SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
| Hostname: | done Matches Common Name or/and SAN |
| Expired: | done No (343 days till expiration) |
| Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
| Trusted: | close We were unable to verify this certificate |
| Self-Signed: | done No, the end-entity certificate is not self-signed |
| Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
| Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
| OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
| Resolves To: | 151.101.65.91 |
| Reverse IP lookup: | No records found |
| Nameserver: | ns-1148.awsdns-15.org. |
| Nameserver: | ns-1860.awsdns-40.co.uk. |
| Nameserver: | ns-190.awsdns-23.com. |
| Nameserver: | ns-567.awsdns-06.net. |
General Information
| Common Name: | bleacherreport.net |
| SANs: | DNS:bleacherreport.net Total number of SANs: 1 |
| Signature Algorithm: | sha256WithRSAEncryption |
| Key Type: | RSA |
| Key size: | 2048 bits |
| Serial Number: | 1db46ef5e0b45c87ffaa5f4adaeb680 |
| Not Before: | Mar 02, 2024 21:25:15 GMT |
| Not After: | Apr 03, 2025 21:25:14 GMT |
| Number of certs: | 2 |
| Revocation Status: | good |
| OCSP Stapling: | Not Supported |
| Server: | Varnish |
| HSTS: | Not Supported |
| HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: bleacherreport.net
Decode this certificate for verbose information → launch| Subject Common Name | bleacherreport.net |
| Issuer Common Name | GlobalSign Atlas R3 DV TLS CA 2024 Q1 |
| Issuer Organization | GlobalSign nv-sa |
| Not Before: | Mar 02, 2024 21:25:15 GMT |
| Not After: | Apr 03, 2025 21:25:14 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 1db46ef5e0b45c87ffaa5f4adaeb680 |
| SHA1 Fingerprint: | 1B:7F:93:ED:95:BF:84:E1:8F:3B:6B:C4:68:A8:12:8B:97:E9:C9:36 |
| MD5 Fingerprint: | 0F:B6:4D:BB:89:55:A5:D9:8B:F4:29:1E:0B:BB:BF:B5 |
Certificate # 2 - Common Name: GlobalSign Atlas R3 DV TLS CA 2024 Q1
Decode this certificate for verbose information → launch| In place? | Yes, this certificate directly certifies the preceding one |
| Subject Common Name | GlobalSign Atlas R3 DV TLS CA 2024 Q1 |
| Subject Organization | GlobalSign nv-sa |
| Issuer Common Name | GlobalSign |
| Issuer Organization | GlobalSign |
| Not Before: | Oct 18, 2023 04:09:32 GMT |
| Not After: | Oct 18, 2025 00:00:00 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 7fb6a0ea55e28c044c952e95d6349f5c |
| SHA1 Fingerprint: | 5A:C7:AC:8A:9E:75:6D:C0:96:04:19:EE:66:67:3B:9C:DF:D3:7E:AC |
| MD5 Fingerprint: | 13:32:96:24:4B:DB:25:8A:96:61:70:E8:CC:B8:AE:6A |
OpenSSL Handshake
depth=1 C = BE, O = GlobalSign nv-sa, CN = GlobalSign Atlas R3 DV TLS CA 2024 Q1
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 CN = bleacherreport.net
verify return:1
CONNECTED(00000003)
OCSP response: no response sent
---
Certificate chain
0 s:CN = bleacherreport.net
i:C = BE, O = GlobalSign nv-sa, CN = GlobalSign Atlas R3 DV TLS CA 2024 Q1
-----BEGIN CERTIFICATE-----
MIIGZzCCBU+gAwIBAgIQAdtG714LRch/+qX0ra62gDANBgkqhkiG9w0BAQsFADBY
MQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEuMCwGA1UE
AxMlR2xvYmFsU2lnbiBBdGxhcyBSMyBEViBUTFMgQ0EgMjAyNCBRMTAeFw0yNDAz
MDIyMTI1MTVaFw0yNTA0MDMyMTI1MTRaMB0xGzAZBgNVBAMMEmJsZWFjaGVycmVw
b3J0Lm5ldDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALsRILwilBP0
Mlafy65ECxu9AbFL5Urw1ml8ICpEoBYxEYSccQCOsfHV+1r4ohZDSATKVpXEqD/Z
VClKFswEGw70sDZPTNQ36oinURreCPy1t3MrDwWeMtpuKs++QXN/Jxh+SzynkhXf
iE/HRuRGdeCV+EYHtPH3zQe70aS7KGZvSe4KsZontyuH8KLk9tbCU3XoDQ/46VS5
wl2MAOfmPeMEUCrVfBEEemmp3ukXsLKSJx2/74GTi/Zo6vWxrQbytV5lO6hmQYeq
oI59TCQhBbOjXthowMA/FVOZ8rHC1gMvgai46OeUco+aBWtTBFjwPAsCPDjKLCRU
6o8irlu2FXkCAwEAAaOCA2YwggNiMB0GA1UdEQQWMBSCEmJsZWFjaGVycmVwb3J0
Lm5ldDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF
BwMCMB0GA1UdDgQWBBT4zUz8KrpU4fgjWzLKYcsmprARJjBXBgNVHSAEUDBOMAgG
BmeBDAECATBCBgorBgEEAaAyCgEDMDQwMgYIKwYBBQUHAgEWJmh0dHBzOi8vd3d3
Lmdsb2JhbHNpZ24uY29tL3JlcG9zaXRvcnkvMAwGA1UdEwEB/wQCMAAwgZ4GCCsG
AQUFBwEBBIGRMIGOMEAGCCsGAQUFBzABhjRodHRwOi8vb2NzcC5nbG9iYWxzaWdu
LmNvbS9jYS9nc2F0bGFzcjNkdnRsc2NhMjAyNHExMEoGCCsGAQUFBzAChj5odHRw
Oi8vc2VjdXJlLmdsb2JhbHNpZ24uY29tL2NhY2VydC9nc2F0bGFzcjNkdnRsc2Nh
MjAyNHExLmNydDAfBgNVHSMEGDAWgBRmwMejms3+8+rOS1MLYV6vMwWz4TBIBgNV
HR8EQTA/MD2gO6A5hjdodHRwOi8vY3JsLmdsb2JhbHNpZ24uY29tL2NhL2dzYXRs
YXNyM2R2dGxzY2EyMDI0cTEuY3JsMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgA
dgBOdaMnXJoQwzhbbNTfP1LrHfDgjhuNacCx+mSxYpo53wAAAY4BDpEDAAAEAwBH
MEUCIBtsQ96a26MrhS3+Y1xCfxXiKzRe6AeH5X6dtzijI5nYAiEA1Ray93n2JrFB
HfPLN6x5EfrrSJ8iJ9yu7ItcjLd8eHgAdwB9WR4S4XgqexxhZ3xe/fjQh1wUoE6V
nrkDL9kOjC55uAAAAY4BDpG0AAAEAwBIMEYCIQCLgMUsZ67iKVGomIdK3ubv5mEX
Go04OnCFMdX5Bdx+xwIhAKp1nHRXgaCHRR5Npd2w8IJHCQc4o1aMBQryuTwiuzt1
AHUAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGOAQ6SCgAABAMA
RjBEAiA/87fuYoOb+qDUkIV6XtwenV+hTZ6uYQkECe9aJlMl/QIgWgnW2/mWcoqB
rdR8Tt4CidNk5FFZCHjdmOFnYjja9QQwDQYJKoZIhvcNAQELBQADggEBADWIZyY+
hzQvLHmWuT11sIyJr0tYHSqBdOOb+ivNbC5FqoSJ+pA1CIswjRriO8ntvrGzmeHE
bs0y9NW5RKspbj9euPchuoGOZe/+q+lgXbCB9YxfdHj/uiShCJtjw+4gGs3ppqx/
RnJp+uFlPDiT7kVgHZ7Dho7GZf5iqdsK2ebUQIcaJt5zTJAo+cgeDZZVn27otQfp
1anb/N1QRQMrq4zlvD3pYLa89Z+fKYk2j+6m0FZgrn9DbISCUTI7+mUKw5Yt/8OG
o3tbOiF/x0UlNn87aSLquLSGezfVVwfXL53zkVZPHDhM11RWrLZIKT+B2gyCMCSq
VG/+YK193hy5Tsc=
-----END CERTIFICATE-----
1 s:C = BE, O = GlobalSign nv-sa, CN = GlobalSign Atlas R3 DV TLS CA 2024 Q1
i:OU = GlobalSign Root CA - R3, O = GlobalSign, CN = GlobalSign
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=CN = bleacherreport.net
issuer=C = BE, O = GlobalSign nv-sa, CN = GlobalSign Atlas R3 DV TLS CA 2024 Q1
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3363 bytes and written 393 bytes
Verification error: unable to get local issuer certificate
---
New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 20 (unable to get local issuer certificate)
---
DONE
---
Post-Handshake New Session Ticket arrived:
SSL-Session:
Protocol : TLSv1.3
Cipher : TLS_AES_128_GCM_SHA256
Session-ID: F052306CC4C8FDC03949C9A56A5996D78D1C7284B6BBE7530ECA95FBFBF26A24
Session-ID-ctx:
Resumption PSK: 76D8220689A4282E7D2FF18495B1778F182F9B3479836D04556996B5574E27C1
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 3600 (seconds)
TLS session ticket:
0000 - 7c 0c cd 02 cc 50 2e e0-48 e1 8d 29 e6 99 15 57 |....P..H..)...W
0010 - 06 a9 72 4c b9 5b 6a 80-d8 f9 40 2e 9f 69 71 7d ..rL.[j...@..iq}
0020 - c5 90 45 dd 15 fc 4f 71-a6 2b 7c 8b 49 dd 82 44 ..E...Oq.+|.I..D
0030 - 5c aa b3 c3 d9 75 68 13-b6 89 c3 f1 72 ec ff 91 \....uh.....r...
0040 - 56 75 7f 7c ff 7a ef 24-ce bf d7 04 b8 c3 9d ee Vu.|.z.$........
0050 - 72 94 da 7c 03 53 27 2c-fd 9a 4c 0e 4e 33 d2 0a r..|.S',..L.N3..
0060 - 20 22 05 06 8d 10 90 7a-af 42 8a d3 4f 57 79 4b ".....z.B..OWyK
0070 - c6 9f 20 94 20 c0 98 9a-e1 93 50 ad c4 41 fe da .. . .....P..A..
0080 - 6b 03 a7 df a7 8e d1 35-2e 06 83 f1 60 f6 9c 09 k......5....`...
0090 - fd 34 fb 5f d5 5a 75 d0-3e 52 1e 51 36 8e d5 0e .4._.Zu.>R.Q6...
Start Time: 1714037498
Timeout : 7200 (sec)
Verify return code: 20 (unable to get local issuer certificate)
Extended master secret: no
Max Early Data: 8192
---
read R BLOCK