SSL-Tools

SSL check results of martin.mdewendt.de

NEW You can also bulk check multiple servers.

Discover if the webservers of martin.mdewendt.de can be reached through a secure connection.

Summary

JSON Refresh

Report created Thu, 18 Apr 2024 16:58:34 +0000

The webservers of martin.mdewendt.de can be reached through a secure connection.

Servers

Hostname / IP address Certificates Protocol
martin.mdewendt.de
82.165.120.123
 mdewendt.de
HSTS
about 2 years
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
martin.mdewendt.de
2001:8d8:1800:475::1
 mdewendt.de
HSTS
about 2 years
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Certificates

First seen at:

CN=mdewendt.de

Certificate chain
  • mdewendt.de
    • remaining
    • 384 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mdewendt.de
Alternative Names
  • *.mdewendt.de
  • mdewendt.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2024-04-14
Not valid after
2024-07-13
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
21:55:75:95:4F:69:D6:0B:EB:A1:4F:50:00:48:0C:82:E2:BA:98:AD:C6:88:EC:7C:A8:E1:49:9C:18:AE:88:CA
SHA1
EC:79:37:C3:9C:0D:A0:F7:B9:74:3D:E8:5D:D7:CF:C2:E8:5E:7F:46
X509v3 extensions
subjectKeyIdentifier
  • 40:4A:97:41:88:F2:46:10:67:B1:15:62:BA:11:D7:72:E2:FD:EA:2A
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
  • ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
  • Timestamp : Apr 14 22:15:44.232 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:B8:3E:04:20:8E:80:75:29:4D:8B:97:
  • DF:33:D7:49:E8:46:B8:78:38:90:E7:4E:09:C9:3E:35:
  • 0F:8A:0B:CE:1B:02:21:00:E0:55:DE:D7:0B:B8:0F:58:
  • A3:99:FF:22:61:00:98:37:C1:AE:CD:0F:10:7B:EC:9C:
  • 34:26:98:71:B4:68:D5:CA
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
  • B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
  • Timestamp : Apr 14 22:15:44.280 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:46:8C:62:63:EE:D3:3E:40:F7:0E:59:47:
  • FE:15:48:9A:D0:21:FE:B4:A3:9B:E3:2C:18:B4:95:76:
  • E3:76:CC:7D:02:20:54:37:3B:85:DA:B7:4F:CF:C3:5C:
  • C8:E4:1C:37:43:E9:5A:3E:4E:98:E0:38:65:82:34:A3:
  • AC:B6:F1:5D:AE:AD

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_443._tcp.martin.mdewendt.de
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid