SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
Hostname: | done Matches Common Name or/and SAN |
Expired: | done No (72 days till expiration) |
Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
Trusted: | done Yes, we were able to verify the certificate |
Self-Signed: | done No, the end-entity certificate is not self-signed |
Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
CNAME: | veenker-hannover.dyndns.org. |
Resolves To: | 87.149.245.121 |
Reverse IP lookup: | p5795f579.dip0.t-ipconnect.de. |
Nameserver: | ns3.second-ns.de. |
Nameserver: | ns.second-ns.com. |
Nameserver: | ns1.your-server.de. |
General Information
Common Name: | *.veenkergmbh.de |
SANs: | DNS:*.intra.veenkergmbh.deDNS:*.veenkergmbh.de Total number of SANs: 2 |
Signature Algorithm: | sha256WithRSAEncryption |
Key Type: | RSA |
Key size: | 4096 bits |
Serial Number: | 338a05db47537a168e1922d86dc613701af |
Not Before: | Nov 19, 2024 22:02:35 GMT |
Not After: | Feb 17, 2025 22:02:34 GMT |
Number of certs: | 2 |
Revocation Status: | good |
OCSP Stapling: | Not Supported |
Server: | Apache/2.4.62 (Debian) |
HSTS: | max-age=15552000; includeSubDomains; preload |
HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: *.veenkergmbh.de
Decode this certificate for verbose information → launchSubject Common Name | *.veenkergmbh.de |
Issuer Common Name | R11 |
Issuer Organization | Let's Encrypt |
Not Before: | Nov 19, 2024 22:02:35 GMT |
Not After: | Feb 17, 2025 22:02:34 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 338a05db47537a168e1922d86dc613701af |
SHA1 Fingerprint: | 16:34:F4:A4:62:3C:7B:7D:6D:F3:C1:65:BC:CC:A4:38:E6:AA:F6:0C |
MD5 Fingerprint: | AD:1A:9A:D6:C5:45:05:F5:BA:41:C9:1A:D0:72:D7:F6 |
Certificate # 2 - Common Name: R11
Decode this certificate for verbose information → launchIn place? | Yes, this certificate directly certifies the preceding one |
Subject Common Name | R11 |
Subject Organization | Let's Encrypt |
Issuer Common Name | ISRG Root X1 |
Issuer Organization | Internet Security Research Group |
Not Before: | Mar 13, 2024 00:00:00 GMT |
Not After: | Mar 12, 2027 23:59:59 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 8a7d3e13d62f30ef2386bd29076b34f8 |
SHA1 Fingerprint: | 69:6D:B3:AF:0D:FF:C1:7E:65:C6:A2:0D:92:5C:5A:7B:D2:4D:EC:7E |
MD5 Fingerprint: | 2F:AC:04:55:31:47:F4:6A:49:DF:9B:4E:BE:A6:DF:43 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1 verify return:1 depth=1 C = US, O = Let's Encrypt, CN = R11 verify return:1 depth=0 CN = *.veenkergmbh.de verify return:1 CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = *.veenkergmbh.de i:C = US, O = Let's Encrypt, CN = R11 -----BEGIN CERTIFICATE----- MIIGBjCCBO6gAwIBAgISAzigXbR1N6Fo4ZIthtxhNwGvMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTEwHhcNMjQxMTE5MjIwMjM1WhcNMjUwMjE3MjIwMjM0WjAbMRkwFwYDVQQD DBAqLnZlZW5rZXJnbWJoLmRlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKC AgEAwpvwTezpRRmsnhQo2YPfKatkOzpDPyzeX72VkiK7hd4FHUQwNcbqdmTpyeIQ PVCnW5yd70PysOaX0mjNdaGQvHgWAB1wwBagG6iaNsJYIfIMVQDmLpf301tCeL04 hwD//7ej/PnZF9bjQQkRZU/Mez1JXrOyfXo7lCGP965qpPdSkWHwB6SLddibOLNl EK5mlTTXlLZsM88M8kCEvn3muLq1p+fg9uJZEiMwfJEk6jYPtbRU1UTWMAYucEf9 qUAtKtFdTIefqz8fOdbBawM30j4+Tw/nHXWOL/L6ltA8bgMPKkk4BGV2UICQB3bu n+IjwVmd9nMTDhG07Hz/pWBP/n2saj+oGm15KXjDd+uH+CzEMfbDMkglmHCk6vR3 9ZvvxaIIwcFeAge9/0NF8VqUv3D6xPb/HoTPCcGVxVYddTfVyA53XoQu8eV2j40N xxeQbLq6BdlZ5OklsNP6V6ehq7RPzaq7zHlB8x7ZGXocYFIn9paX+zpGCZwRrF78 lk14II2JWstZN+F+TXBamf1f0+tmpK10lXoxgd4bcf/gc2k0t7qtjn5iP6LleABr WwXC7e2nSZ/3QwKgJLvQxAhw9azqC/CaBhHVimA4OvLLWD/nOnuzfZYmPGnBMsn0 UhykeXYUB3Tq5pxlENvtbEVHBi3GZ3kYtRARAEyZMXlAItMCAwEAAaOCAiowggIm MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw DAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUgkqz0+sgSSlNPu69BVtvJupS2AUwHwYD VR0jBBgwFoAUxc9GpOr0w8B6bJXELbBeki8m47kwVwYIKwYBBQUHAQEESzBJMCIG CCsGAQUFBzABhhZodHRwOi8vcjExLm8ubGVuY3Iub3JnMCMGCCsGAQUFBzAChhdo dHRwOi8vcjExLmkubGVuY3Iub3JnLzAzBgNVHREELDAqghYqLmludHJhLnZlZW5r ZXJnbWJoLmRlghAqLnZlZW5rZXJnbWJoLmRlMBMGA1UdIAQMMAowCAYGZ4EMAQIB MIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADuAHUA4JKz/AwdyOdoNh/eYbmWTQpSeBmK ctZyxLBNpW1vVAQAAAGTRqh2BgAABAMARjBEAiB+js+uDGWqpL28Qh5ZU+zU91qx cQf5wEj42QS4/LHcqAIgWgy3xqErF+NQR3DnOE3K//1H3zeZ7ZlGopL8XmjpkrIA dQDPEVbu1S58r/OHW9lpLpvpGnFnSrAX7KwB0lt3zsw7CAAAAZNGqHYVAAAEAwBG MEQCIElspx3iD9zGuxhtvV0Mfh9L7/3kmFhiNNNwn53vlNBFAiANzRlHCkRZc1+n izvsxYWY3BLZDuR59ogJT1+ZL+r1VTANBgkqhkiG9w0BAQsFAAOCAQEACns3phY1 QYk3wpVl/FHWkjP63ySohMFL5/IJF9kxisl8iRpkm5sKWSThgcroAmxj16GKfZ7D gIbijrjCPgXYfS0G0GB7P2A4mW+MPn2AeYzur6g1ZvHLTAAeGggC93kRaY5WhvRz kRP59IuiVDG0nvrWjwXTDu4QOXhNgLSAWricb4OpH43duCpentnf5mza5LULO03s QfV1wbnMApjPwmX/q2vltZg/P0uBjQao5TD3vsJV5qRU5dn9OQIQEpR/mdwL+RWG icDrAk2qQtqmHqRQQpFxBWgffUUpaV6kGETkTFAx9ctawxF1/ej/Su3mN1gY2C+v d7WGy1rpt2ULFQ== -----END CERTIFICATE----- 1 s:C = US, O = Let's Encrypt, CN = R11 i:C = US, O = Internet Security Research Group, CN = ISRG Root X1 -----BEGIN CERTIFICATE----- MIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAw TzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2Vh cmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAw WhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3Mg RW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJ DAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxG AGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy 6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnw SVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLP Xzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIB hjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB /wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAU ebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAC hhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcG A1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcN AQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1y v4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE38 01S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1 e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtn UfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoV aneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+Z WghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/R PBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/q pdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo 6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjV uYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA -----END CERTIFICATE----- --- Server certificate subject=CN = *.veenkergmbh.de issuer=C = US, O = Let's Encrypt, CN = R11 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 3657 bytes and written 415 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 4096 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) --- DONE