SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
Hostname: | done Matches Common Name or/and SAN |
Expired: | done No (60 days till expiration) |
Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
Trusted: | done Yes, we were able to verify the certificate |
Self-Signed: | done No, the end-entity certificate is not self-signed |
Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
Resolves To: | 151.101.194.133 |
Reverse IP lookup: | No records found |
Nameserver: | ns-1057.awsdns-04.org. |
Nameserver: | ns-1823.awsdns-35.co.uk. |
Nameserver: | ns-251.awsdns-31.com. |
Nameserver: | ns-592.awsdns-10.net. |
General Information
Common Name: | *.grnh.se |
SANs: | DNS:*.grnh.seDNS:b58206d7.uuid.grnh.seDNS:grnh.se Total number of SANs: 3 |
Signature Algorithm: | sha256WithRSAEncryption |
Key Type: | RSA |
Key size: | 2048 bits |
Serial Number: | 3aa98399eff4b9653cb88fada2c2daebf0a |
Not Before: | Mar 26, 2024 12:25:41 GMT |
Not After: | Jun 24, 2024 12:25:40 GMT |
Number of certs: | 2 |
Revocation Status: | good |
OCSP Stapling: | Supported |
Server: | Not Provided |
HSTS: | max-age=31557600 |
HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: *.grnh.se
Decode this certificate for verbose information → launchSubject Common Name | *.grnh.se |
Issuer Common Name | R3 |
Issuer Organization | Let's Encrypt |
Not Before: | Mar 26, 2024 12:25:41 GMT |
Not After: | Jun 24, 2024 12:25:40 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 3aa98399eff4b9653cb88fada2c2daebf0a |
SHA1 Fingerprint: | 02:69:49:17:9F:E0:2C:5F:A1:89:CC:2E:3C:C8:82:3F:C4:63:CC:EB |
MD5 Fingerprint: | 30:98:92:97:CE:2E:F9:4E:B4:39:62:2F:CE:A2:38:44 |
Certificate # 2 - Common Name: R3
Decode this certificate for verbose information → launchIn place? | Yes, this certificate directly certifies the preceding one |
Subject Common Name | R3 |
Subject Organization | Let's Encrypt |
Issuer Common Name | ISRG Root X1 |
Issuer Organization | Internet Security Research Group |
Not Before: | Sep 04, 2020 00:00:00 GMT |
Not After: | Sep 15, 2025 16:00:00 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 912b084acf0c18a753f6d62e25a75f5a |
SHA1 Fingerprint: | A0:53:37:5B:FE:84:E8:B7:48:78:2C:7C:EE:15:82:7A:6A:F5:A4:05 |
MD5 Fingerprint: | E8:29:E6:5D:7C:43:07:D6:FB:C1:3C:17:9E:03:7A:36 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1 verify return:1 depth=1 C = US, O = Let's Encrypt, CN = R3 verify return:1 depth=0 CN = *.grnh.se verify return:1 CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: C = US, O = Let's Encrypt, CN = R3 Produced At: Apr 20 15:56:00 2024 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: 48DAC9A0FB2BD32D4FF0DE68D2F567B735F9B3C4 Issuer Key Hash: 142EB317B75856CBAE500940E61FAF9D8B14C2C6 Serial Number: 03AA98399EFF4B9653CB88FADA2C2DAEBF0A Cert Status: good This Update: Apr 20 15:56:00 2024 GMT Next Update: Apr 27 15:55:58 2024 GMT Signature Algorithm: sha256WithRSAEncryption 2e:8a:d4:aa:d0:da:1c:66:6d:69:7f:7b:fb:71:66:b1:c8:9e: da:d6:1a:ac:db:b1:6b:fd:ce:95:d4:90:8f:70:0e:d1:2e:ee: d6:59:d7:79:c3:2a:ff:7e:32:e6:23:d1:04:ed:1f:46:9d:4f: 9c:55:96:8b:78:10:e7:cb:c7:49:5b:66:73:a7:ad:ad:e4:7e: 48:1c:5e:79:6e:99:8e:1b:54:df:98:65:b0:32:86:bd:5e:8b: a9:72:e1:d9:ae:59:d2:91:f8:06:18:9e:a8:29:78:86:1f:eb: d8:c5:5a:92:e5:33:15:c1:cb:34:67:d3:c6:55:f5:56:b9:fb: 8e:6d:53:3c:9a:86:a3:e0:0f:2c:cd:01:f1:5d:a2:37:8d:ef: 2d:15:74:46:04:64:4b:6a:2a:b2:dc:f9:83:f9:af:f8:74:2d: 95:96:cd:e4:9c:b5:8b:b2:01:b4:88:fe:c9:35:bd:2d:f3:20: a1:4e:c3:98:cc:82:0b:a7:30:62:9b:5d:a2:c3:10:ef:18:14: 8a:de:fb:4e:cb:0e:60:e9:de:60:b6:8f:c8:2b:00:d1:2e:9f: 5b:af:9c:4d:ec:d2:b5:0e:13:01:d7:b6:a2:00:3c:9e:77:b7: 45:85:29:13:7e:54:ee:2d:1b:5b:de:d0:fe:3a:0f:4e:d7:18: e4:d3:2f:7c ====================================== --- Certificate chain 0 s:CN = *.grnh.se i:C = US, O = Let's Encrypt, CN = R3 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISA6qYOZ7/S5ZTy4j62iwtrr8KMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjYxMjI1NDFaFw0yNDA2MjQxMjI1NDBaMBQxEjAQBgNVBAMM CSouZ3JuaC5zZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMikNf8K mycu7DByFCWir4MgqYkOF0+yIwMdxc1fFo9Yp8gDKqylPeFR0FDCVSAqP4AZc11Y TzraldD20fYWLPA5fNbrW3boslC5iRqDBBPf3AwewAciT73fZTmGyRv0Lg4/N/av X7LYxUn9NpUJXR5WlbqbrUMgzEUqjojn41HFW203XCOG1xG3+dn4KnHqLInMrEjy LWvsnOEuSwyBhxiLZvB8yfw8DQe8kaAt0RUsj8NoZfMbQhFKBBICYGvD3gy+xDSb kDhEo9NfEn/kq7+3YsABYU1hOvoXgyHJ7WpxAa75TpELPoSnEMMyPD+hF8b2x6Oy PcaTRGFhtY9NF/kCAwEAAaOCAiowggImMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU qwZBwj+f4ak9KjjVfT8YxsfzM8swHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+v nYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5s ZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wNAYD VR0RBC0wK4IJKi5ncm5oLnNlghViNTgyMDZkNy51dWlkLmdybmguc2WCB2dybmgu c2UwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8A dQA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAY568CMxAAAEAwBG MEQCICjblAP1gByLvFpt1VpkTY/PfTmVTQcWlSyOVnoEDQ5DAiBBxk0mv/xwnxHy bd8jgdhOqRL+N22qSc/ogKl9K0mu4AB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0s gdm7v6s52IRzAAABjnrwIyoAAAQDAEcwRQIgDS/9e2K50A+hYG1Zjq1ehfq6ohRD bcmw2NOcolo68i8CIQDzrdt6mhL79Hzp0l0siK9hlpNAzWhDLOm8NZYi23sdmzAN BgkqhkiG9w0BAQsFAAOCAQEAjAXtd4t5TRlrFEHjQ8XHPRlwCsvSqxZIqZPMkSYL HBl6UsCP7ydM/n//iHFFKL6mXe8lTAk4YTCnu9GfLidZ+4y5IAXxteIogm85hAqw zWbDzX8jOJIZZdMNW3KXPXr/Tre7bryazZLH2K+C+vA2Sxq9kAM4Fl47JYwlgVB2 YEA2ZUmLkVDfkzx+ICo0+dt3rNTzxDmr2ZjUvm7UIxMBqwthfx90LI2MNj8Aj4zE DXK+d+AaRg8cwaMgvLRFAleUGQ4aegKf7FUOC63c1b2+rKZND7bcLjUbQVg8aPlP hf8DmfjjmlAULxRc70hS0WphwGiOX6l4yMtLYOZD6oVAeg== -----END CERTIFICATE----- 1 s:C = US, O = Let's Encrypt, CN = R3 i:C = US, O = Internet Security Research Group, CN = ISRG Root X1 -----BEGIN CERTIFICATE----- MIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAw TzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2Vh cmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAw WhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3Mg RW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cP R5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdx sxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8Zutm NHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxg Z3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG /kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMC AYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYB Af8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaA FHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcw AoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRw Oi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQB gt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6W PTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wl ikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQz CkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BIm lJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4 avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2 yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1O yK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90Ids hCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+ HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6Zv MldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqX nLRbwHOoq7hHwg== -----END CERTIFICATE----- --- Server certificate subject=CN = *.grnh.se issuer=C = US, O = Let's Encrypt, CN = R3 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 3762 bytes and written 403 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-CHACHA20-POLY1305 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-CHACHA20-POLY1305 Session-ID: 3F456416BF06C984DBF10977BEAF447B789D7ECB426CD85BC298182CE846A531 Session-ID-ctx: Master-Key: 4DA21A5CE05B7FC2A0ADA36D7C6AEF19D8C35F5774331462C4B70C60B7B86F53B175C7CD2395486CDBECB02C5E55E42C PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 7200 (seconds) TLS session ticket: 0000 - 7c 0c cd 02 cc 50 2e e0-48 e1 8d 29 e6 99 15 57 |....P..H..)...W 0010 - 54 6a 4b fb 1a 38 f3 56-73 e9 9a 8d b6 fd 49 1e TjK..8.Vs.....I. 0020 - b2 5c ca 6f c4 e5 84 0d-6b 27 c4 cb bf 17 43 69 .\.o....k'....Ci 0030 - 69 db c6 43 18 77 73 16-55 02 87 7b 20 0c e2 b2 i..C.ws.U..{ ... 0040 - a5 35 4e 4d 3c f2 2f 78-1e 12 10 6e ba b3 63 cc .5NM<./x...n..c. 0050 - ff 88 98 83 e4 51 6f c8-7d df a8 4d be b0 b6 52 .....Qo.}..M...R 0060 - e3 f2 06 98 8b e4 3c 26-18 3c 71 fb d4 b9 5b 6a ......<&.<q...[j 0070 - eb d7 9e 3f ca e1 dd e5-df 39 59 06 93 8f e5 2a ...?.....9Y....* 0080 - cb e1 bd 74 34 27 84 2c-07 4e 75 c2 c6 72 13 ba ...t4'.,.Nu..r.. 0090 - 9b 5f 3d 01 5e f4 e9 12-40 e2 c1 49 2c 5a 3f 2a ._=.^...@..I,Z?* 00a0 - 2d a9 0c d8 f3 e9 f9 f3-35 3a c4 54 85 0b 5d 26 -.......5:.T..]& 00b0 - e7 2c cd e8 78 07 4e 35-df f8 47 63 e2 8f 02 be .,..x.N5..Gc.... Start Time: 1714032692 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes --- DONE