SSL-Tools

SSL check results of novo.media

NEW You can also bulk check multiple servers.

Discover if the webservers of novo.media can be reached through a secure connection.

Summary

JSON Refresh

Report created Sun, 10 Aug 2025 20:19:11 +0000

The webservers of novo.media can be reached through a secure connection.

Servers

Hostname / IP address Certificates Protocol
novo.media
65.21.45.172
 novo.media
HSTS
unexpected EOF
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
novo.media
2a01:4f9:3071:1ce0::2
 novo.media
HSTS
unexpected EOF
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Certificates

First seen at:

CN=novo.media

Certificate chain
  • novo.media
    • remaining
    • 256 bit
    • ecdsa-with-SHA384
      • E5
        • remaining
        • 384 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • novo.media
Alternative Names
  • *.novo.media
  • novo.media
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • E5
validity period
Not valid before
2025-08-02
Not valid after
2025-10-31
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
C6:D3:6D:77:BC:24:8C:09:BA:B4:84:9D:B6:E4:12:E1:3A:CF:8E:F9:29:1F:E6:DA:F6:40:16:E9:D4:15:55:38
SHA1
FB:CC:AF:F8:1D:A3:32:C4:80:26:23:B7:BC:8C:1B:3F:97:CB:AC:75
X509v3 extensions
subjectKeyIdentifier
  • 6F:C1:71:71:08:8E:EB:60:1A:80:F1:AB:0E:FE:5B:15:27:10:7D:5E
authorityKeyIdentifier
  • keyid:9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D
authorityInfoAccess
  • CA Issuers - URI:http://e5.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://e5.c.lencr.org/23.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 1A:04:FF:49:D0:54:1D:40:AF:F6:A0:C3:BF:F1:D8:C4:
  • 67:2F:4E:EC:EE:23:40:68:98:6B:17:40:2E:DC:89:7D
  • Timestamp : Aug 2 03:55:59.132 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:BD:40:C9:D6:34:00:8D:DD:C0:2C:84:
  • 0E:97:1D:39:98:DA:8D:C0:F5:1F:3D:59:E4:65:B3:B5:
  • 23:16:BD:66:6A:02:20:55:E7:B5:32:BE:04:2A:61:7A:
  • 02:9C:C9:77:97:7C:AD:A4:85:D2:13:FD:28:A6:3B:5D:
  • FE:CD:D9:3D:67:ED:74
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
  • F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
  • Timestamp : Aug 2 03:56:01.087 2025 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:D9:C9:86:54:43:00:DC:5B:D3:B7:C8:
  • 39:78:40:44:A8:0F:72:F3:7C:2F:0F:59:C0:F6:7C:1A:
  • 1A:2F:53:37:6E:02:21:00:D4:36:DF:F0:03:1D:0F:82:
  • AA:30:3E:E0:23:4A:44:03:4C:E2:38:D2:01:92:DC:9A:
  • 43:5C:13:F4:ED:59:1A:F1

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_443._tcp.novo.media
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_443._tcp.novo.media
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid