Namecheap.com
SSL Checker SSL & CSR Decoder CSR Generator SSL Converter

SSL Checker

Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.

Report

Hostname: Matches Common Name or/and SAN
Expired: No (178 days till expiration)
Public Key: We were unable to find any issues in the public key of end-entity certificate
Trusted: Yes, we were able to verify the certificate
Self-Signed: No, the end-entity certificate is not self-signed
Chain Issues: No, we were unable to detect any issues in the certificate chain sent by the server
Weak signatures: No, certificates sent by the server were not signed utilizing a weak hash function
OCSP Status: OCSP Responder returned "good" status for the end-entity certificate

DNS Information

Resolves To: 54.91.6.89
Reverse IP lookup: ec2-54-91-6-89.compute-1.amazonaws.com.
Nameserver: greg.ns.cloudflare.com.
Nameserver: jean.ns.cloudflare.com.

General Information

Common Name: ctia.org
SANs: DNS:ctia.orgDNS:www.ctia.org Total number of SANs: 2
Organization: CTIA-The Wireless Association
Locality: Washington
Signature Algorithm: sha256WithRSAEncryption
Key Type: RSA
Key size: 2048 bits
Serial Number: 7b52e6d1e62645f4d5eec7cba5d75e4
Not Before: Oct 17, 2023 00:00:00 GMT
Not After: Oct 21, 2024 23:59:59 GMT
Number of certs: 3
Revocation Status: good
OCSP Stapling: Not Supported
Server: Cowboy
HSTS: max-age=15552000; includeSubDomains
HPKP: Not Supported

Chain Information

Certificate # 1 - Common Name: ctia.org

Decode this certificate for verbose information →
Subject Common Name ctia.org
Subject Organization CTIA-The Wireless Association
Issuer Common Name DigiCert Global G2 TLS RSA SHA256 2020 CA1
Issuer Organization DigiCert Inc
Not Before: Oct 17, 2023 00:00:00 GMT
Not After: Oct 21, 2024 23:59:59 GMT
Signature Algorithm: sha256WithRSAEncryption
Serial Number: 7b52e6d1e62645f4d5eec7cba5d75e4
SHA1 Fingerprint: 0A:5F:17:63:84:B6:FD:25:FF:C0:DE:FC:2C:2F:2A:3C:7F:24:AC:D0
MD5 Fingerprint: F1:61:7A:2E:FC:6E:E1:96:E3:AB:8A:A3:FE:95:13:25

Certificate # 2 - Common Name: DigiCert Global G2 TLS RSA SHA256 2020 CA1

Decode this certificate for verbose information →
In place? Yes, this certificate directly certifies the preceding one
Subject Common Name DigiCert Global G2 TLS RSA SHA256 2020 CA1
Subject Organization DigiCert Inc
Issuer Common Name DigiCert Global Root G2
Issuer Organization DigiCert Inc
Not Before: Mar 30, 2021 00:00:00 GMT
Not After: Mar 29, 2031 23:59:59 GMT
Signature Algorithm: sha256WithRSAEncryption
Serial Number: cf5bd062b5602f47ab8502c23ccf066
SHA1 Fingerprint: 1B:51:1A:BE:AD:59:C6:CE:20:70:77:C0:BF:0E:00:43:B1:38:26:12
MD5 Fingerprint: 21:14:C6:BF:5B:E1:5E:FD:DD:3C:F6:A5:F9:43:EE:8A

Certificate # 3 - Common Name: DigiCert Global Root G2

Decode this certificate for verbose information →
In place? Yes, this certificate directly certifies the preceding one
Subject Common Name DigiCert Global Root G2
Subject Organization DigiCert Inc
Issuer Common Name DigiCert Global Root G2
Issuer Organization DigiCert Inc
Not Before: Aug 01, 2013 12:00:00 GMT
Not After: Jan 15, 2038 12:00:00 GMT
Signature Algorithm: sha256WithRSAEncryption
Serial Number: 33af1e6a711a9a0bb2864b11d09fae5
SHA1 Fingerprint: DF:3C:24:F9:BF:D6:66:76:1B:26:80:73:FE:06:D1:CC:8D:4F:82:A4
MD5 Fingerprint: E4:A6:8A:C8:54:AC:52:42:46:0A:FD:72:48:1B:2A:44

OpenSSL Handshake

depth=2 C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root G2
verify return:1
depth=1 C = US, O = DigiCert Inc, CN = DigiCert Global G2 TLS RSA SHA256 2020 CA1
verify return:1
depth=0 C = US, ST = District of Columbia, L = Washington, O = CTIA-The Wireless Association, CN = ctia.org
verify return:1
CONNECTED(00000003)
OCSP response: no response sent
---
Certificate chain
 0 s:C = US, ST = District of Columbia, L = Washington, O = CTIA-The Wireless Association, CN = ctia.org
   i:C = US, O = DigiCert Inc, CN = DigiCert Global G2 TLS RSA SHA256 2020 CA1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
 1 s:C = US, O = DigiCert Inc, CN = DigiCert Global G2 TLS RSA SHA256 2020 CA1
   i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root G2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
 2 s:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root G2
   i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root G2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=C = US, ST = District of Columbia, L = Washington, O = CTIA-The Wireless Association, CN = ctia.org

issuer=C = US, O = DigiCert Inc, CN = DigiCert Global G2 TLS RSA SHA256 2020 CA1

---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 4476 bytes and written 383 bytes
Verification: OK
---
New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
---
DONE
---
Post-Handshake New Session Ticket arrived:
SSL-Session:
    Protocol  : TLSv1.3
    Cipher    : TLS_AES_128_GCM_SHA256
    Session-ID: B7755268B8494E04D0CA8BCA289C05CF61A22665ED8FB7C3DB4A02FA63E26109
    Session-ID-ctx: 
    Resumption PSK: BD9CD86DAF1AE5F56B4E13F0CA177C6279D3A1325D99263BE63A15A9B1D52984
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    TLS session ticket lifetime hint: 604800 (seconds)
    TLS session ticket:
    0000 - df ca d6 74 59 e2 cb 6c-46 63 95 9e c0 b9 fa 85   ...tY..lFc......
    0010 - db 40 d0 0c fd 9a ff 3c-da 7c 7e e6 c2 f6 9f bd   .@.....<.|~.....
    0020 - 27 a9 68 85 f0 c9 f5 d2-d5 2e 15 b8 e5 4f ff b6   '.h..........O..
    0030 - c7 01 fa 23 e5 01 cd 6e-13 d3 c7 6b 22 5c 86 ab   ...#...n...k"\..
    0040 - df 63 80 b7 bb 98 9f 5e-45 1b c0 2a 23 ce b5 4f   .c.....^E..*#..O
    0050 - 90 f7 5f 12 b5 b4 42 49-fa 6c 41 79 c4 84 cc 50   .._...BI.lAy...P
    0060 - 20 4b 6e c5 e8 22 96 f3-3c                         Kn.."..<

    Start Time: 1714121800
    Timeout   : 7200 (sec)
    Verify return code: 0 (ok)
    Extended master secret: no
    Max Early Data: 0
---
read R BLOCK