SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
| Hostname: | done Matches Common Name or/and SAN |
| Expired: | done No (77 days till expiration) |
| Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
| Trusted: | done Yes, we were able to verify the certificate |
| Self-Signed: | done No, the end-entity certificate is not self-signed |
| Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
| Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
| OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
| CNAME: | elb1.jellyfin.org. |
| Resolves To: | 68.183.204.194 |
| Reverse IP lookup: | elb1.jellyfin.org. |
| Nameserver: | ns-65-c.gandi.net. |
| Nameserver: | ns-195-a.gandi.net. |
| Nameserver: | ns-163-b.gandi.net. |
General Information
| Common Name: | elb1.jellyfin.org |
| SANs: | DNS:api.jellyfin.orgDNS:apps.jellyfin.orgDNS:demo.jellyfin.orgDNS:docs.jellyfin.orgDNS:elb1.jellyfin.orgDNS:features.jellyfin.orgDNS:forum.jellyfin.orgDNS:forums.jellyfin.orgDNS:kodi.jellyfin.orgDNS:notes.jellyfin.orgDNS:oauth.jellyfin.orgDNS:repo.jellyfin.orgDNS:static.jellyfin.orgDNS:translate.jellyfin.org Total number of SANs: 14 |
| Signature Algorithm: | sha256WithRSAEncryption |
| Key Type: | RSA |
| Key size: | 2048 bits |
| Serial Number: | 4fb665796910e45eb03f8783080eb663840 |
| Not Before: | Nov 07, 2024 05:05:57 GMT |
| Not After: | Feb 05, 2025 05:05:56 GMT |
| Number of certs: | 2 |
| Revocation Status: | good |
| OCSP Stapling: | Not Supported |
| Server: | Kestrel |
| HSTS: | max-age=31536000;includeSubDomains;preload |
| HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: elb1.jellyfin.org
Decode this certificate for verbose information → launch| Subject Common Name | elb1.jellyfin.org |
| Issuer Common Name | R10 |
| Issuer Organization | Let's Encrypt |
| Not Before: | Nov 07, 2024 05:05:57 GMT |
| Not After: | Feb 05, 2025 05:05:56 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 4fb665796910e45eb03f8783080eb663840 |
| SHA1 Fingerprint: | BB:6D:8C:B7:A3:9C:40:B2:71:D4:37:3A:4B:09:51:46:40:C1:C4:84 |
| MD5 Fingerprint: | FA:BD:85:53:76:A1:01:74:F2:60:14:70:1B:F8:0B:FE |
Certificate # 2 - Common Name: R10
Decode this certificate for verbose information → launch| In place? | Yes, this certificate directly certifies the preceding one |
| Subject Common Name | R10 |
| Subject Organization | Let's Encrypt |
| Issuer Common Name | ISRG Root X1 |
| Issuer Organization | Internet Security Research Group |
| Not Before: | Mar 13, 2024 00:00:00 GMT |
| Not After: | Mar 12, 2027 23:59:59 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 4ba85293f79a2fa273064ba8048d75d0 |
| SHA1 Fingerprint: | 00:AB:EF:D0:55:F9:A9:C7:84:FF:DE:AB:D1:DC:DD:8F:ED:74:14:36 |
| MD5 Fingerprint: | AF:1C:77:AE:CC:8D:77:E9:AA:CB:0C:47:58:40:C3:92 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1 verify return:1 depth=1 C = US, O = Let's Encrypt, CN = R10 verify return:1 depth=0 CN = elb1.jellyfin.org verify return:1 CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = elb1.jellyfin.org i:C = US, O = Let's Encrypt, CN = R10 -----BEGIN CERTIFICATE----- MIIF/jCCBOagAwIBAgISBPtmV5aRDkXrA/h4MIDrZjhAMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTAwHhcNMjQxMTA3MDUwNTU3WhcNMjUwMjA1MDUwNTU2WjAcMRowGAYDVQQD ExFlbGIxLmplbGx5ZmluLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJK6uiJdRcTzyzKeXUz/f28ttznhgbjge5QS4oLjX4TpDwROojZr0z+js+Bx tswBagw9N7FdliHX/XcE2FDSMHnbS2T8l4LCQsL94EhyVMALNmLft+3ch6/x11KO z1FVlsxrpXQS5AG/7M/slAXnGETZJ3n0R+GzLuczJr8mj9IdFR+qWyPhTWCvwAag QccTmeqleZUeEk2KFd/PBRSMfMc8d76D5+FJNhCUp22ooANtlQm2TKLXOSeKLlIT eDnWBnQ6M+1iDBtuf9rYWYD+8IqwEFVhT42QN0RDvDmLkD95k2Likl06l4NWBw7+ utxa/BZvj7RMaEO/rvkPHhboPEUCAwEAAaOCAyEwggMdMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQUE9ckvo5fU+4di1VW/qEaNxE4kcAwHwYDVR0jBBgwFoAUu7zDR6Xk vKnGw6RyDBCNojXhyOgwVwYIKwYBBQUHAQEESzBJMCIGCCsGAQUFBzABhhZodHRw Oi8vcjEwLm8ubGVuY3Iub3JnMCMGCCsGAQUFBzAChhdodHRwOi8vcjEwLmkubGVu Y3Iub3JnLzCCASYGA1UdEQSCAR0wggEZghBhcGkuamVsbHlmaW4ub3JnghFhcHBz LmplbGx5ZmluLm9yZ4IRZGVtby5qZWxseWZpbi5vcmeCEWRvY3MuamVsbHlmaW4u b3JnghFlbGIxLmplbGx5ZmluLm9yZ4IVZmVhdHVyZXMuamVsbHlmaW4ub3JnghJm b3J1bS5qZWxseWZpbi5vcmeCE2ZvcnVtcy5qZWxseWZpbi5vcmeCEWtvZGkuamVs bHlmaW4ub3JnghJub3Rlcy5qZWxseWZpbi5vcmeCEm9hdXRoLmplbGx5ZmluLm9y Z4IRcmVwby5qZWxseWZpbi5vcmeCE3N0YXRpYy5qZWxseWZpbi5vcmeCFnRyYW5z bGF0ZS5qZWxseWZpbi5vcmcwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEE AdZ5AgQCBIH1BIHyAPAAdgDPEVbu1S58r/OHW9lpLpvpGnFnSrAX7KwB0lt3zsw7 CAAAAZMFOWV6AAAEAwBHMEUCIQDUf9EW9qFsWO0BpaBf41nogZw51r0qLferM71u QAXRAAIgSACfcjznLrA9N2uu23zu9mJWo7PEZwfDT+3icUcUQlcAdgDgkrP8DB3I 52g2H95huZZNClJ4GYpy1nLEsE2lbW9UBAAAAZMFOWVLAAAEAwBHMEUCIHM8fAX0 4GMdg50xuso6eyqHwvJTpo0+HGNAHHbop4w1AiEAj5wSJYy1eQUFsTAB29BK5C2P uRQ65ib22KNwRhbo9nIwDQYJKoZIhvcNAQELBQADggEBAGHPDgGjyVyjkb1qez/c q3prBzQLFOpXQb1opiCtHaBicvf6+rn2w85wSOiNgq/HkDRev2waIOsBzOy4TBAh 2TC296NW9DNIjPENxIGbofZ9yqDP6I8NrVNxa15ej/6mXkl5PnYseTnzJk0b+ciI trkBSr28ucgCugWkAmVm1MgJj/hBxcnmhDoIl9bnYNi/pTb/AObVK7qn7JbkIUnz 5L3SsophmWWATLTVasrmtNV1DenHO+Sjq+qke5u7PkblE+/UC+9OB83j6YqJCWtM t9zrSFpmpLCct6/N1csAlmDlSWudYZ5cnWWAPA42lAHh3haxcDY4dkc8/idFUFvm uY4= -----END CERTIFICATE----- 1 s:C = US, O = Let's Encrypt, CN = R10 i:C = US, O = Internet Security Research Group, CN = ISRG Root X1 -----BEGIN CERTIFICATE----- MIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFy Y2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBa Fw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBF bmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFL YlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a /6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4 FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KR mudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3 DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGG MB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/ AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5 tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKG Fmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYD VR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0B AQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIo zwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfd u6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p9 1n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0 GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh 1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZ QjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N 4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyz rsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2Ei RmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLx KPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54= -----END CERTIFICATE----- --- Server certificate subject=CN = elb1.jellyfin.org issuer=C = US, O = Let's Encrypt, CN = R10 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 3392 bytes and written 408 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) --- DONE