SSL-Tools

SSL check results of ts-gw2.de

NEW You can also bulk check multiple servers.

Discover if the webservers of ts-gw2.de can be reached through a secure connection.

Summary

JSON Refresh

Report created Sun, 09 May 2021 09:25:08 +0000

The webservers of ts-gw2.de can be reached through a secure connection.

Servers

Hostname / IP address Certificates Protocol
ts-gw2.de
45.136.31.106
 ts-gw2.de
HSTS
about 2 years
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
ts-gw2.de
2a03:4000:49:163:8e1:98ff:fe40:13bb
 ts-gw2.de
HSTS
about 2 years
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Certificates

First seen at:

CN=ts-gw2.de

Certificate chain
  • ts-gw2.de
    • remaining
    • 256 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • DST Root CA X3 (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption
Subject
Common Name (CN)
  • ts-gw2.de
Alternative Names
  • *.ts-gw2.de
  • ts-gw2.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2021-04-22
Not valid after
2021-07-21
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
46:A3:BF:FD:29:1C:4F:C0:BF:B4:6B:3F:E7:66:AF:EE:66:A4:14:0D:FE:D3:6B:5E:AA:AC:9D:2F:1F:BF:37:5B
SHA1
72:30:58:95:88:EA:30:97:A3:1C:A3:22:43:58:7C:A4:C9:75:41:D5
X509v3 extensions
subjectKeyIdentifier
  • 87:2E:23:96:A6:B9:7D:E8:E2:B2:6E:3D:93:E0:D9:75:48:5D:FB:87
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 94:20:BC:1E:8E:D5:8D:6C:88:73:1F:82:8B:22:2C:0D:
  • D1:DA:4D:5E:6C:4F:94:3D:61:DB:4E:2F:58:4D:A2:C2
  • Timestamp : Apr 22 06:14:49.080 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:FD:FE:D9:AD:14:75:1B:B8:54:42:31:
  • BA:A3:30:20:CC:E9:E7:34:35:12:11:A3:05:39:9C:9C:
  • 55:24:B2:4C:D6:02:21:00:93:13:B6:52:93:20:CD:93:
  • AD:D5:4A:C0:8C:B8:E4:A3:B1:AA:58:B9:03:53:58:B4:
  • 99:72:01:17:D6:0F:6D:8A
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89:
  • 79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7
  • Timestamp : Apr 22 06:14:49.055 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:6B:5E:70:83:A6:EF:03:0D:74:73:59:10:
  • B0:7F:81:88:FE:A3:DB:75:B3:3C:C0:68:39:76:B0:60:
  • 54:A4:BA:62:02:20:69:D1:39:5C:43:73:A7:5C:AE:9E:
  • 9D:18:CA:E8:70:95:D3:9C:A0:78:60:1F:83:5B:49:7C:
  • 1D:2C:30:F6:39:D0

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_443._tcp.ts-gw2.de
  • PKIX-TA: CA Constraint
  • Use subject public key
  • SHA-256 Hash
valid
valid