SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
Hostname: | done Matches Common Name or/and SAN |
Expired: | done No (343 days till expiration) |
Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
Trusted: | close We were unable to verify this certificate |
Self-Signed: | done No, the end-entity certificate is not self-signed |
Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
Resolves To: | 151.101.65.91 |
Reverse IP lookup: | No records found |
Nameserver: | ns-1148.awsdns-15.org. |
Nameserver: | ns-1860.awsdns-40.co.uk. |
Nameserver: | ns-190.awsdns-23.com. |
Nameserver: | ns-567.awsdns-06.net. |
General Information
Common Name: | bleacherreport.net |
SANs: | DNS:bleacherreport.net Total number of SANs: 1 |
Signature Algorithm: | sha256WithRSAEncryption |
Key Type: | RSA |
Key size: | 2048 bits |
Serial Number: | 1db46ef5e0b45c87ffaa5f4adaeb680 |
Not Before: | Mar 02, 2024 21:25:15 GMT |
Not After: | Apr 03, 2025 21:25:14 GMT |
Number of certs: | 2 |
Revocation Status: | good |
OCSP Stapling: | Not Supported |
Server: | Varnish |
HSTS: | Not Supported |
HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: bleacherreport.net
Decode this certificate for verbose information → launchSubject Common Name | bleacherreport.net |
Issuer Common Name | GlobalSign Atlas R3 DV TLS CA 2024 Q1 |
Issuer Organization | GlobalSign nv-sa |
Not Before: | Mar 02, 2024 21:25:15 GMT |
Not After: | Apr 03, 2025 21:25:14 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 1db46ef5e0b45c87ffaa5f4adaeb680 |
SHA1 Fingerprint: | 1B:7F:93:ED:95:BF:84:E1:8F:3B:6B:C4:68:A8:12:8B:97:E9:C9:36 |
MD5 Fingerprint: | 0F:B6:4D:BB:89:55:A5:D9:8B:F4:29:1E:0B:BB:BF:B5 |
Certificate # 2 - Common Name: GlobalSign Atlas R3 DV TLS CA 2024 Q1
Decode this certificate for verbose information → launchIn place? | Yes, this certificate directly certifies the preceding one |
Subject Common Name | GlobalSign Atlas R3 DV TLS CA 2024 Q1 |
Subject Organization | GlobalSign nv-sa |
Issuer Common Name | GlobalSign |
Issuer Organization | GlobalSign |
Not Before: | Oct 18, 2023 04:09:32 GMT |
Not After: | Oct 18, 2025 00:00:00 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 7fb6a0ea55e28c044c952e95d6349f5c |
SHA1 Fingerprint: | 5A:C7:AC:8A:9E:75:6D:C0:96:04:19:EE:66:67:3B:9C:DF:D3:7E:AC |
MD5 Fingerprint: | 13:32:96:24:4B:DB:25:8A:96:61:70:E8:CC:B8:AE:6A |
OpenSSL Handshake
depth=1 C = BE, O = GlobalSign nv-sa, CN = GlobalSign Atlas R3 DV TLS CA 2024 Q1 verify error:num=20:unable to get local issuer certificate verify return:1 depth=0 CN = bleacherreport.net verify return:1 CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = bleacherreport.net i:C = BE, O = GlobalSign nv-sa, CN = GlobalSign Atlas R3 DV TLS CA 2024 Q1 -----BEGIN CERTIFICATE----- MIIGZzCCBU+gAwIBAgIQAdtG714LRch/+qX0ra62gDANBgkqhkiG9w0BAQsFADBY MQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEuMCwGA1UE AxMlR2xvYmFsU2lnbiBBdGxhcyBSMyBEViBUTFMgQ0EgMjAyNCBRMTAeFw0yNDAz MDIyMTI1MTVaFw0yNTA0MDMyMTI1MTRaMB0xGzAZBgNVBAMMEmJsZWFjaGVycmVw b3J0Lm5ldDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALsRILwilBP0 Mlafy65ECxu9AbFL5Urw1ml8ICpEoBYxEYSccQCOsfHV+1r4ohZDSATKVpXEqD/Z VClKFswEGw70sDZPTNQ36oinURreCPy1t3MrDwWeMtpuKs++QXN/Jxh+SzynkhXf iE/HRuRGdeCV+EYHtPH3zQe70aS7KGZvSe4KsZontyuH8KLk9tbCU3XoDQ/46VS5 wl2MAOfmPeMEUCrVfBEEemmp3ukXsLKSJx2/74GTi/Zo6vWxrQbytV5lO6hmQYeq oI59TCQhBbOjXthowMA/FVOZ8rHC1gMvgai46OeUco+aBWtTBFjwPAsCPDjKLCRU 6o8irlu2FXkCAwEAAaOCA2YwggNiMB0GA1UdEQQWMBSCEmJsZWFjaGVycmVwb3J0 Lm5ldDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMB0GA1UdDgQWBBT4zUz8KrpU4fgjWzLKYcsmprARJjBXBgNVHSAEUDBOMAgG BmeBDAECATBCBgorBgEEAaAyCgEDMDQwMgYIKwYBBQUHAgEWJmh0dHBzOi8vd3d3 Lmdsb2JhbHNpZ24uY29tL3JlcG9zaXRvcnkvMAwGA1UdEwEB/wQCMAAwgZ4GCCsG AQUFBwEBBIGRMIGOMEAGCCsGAQUFBzABhjRodHRwOi8vb2NzcC5nbG9iYWxzaWdu LmNvbS9jYS9nc2F0bGFzcjNkdnRsc2NhMjAyNHExMEoGCCsGAQUFBzAChj5odHRw Oi8vc2VjdXJlLmdsb2JhbHNpZ24uY29tL2NhY2VydC9nc2F0bGFzcjNkdnRsc2Nh MjAyNHExLmNydDAfBgNVHSMEGDAWgBRmwMejms3+8+rOS1MLYV6vMwWz4TBIBgNV HR8EQTA/MD2gO6A5hjdodHRwOi8vY3JsLmdsb2JhbHNpZ24uY29tL2NhL2dzYXRs YXNyM2R2dGxzY2EyMDI0cTEuY3JsMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgA dgBOdaMnXJoQwzhbbNTfP1LrHfDgjhuNacCx+mSxYpo53wAAAY4BDpEDAAAEAwBH MEUCIBtsQ96a26MrhS3+Y1xCfxXiKzRe6AeH5X6dtzijI5nYAiEA1Ray93n2JrFB HfPLN6x5EfrrSJ8iJ9yu7ItcjLd8eHgAdwB9WR4S4XgqexxhZ3xe/fjQh1wUoE6V nrkDL9kOjC55uAAAAY4BDpG0AAAEAwBIMEYCIQCLgMUsZ67iKVGomIdK3ubv5mEX Go04OnCFMdX5Bdx+xwIhAKp1nHRXgaCHRR5Npd2w8IJHCQc4o1aMBQryuTwiuzt1 AHUAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGOAQ6SCgAABAMA RjBEAiA/87fuYoOb+qDUkIV6XtwenV+hTZ6uYQkECe9aJlMl/QIgWgnW2/mWcoqB rdR8Tt4CidNk5FFZCHjdmOFnYjja9QQwDQYJKoZIhvcNAQELBQADggEBADWIZyY+ hzQvLHmWuT11sIyJr0tYHSqBdOOb+ivNbC5FqoSJ+pA1CIswjRriO8ntvrGzmeHE bs0y9NW5RKspbj9euPchuoGOZe/+q+lgXbCB9YxfdHj/uiShCJtjw+4gGs3ppqx/ RnJp+uFlPDiT7kVgHZ7Dho7GZf5iqdsK2ebUQIcaJt5zTJAo+cgeDZZVn27otQfp 1anb/N1QRQMrq4zlvD3pYLa89Z+fKYk2j+6m0FZgrn9DbISCUTI7+mUKw5Yt/8OG o3tbOiF/x0UlNn87aSLquLSGezfVVwfXL53zkVZPHDhM11RWrLZIKT+B2gyCMCSq VG/+YK193hy5Tsc= -----END CERTIFICATE----- 1 s:C = BE, O = GlobalSign nv-sa, CN = GlobalSign Atlas R3 DV TLS CA 2024 Q1 i:OU = GlobalSign Root CA - R3, O = GlobalSign, CN = GlobalSign -----BEGIN CERTIFICATE----- MIIEjzCCA3egAwIBAgIQf7ag6lXijARMlS6V1jSfXDANBgkqhkiG9w0BAQsFADBM MSAwHgYDVQQLExdHbG9iYWxTaWduIFJvb3QgQ0EgLSBSMzETMBEGA1UEChMKR2xv YmFsU2lnbjETMBEGA1UEAxMKR2xvYmFsU2lnbjAeFw0yMzEwMTgwNDA5MzJaFw0y NTEwMTgwMDAwMDBaMFgxCzAJBgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWdu IG52LXNhMS4wLAYDVQQDEyVHbG9iYWxTaWduIEF0bGFzIFIzIERWIFRMUyBDQSAy MDI0IFExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlEaiVBcFLmhw Cb+9eZUNyxuo3ddf1qAqoS9HRUp6bHv50DrPPENoni9Ix4JVu0OUJRv08POUqwGG +UJrt0V9/UMxb90o2IRIDK/QuNurr36GObMYW+K8bNMG0RKGIlyKVqZMqFaBPjjG mWZEPslwWDj8qbtywoO2TMnMppxNOymms6M0lilQnBK1yaYiXRjQjO8EwkOM95iK lXx0axJHUZS5nPkEvrqpyjgiskDK2ETb4xpmE2RAQXAXxM3Fpnn9kxMi1at8AhsW xCM/pNucU6rb4uqibp9KbbAdhDyd+sI6vPZDS+RtOmv+bTdaAPUDeDc4AV7/N0dO VMggCp4gDwIDAQABo4IBXzCCAVswDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQW BBRmwMejms3+8+rOS1MLYV6vMwWz4TAfBgNVHSMEGDAWgBSP8Et/qC5FJK5NUPpj move4t0bvDB7BggrBgEFBQcBAQRvMG0wLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3Nw Mi5nbG9iYWxzaWduLmNvbS9yb290cjMwOwYIKwYBBQUHMAKGL2h0dHA6Ly9zZWN1 cmUuZ2xvYmFsc2lnbi5jb20vY2FjZXJ0L3Jvb3QtcjMuY3J0MDYGA1UdHwQvMC0w K6ApoCeGJWh0dHA6Ly9jcmwuZ2xvYmFsc2lnbi5jb20vcm9vdC1yMy5jcmwwIQYD VR0gBBowGDAIBgZngQwBAgEwDAYKKwYBBAGgMgoBAzANBgkqhkiG9w0BAQsFAAOC AQEAHVoRr5g39Y/9HMV8B8Vp/gC4sq+jTIaIJwpIPRc0DncvjxJwDUcrhKSMC+Lx ZP0HxCcef+7iXQwzM/RW4DP0Ao6+vhl1iLfFxdB7atqm3pPAxsiMvvPklqzlmw2e nCfjta5jA5fqiSii8TXJ8WeG1QxEizqNsq7C+7y9OYlyGXdAYAA4u8Hb4gu559za OwX8vZTCmjG3u4wrp2/1QTM4qrzWT9ckRtoEBzGImh+q5J3CnjBPX90q2X2KqRP+ xiPsF1tCGmrc7AnYpi+qy65PGhVoIO7Ev9zI7Ucl68I/3rmqBahLR/KB1isYCs0c 57XG+pMmZ14Kr4WCLuEfXEM8sQ== -----END CERTIFICATE----- --- Server certificate subject=CN = bleacherreport.net issuer=C = BE, O = GlobalSign nv-sa, CN = GlobalSign Atlas R3 DV TLS CA 2024 Q1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 3363 bytes and written 393 bytes Verification error: unable to get local issuer certificate --- New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 20 (unable to get local issuer certificate) --- DONE --- Post-Handshake New Session Ticket arrived: SSL-Session: Protocol : TLSv1.3 Cipher : TLS_AES_128_GCM_SHA256 Session-ID: F052306CC4C8FDC03949C9A56A5996D78D1C7284B6BBE7530ECA95FBFBF26A24 Session-ID-ctx: Resumption PSK: 76D8220689A4282E7D2FF18495B1778F182F9B3479836D04556996B5574E27C1 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 3600 (seconds) TLS session ticket: 0000 - 7c 0c cd 02 cc 50 2e e0-48 e1 8d 29 e6 99 15 57 |....P..H..)...W 0010 - 06 a9 72 4c b9 5b 6a 80-d8 f9 40 2e 9f 69 71 7d ..rL.[j...@..iq} 0020 - c5 90 45 dd 15 fc 4f 71-a6 2b 7c 8b 49 dd 82 44 ..E...Oq.+|.I..D 0030 - 5c aa b3 c3 d9 75 68 13-b6 89 c3 f1 72 ec ff 91 \....uh.....r... 0040 - 56 75 7f 7c ff 7a ef 24-ce bf d7 04 b8 c3 9d ee Vu.|.z.$........ 0050 - 72 94 da 7c 03 53 27 2c-fd 9a 4c 0e 4e 33 d2 0a r..|.S',..L.N3.. 0060 - 20 22 05 06 8d 10 90 7a-af 42 8a d3 4f 57 79 4b ".....z.B..OWyK 0070 - c6 9f 20 94 20 c0 98 9a-e1 93 50 ad c4 41 fe da .. . .....P..A.. 0080 - 6b 03 a7 df a7 8e d1 35-2e 06 83 f1 60 f6 9c 09 k......5....`... 0090 - fd 34 fb 5f d5 5a 75 d0-3e 52 1e 51 36 8e d5 0e .4._.Zu.>R.Q6... Start Time: 1714037498 Timeout : 7200 (sec) Verify return code: 20 (unable to get local issuer certificate) Extended master secret: no Max Early Data: 8192 --- read R BLOCK