SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
| Hostname: | done Matches Common Name or/and SAN |
| Expired: | done No (69 days till expiration) |
| Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
| Trusted: | done Yes, we were able to verify the certificate |
| Self-Signed: | done No, the end-entity certificate is not self-signed |
| Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
| Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
| OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
| Resolves To: | 69.163.148.205 |
| Reverse IP lookup: | dp-03cde384e7.dreamhostps.com. |
| Nameserver: | ns-cloud-a3.googledomains.com. |
| Nameserver: | ns-cloud-a2.googledomains.com. |
| Nameserver: | ns-cloud-a1.googledomains.com. |
| Nameserver: | ns-cloud-a4.googledomains.com. |
General Information
| Common Name: | fsginspections.com |
| SANs: | DNS:fsginspections.comDNS:www.fsginspections.com Total number of SANs: 2 |
| Signature Algorithm: | sha256WithRSAEncryption |
| Key Type: | RSA |
| Key size: | 2048 bits |
| Serial Number: | 3b0e182801c326f5777a2a847b39bf6d11a |
| Not Before: | Dec 24, 2024 23:02:33 GMT |
| Not After: | Mar 24, 2025 23:02:32 GMT |
| Number of certs: | 2 |
| Revocation Status: | good |
| OCSP Stapling: | Supported |
| Server: | nginx |
| HSTS: | max-age=31536000; |
| HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: fsginspections.com
Decode this certificate for verbose information → launch| Subject Common Name | fsginspections.com |
| Issuer Common Name | R11 |
| Issuer Organization | Let's Encrypt |
| Not Before: | Dec 24, 2024 23:02:33 GMT |
| Not After: | Mar 24, 2025 23:02:32 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 3b0e182801c326f5777a2a847b39bf6d11a |
| SHA1 Fingerprint: | 78:66:51:67:B7:7F:34:03:57:6E:1A:B3:10:C6:19:74:15:A1:FB:AB |
| MD5 Fingerprint: | 86:EF:BB:9C:94:34:DB:9C:FD:17:1B:8D:76:78:32:7F |
Certificate # 2 - Common Name: R11
Decode this certificate for verbose information → launch| In place? | Yes, this certificate directly certifies the preceding one |
| Subject Common Name | R11 |
| Subject Organization | Let's Encrypt |
| Issuer Common Name | ISRG Root X1 |
| Issuer Organization | Internet Security Research Group |
| Not Before: | Mar 13, 2024 00:00:00 GMT |
| Not After: | Mar 12, 2027 23:59:59 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 8a7d3e13d62f30ef2386bd29076b34f8 |
| SHA1 Fingerprint: | 69:6D:B3:AF:0D:FF:C1:7E:65:C6:A2:0D:92:5C:5A:7B:D2:4D:EC:7E |
| MD5 Fingerprint: | 2F:AC:04:55:31:47:F4:6A:49:DF:9B:4E:BE:A6:DF:43 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1
verify return:1
depth=1 C = US, O = Let's Encrypt, CN = R11
verify return:1
depth=0 CN = fsginspections.com
verify return:1
CONNECTED(00000003)
OCSP response:
======================================
OCSP Response Data:
OCSP Response Status: successful (0x0)
Response Type: Basic OCSP Response
Version: 1 (0x0)
Responder Id: C = US, O = Let's Encrypt, CN = R11
Produced At: Jan 14 02:23:00 2025 GMT
Responses:
Certificate ID:
Hash Algorithm: sha1
Issuer Name Hash: 1A52B9B459E4C33398217E866D4BBD8A3BD667CE
Issuer Key Hash: 08B9113BA5D08518B4EA0FA0AD9F861E8EFC3827
Serial Number: 03B0E182801C326F5777A2A847B39BF6D11A
Cert Status: good
This Update: Jan 14 02:23:00 2025 GMT
Next Update: Jan 21 02:22:58 2025 GMT
Signature Algorithm: sha256WithRSAEncryption
30:a8:00:3e:98:2f:12:68:ed:7f:57:2b:c9:67:7f:e7:62:7e:
07:16:24:bd:5c:2f:00:fe:48:2e:4d:67:d6:0c:5f:bc:c6:d3:
bc:87:e6:09:f1:2d:b1:fc:fa:26:1b:ef:2f:13:b7:bb:4a:4e:
e6:ea:5f:db:5c:12:85:51:cd:63:f6:de:95:77:bd:2a:17:e8:
eb:5e:50:21:1f:96:3a:f3:6c:ce:25:de:84:f4:2b:ba:f2:82:
b4:85:81:26:57:95:da:7c:03:af:69:9f:29:ac:49:65:12:59:
9c:e1:0d:5c:97:30:9a:31:86:a0:50:c5:c1:1b:95:41:aa:00:
f6:c5:ce:91:59:4c:14:4c:af:54:b1:18:ec:3d:21:4b:2b:4b:
11:a5:46:e7:67:2b:db:33:cf:fb:df:d8:fe:fd:13:3e:c4:21:
ba:9f:2b:59:ae:ad:cd:07:ae:36:19:6f:8a:3a:32:41:65:2d:
16:ac:c6:f4:42:81:ed:45:4f:86:e4:6d:55:9b:f9:9f:fd:a3:
37:84:c1:81:9f:de:ab:03:06:b7:05:df:49:09:fb:df:26:ac:
61:04:c0:52:24:01:02:79:8f:f3:e9:8b:ba:72:a5:81:d9:4f:
94:70:e8:92:68:26:ed:75:e9:2b:aa:e3:f8:de:86:6a:bf:14:
94:f7:29:96
======================================
---
Certificate chain
0 s:CN = fsginspections.com
i:C = US, O = Let's Encrypt, CN = R11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
1 s:C = US, O = Let's Encrypt, CN = R11
i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=CN = fsginspections.com
issuer=C = US, O = Let's Encrypt, CN = R11
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3664 bytes and written 409 bytes
Verification: OK
---
New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
---
DONE