SSL-Tools

SSL check results of ditext.de

NEW You can also bulk check multiple servers.

Discover if the webservers of ditext.de can be reached through a secure connection.

Summary

JSON Refresh

Report created Mon, 05 May 2025 23:06:13 +0000

The webservers of ditext.de can be reached through a secure connection.

Servers

Hostname / IP address Certificates Protocol
ditext.de
194.117.254.66
 ditext.de
HSTS
missing
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
ditext.de
2a05:d580:0:1337::42
 ditext.de
HSTS
missing
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Certificates

First seen at:

CN=ditext.de

Certificate chain
  • ditext.de
    • remaining
    • 256 bit
    • ecdsa-with-SHA384
      • E5
        • remaining
        • 384 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • ditext.de
Alternative Names
  • cloud.ditext.de
  • ditext.de
  • mta-sts.ditext.de
  • www.cloud.ditext.de
  • www.ditext.de
  • www.mta-sts.ditext.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • E5
validity period
Not valid before
2025-03-13
Not valid after
2025-06-11
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
C0:D2:C5:7C:10:8A:E0:68:2B:61:DB:8D:BE:E2:FE:7B:95:5A:5E:94:84:06:73:5A:C4:6B:5B:90:7D:B6:E3:1C
SHA1
C8:31:08:3F:FE:D0:49:F3:7B:A9:60:05:73:C8:8D:81:B4:31:10:86
X509v3 extensions
subjectKeyIdentifier
  • 5C:1F:72:3F:D0:7F:6A:80:56:9E:CF:26:50:B9:DC:69:8F:F8:B2:18
authorityKeyIdentifier
  • keyid:9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D
authorityInfoAccess
  • OCSP - URI:http://e5.o.lencr.org
  • CA Issuers - URI:http://e5.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://e5.c.lencr.org/53.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
  • 22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
  • Timestamp : Mar 13 01:12:32.183 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:9E:43:3D:A3:76:36:87:46:94:E2:8D:
  • 2F:64:C2:36:2C:A2:F1:D4:69:20:B3:C0:1D:3D:73:28:
  • 18:F6:C8:60:10:02:20:1D:65:18:72:B3:89:E8:F2:06:
  • 7D:62:23:71:41:7A:D6:73:89:84:F9:8A:8D:2F:9B:4B:
  • 2C:DC:88:E8:FE:A7:40
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
  • 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
  • Timestamp : Mar 13 01:12:32.265 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:5F:20:49:CB:AB:21:F2:10:9E:9F:E9:8E:
  • 2E:D9:26:38:44:D8:F5:50:16:93:67:51:0D:8D:39:0C:
  • 5B:53:82:0F:02:20:31:7D:8B:64:34:B0:62:6A:16:47:
  • 6D:77:7B:F3:3B:53:3C:B5:4F:8F:DE:DA:C9:25:A7:DB:
  • D4:44:1C:C6:5C:1D

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_443._tcp.ditext.de
  • PKIX-EE: Service Certificate Constraint
  • Use subject public key
  • SHA-256 Hash
valid
valid