SSL-Tools

SSL check results of finanzamt.bayern.de

NEW You can also bulk check multiple servers.

Discover if the webservers of finanzamt.bayern.de can be reached through a secure connection.

Summary

JSON Refresh

Report created Wed, 17 Apr 2024 11:54:00 +0000

The webservers of finanzamt.bayern.de can be reached through a secure connection.

Servers

Hostname / IP address Certificates Protocol
finanzamt.bayern.de
195.200.71.141
 www.finanzamt.bayern.de
HSTS
unexpected EOF
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Certificates

First seen at:

CN=www.finanzamt.bayern.de

Certificate chain
  • www.finanzamt.bayern.de
    • remaining
    • 3072 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • www.finanzamt.bayern.de
Alternative Names
  • finanzamt.bayern.de
  • www.finanzaemter.bayern.de
  • www.finanzamt.bayern.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2024-03-13
Not valid after
2024-06-11
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
26:B2:56:82:99:F8:23:39:45:9D:E0:69:67:9E:05:F1:02:BB:B5:97:F7:D8:BC:8F:39:5C:CA:6D:05:CF:36:F3
SHA1
FF:EA:76:7B:AA:C2:53:6F:B8:DA:6E:C9:8C:AF:12:B6:8E:9C:31:8C
X509v3 extensions
subjectKeyIdentifier
  • 17:50:0C:2A:82:DB:08:3C:55:C6:4E:72:89:22:D7:05:93:61:67:1C
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
  • 65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
  • Timestamp : Mar 14 00:51:43.274 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:3C:F6:BC:DE:7A:A9:43:35:9A:D8:B3:FD:
  • 21:77:04:5B:15:0A:69:B8:A7:06:D9:3F:93:CB:45:EC:
  • 39:CE:AB:88:02:21:00:F6:36:50:2F:EE:30:7D:84:BC:
  • 2F:09:F8:C0:50:90:37:1C:05:B4:6A:CB:C9:57:B9:63:
  • A4:D0:16:44:6A:49:5B
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
  • 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
  • Timestamp : Mar 14 00:51:43.263 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:ED:AD:B4:08:79:7F:5A:41:E1:6B:E2:
  • 5E:97:8A:08:D7:29:45:66:F5:CC:29:A2:AF:F6:50:7D:
  • EC:F3:8A:71:5A:02:21:00:CA:16:75:11:29:C1:1D:C2:
  • 9E:7A:81:16:FD:B9:14:FA:A9:29:64:89:AF:D7:C5:2F:
  • 0A:BE:85:A8:A5:F3:B2:D1

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_443._tcp.finanzamt.bayern.de
  • PKIX-TA: CA Constraint
  • Use full certificate
  • SHA-256 Hash
valid
valid