www.finanzamt.bayern.de - SSL / HTTPS Check

Discover if the webservers of www.finanzamt.bayern.de can be reached through a secure connection.

Summary

Report created Sun, 12 Nov 2023 17:37:23 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Valid

The webservers of www.finanzamt.bayern.de can be reached through a secure connection.

Servers

Hostname / IP address	Certificates	Protocol
www.finanzamt.bayern.de 195.200.71.141	www.finanzamt.bayern.de	HSTS unexpected EOF DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-11-12 1 s

Certificates

First seen at: 2023-11-12

CN=www.finanzamt.bayern.de

Certificate chain

www.finanzamt.bayern.de
- 2024-01-10 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

www.finanzamt.bayern.de

Alternative Names

finanzamt.bayern.de
www.finanzaemter.bayern.de
www.finanzamt.bayern.de

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2023-10-12
Not valid after: 2024-01-10

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: F5:DC:18:7C:42:56:04:75:35:B8:A3:1F:1C:6E:F8:DD:3A:2B:22:97:1F:84:51:73:F5:6D:20:4F:1D:2B:A7:9A
SHA1: 03:80:41:A3:03:1F:F9:D8:6C:47:AB:B0:A2:4E:F5:06:63:C1:B2:FA

X509v3 extensions

subjectKeyIdentifier

B5:B2:71:79:8E:ED:57:37:4D:B8:18:CD:8E:BA:FE:E1:62:42:B6:78

authorityKeyIdentifier

keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6

authorityInfoAccess

OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
Timestamp : Oct 12 14:29:23.674 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:95:74:05:D2:7A:A6:1D:AA:7B:39:B8:
56:51:18:91:8A:2C:9B:D9:CE:67:AD:59:25:02:C7:0D:
02:45:9A:C0:A3:02:21:00:83:00:8F:84:92:4F:9A:4B:
2D:59:F0:A3:34:AC:7A:31:B3:E6:10:6A:42:0E:05:E1:
E5:75:DE:3D:EE:17:27:7A
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Oct 12 14:29:23.669 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:F4:3B:F4:99:57:40:99:00:79:CF:CD:
E2:F8:2C:74:61:5E:E5:09:B2:C0:70:16:50:5B:BF:83:
66:97:DA:D6:D2:02:21:00:97:4E:CB:E6:EC:C0:62:FF:
1D:7C:CD:AF:A5:CC:4B:D2:77:AE:10:08:F9:76:3A:14:
52:F4:AD:34:A4:D3:C7:A6

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name	Options	DNSSEC	Matches
_443._tcp.www.finanzamt.bayern.de	PKIX-TA: CA Constraint Use full certificate SHA-256 Hash	valid	valid