:E0:51:B8:2B:DD:82:02:F0:10:8C:97:6B:1F:66
X509v3 extensions
subjectKeyIdentifier
  • F3:4B:46:20:10:74:6D:D7:82:37:38:95:D3:B6:75:33:4A:D7:09:8E
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 44:94:65:2E:B0:EE:CE:AF:C4:40:07:D8:A8:FE:28:C0:
  • DA:E6:82:BE:D8:CB:31:B5:3F:D3:33:96:B5:B6:81:A8
  • Timestamp : Apr 21 18:40:07.666 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:86:CF:51:5B:7B:BE:0F:65:64:6C:F9:
  • DD:09:20:B9:D9:6B:14:EE:52:4A:6E:24:3E:4A:E9:17:
  • 89:6B:6D:FD:04:02:21:00:C5:95:5D:31:B7:6A:89:DC:
  • 7C:C1:FD:59:85:B5:04:15:CA:87:8A:BC:78:02:46:91:
  • 32:21:B4:92:73:33:2E:32
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89:
  • 79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7
  • Timestamp : Apr 21 18:40:07.691 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:D1:35:48:81:CD:92:B7:E0:E1:93:76:
  • 0E:C3:05:A4:75:9B:23:6A:00:4B:8A:21:16:96:A8:3B:
  • C4:40:A1:B8:CE:02:21:00:A9:DA:8B:48:C4:1C:42:D0:
  • 1A:15:2C:88:79:F2:B3:92:64:8C:9D:40:E4:3F:2A:DE:
  • 70:7D:A9:CC:F2:14:B1:BC

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_443._tcp.der-rapperszeller.de
  • PKIX-TA: CA Constraint
  • Use subject public key
  • SHA-256 Hash
valid
valid