SSL Checker

Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.

Report

It's all good. We have not detected any issues.

Hostname:	Matches Common Name or/and SAN
Expired:	No (61 days till expiration)
Public Key:	We were unable to find any issues in the public key of end-entity certificate
Trusted:	Yes, we were able to verify the certificate
Self-Signed:	No, the end-entity certificate is not self-signed
Chain Issues:	No, we were unable to detect any issues in the certificate chain sent by the server
Weak signatures:	No, certificates sent by the server were not signed utilizing a weak hash function
OCSP Status:	OCSP Responder returned "good" status for the end-entity certificate

DNS Information

Resolves To:	151.101.130.159
Reverse IP lookup:	No records found
Nameserver:	ns35.domaincontrol.com.
Nameserver:	ns36.domaincontrol.com.

General Information

Common Name:	bluehaven.dental
SANs:	DNS:bluehaven.dentalDNS:www.bluehaven.dental Total number of SANs: 2
Signature Algorithm:	sha256WithRSAEncryption
Key Type:	RSA
Key size:	2048 bits
Serial Number:	4eced37a59b0e2d34e94462ae2dc72e86e1
Not Before:	Mar 22, 2024 14:04:18 GMT
Not After:	Jun 20, 2024 14:04:17 GMT
Number of certs:	2
Revocation Status:	good
OCSP Stapling:	Supported
Server:	Flywheel/5.1.0
HSTS:	Not Supported
HPKP:	Not Supported

Chain Information

Certificate # 1 - Common Name: bluehaven.dental

Decode this certificate for verbose information →

Subject Common Name	bluehaven.dental
Issuer Common Name	R3
Issuer Organization	Let's Encrypt
Not Before:	Mar 22, 2024 14:04:18 GMT
Not After:	Jun 20, 2024 14:04:17 GMT
Signature Algorithm:	sha256WithRSAEncryption
Serial Number:	4eced37a59b0e2d34e94462ae2dc72e86e1
SHA1 Fingerprint:	58:0A:FE:A7:07:B8:6A:EE:D6:CD:FC:90:66:04:7E:15:A0:DF:73:74
MD5 Fingerprint:	4A:27:42:47:C9:C1:96:31:0F:C7:7C:60:CD:06:2C:91

Certificate # 2 - Common Name: R3

Decode this certificate for verbose information →

In place?	Yes, this certificate directly certifies the preceding one
Subject Common Name	R3
Subject Organization	Let's Encrypt
Issuer Common Name	ISRG Root X1
Issuer Organization	Internet Security Research Group
Not Before:	Sep 04, 2020 00:00:00 GMT
Not After:	Sep 15, 2025 16:00:00 GMT
Signature Algorithm:	sha256WithRSAEncryption
Serial Number:	912b084acf0c18a753f6d62e25a75f5a
SHA1 Fingerprint:	A0:53:37:5B:FE:84:E8:B7:48:78:2C:7C:EE:15:82:7A:6A:F5:A4:05
MD5 Fingerprint:	E8:29:E6:5D:7C:43:07:D6:FB:C1:3C:17:9E:03:7A:36

OpenSSL Handshake

depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1
verify return:1
depth=1 C = US, O = Let's Encrypt, CN = R3
verify return:1
depth=0 CN = bluehaven.dental
verify return:1
CONNECTED(00000003)
OCSP response: 
======================================
OCSP Response Data:
    OCSP Response Status: successful (0x0)
    Response Type: Basic OCSP Response
    Version: 1 (0x0)
    Responder Id: C = US, O = Let's Encrypt, CN = R3
    Produced At: Apr 14 08:59:00 2024 GMT
    Responses:
    Certificate ID:
      Hash Algorithm: sha1
      Issuer Name Hash: 48DAC9A0FB2BD32D4FF0DE68D2F567B735F9B3C4
      Issuer Key Hash: 142EB317B75856CBAE500940E61FAF9D8B14C2C6
      Serial Number: 04ECED37A59B0E2D34E94462AE2DC72E86E1
    Cert Status: good
    This Update: Apr 14 08:59:00 2024 GMT
    Next Update: Apr 21 08:58:58 2024 GMT

    Signature Algorithm: sha256WithRSAEncryption
         31:27:2f:bb:82:d8:b5:60:83:38:57:7c:31:0d:c6:69:ad:d6:
         4b:4d:07:2d:4c:6c:15:17:a1:6e:c6:a1:fa:a5:85:31:36:ce:
         fe:6c:9c:e8:dd:85:ff:d6:97:57:7f:76:2c:57:ab:fa:2f:f2:
         bd:1d:9c:15:5a:6a:77:a2:40:d4:c0:69:5e:cf:19:76:ff:36:
         be:5e:73:f2:a8:c7:69:71:fc:d9:7c:4d:06:97:4a:ac:b1:b5:
         82:18:4e:d4:ea:d0:f9:df:38:28:b2:1e:6b:1c:e6:db:b4:61:
         c9:5d:1a:6a:0b:d7:6f:3b:80:6b:18:5e:8e:85:1f:2b:2d:f1:
         0a:c8:14:04:22:2b:b9:64:b7:16:d7:20:98:88:18:10:3b:5c:
         c7:b5:a4:7c:58:ab:93:37:ae:11:63:d9:26:7c:86:24:1b:76:
         eb:0d:11:2c:f2:79:9b:f8:db:ce:77:d9:96:b1:ce:80:b7:47:
         ab:41:5a:76:51:17:d7:38:fa:ba:9f:88:b8:42:c1:c5:e8:4a:
         10:24:65:44:18:db:2b:8f:eb:e8:1b:49:05:6e:23:de:84:cf:
         8d:21:8b:55:6a:f4:1b:d6:0b:4a:a3:3b:9b:33:cb:f7:d9:d6:
         5c:e6:bc:41:40:25:2f:c5:29:bb:53:76:0e:6e:ff:69:8d:7a:
         69:93:3f:36
======================================
---
Certificate chain
 0 s:CN = bluehaven.dental
   i:C = US, O = Let's Encrypt, CN = R3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
 1 s:C = US, O = Let's Encrypt, CN = R3
   i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
-----BEGIN CERTIFICATE-----
MIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAw
TzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2Vh
cmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAw
WhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3Mg
RW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cP
R5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdx
sxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8Zutm
NHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxg
Z3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG
/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMC
AYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYB
Af8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaA
FHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcw
AoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRw
Oi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQB
gt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6W
PTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wl
ikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQz
CkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BIm
lJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4
avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2
yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1O
yK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90Ids
hCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+
HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6Zv
MldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqX
nLRbwHOoq7hHwg==
-----END CERTIFICATE-----
---
Server certificate
subject=CN = bluehaven.dental

issuer=C = US, O = Let's Encrypt, CN = R3

---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3653 bytes and written 391 bytes
Verification: OK
---
New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
---
DONE
---
Post-Handshake New Session Ticket arrived:
SSL-Session:
    Protocol  : TLSv1.3
    Cipher    : TLS_AES_128_GCM_SHA256
    Session-ID: EFC691E45AD9C60F68F32C7B262908E746442A3271091D8C2B12B8F4B2B11FA4
    Session-ID-ctx: 
    Resumption PSK: 3BAAF07A7DC74C5F59076D2DE06BAAA1785502C89E492E5C0A055F1BD5C45E90
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    TLS session ticket lifetime hint: 3600 (seconds)
    TLS session ticket:
    0000 - 70 0d 90 ac 2d bb 9e a5-3c e0 21 cd b2 82 27 48   p...-...<.!...'H
    0010 - 1c 12 79 5e 10 1f a1 6c-25 26 be 07 1b 60 32 ba   ..y^...l%&...`2.
    0020 - fd 92 ff db 9f 40 04 64-1a fa 6d 6a 2b ce 7a da   .....@.d..mj+.z.
    0030 - 70 31 83 36 d0 a1 9e a8-b3 39 1d 00 ae 70 b4 35   p1.6.....9...p.5
    0040 - b9 0e 94 3c b2 f1 fd dc-36 54 3c 64 60 cf 4e 2d   ...<....6T<d`.N-
    0050 - 68 0a 01 a2 94 df 7f a3-6d 0d df d2 67 03 b5 5d   h.......m...g..]
    0060 - 46 fb 50 b8 64 14 c2 da-86 ad 95 21 ac 85 1d 78   F.P.d......!...x
    0070 - e3 f3 5a ef d0 e2 c9 c4-d1 7c ae fc 06 08 04 0c   ..Z......|......
    0080 - 0c 9d 6c 83 c2 d1 ea 69-09 24 58 b8 0f 01 92 50   ..l....i.$X....P
    0090 - 65 d9 1a 65 0d fe fb 59-10 cb 8f 46 88 cf 66 53   e..e...Y...F..fS

    Start Time: 1713551985
    Timeout   : 7200 (sec)
    Verify return code: 0 (ok)
    Extended master secret: no
    Max Early Data: 0
---
read R BLOCK