SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
| Hostname: | done Matches Common Name or/and SAN |
| Expired: | done No (60 days till expiration) |
| Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
| Trusted: | done Yes, we were able to verify the certificate |
| Self-Signed: | done No, the end-entity certificate is not self-signed |
| Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
| Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
| OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
| Resolves To: | 151.101.194.133 |
| Reverse IP lookup: | No records found |
| Nameserver: | ns-1057.awsdns-04.org. |
| Nameserver: | ns-1823.awsdns-35.co.uk. |
| Nameserver: | ns-251.awsdns-31.com. |
| Nameserver: | ns-592.awsdns-10.net. |
General Information
| Common Name: | *.grnh.se |
| SANs: | DNS:*.grnh.seDNS:b58206d7.uuid.grnh.seDNS:grnh.se Total number of SANs: 3 |
| Signature Algorithm: | sha256WithRSAEncryption |
| Key Type: | RSA |
| Key size: | 2048 bits |
| Serial Number: | 3aa98399eff4b9653cb88fada2c2daebf0a |
| Not Before: | Mar 26, 2024 12:25:41 GMT |
| Not After: | Jun 24, 2024 12:25:40 GMT |
| Number of certs: | 2 |
| Revocation Status: | good |
| OCSP Stapling: | Supported |
| Server: | Not Provided |
| HSTS: | max-age=31557600 |
| HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: *.grnh.se
Decode this certificate for verbose information → launch| Subject Common Name | *.grnh.se |
| Issuer Common Name | R3 |
| Issuer Organization | Let's Encrypt |
| Not Before: | Mar 26, 2024 12:25:41 GMT |
| Not After: | Jun 24, 2024 12:25:40 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 3aa98399eff4b9653cb88fada2c2daebf0a |
| SHA1 Fingerprint: | 02:69:49:17:9F:E0:2C:5F:A1:89:CC:2E:3C:C8:82:3F:C4:63:CC:EB |
| MD5 Fingerprint: | 30:98:92:97:CE:2E:F9:4E:B4:39:62:2F:CE:A2:38:44 |
Certificate # 2 - Common Name: R3
Decode this certificate for verbose information → launch| In place? | Yes, this certificate directly certifies the preceding one |
| Subject Common Name | R3 |
| Subject Organization | Let's Encrypt |
| Issuer Common Name | ISRG Root X1 |
| Issuer Organization | Internet Security Research Group |
| Not Before: | Sep 04, 2020 00:00:00 GMT |
| Not After: | Sep 15, 2025 16:00:00 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 912b084acf0c18a753f6d62e25a75f5a |
| SHA1 Fingerprint: | A0:53:37:5B:FE:84:E8:B7:48:78:2C:7C:EE:15:82:7A:6A:F5:A4:05 |
| MD5 Fingerprint: | E8:29:E6:5D:7C:43:07:D6:FB:C1:3C:17:9E:03:7A:36 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1
verify return:1
depth=1 C = US, O = Let's Encrypt, CN = R3
verify return:1
depth=0 CN = *.grnh.se
verify return:1
CONNECTED(00000003)
OCSP response:
======================================
OCSP Response Data:
OCSP Response Status: successful (0x0)
Response Type: Basic OCSP Response
Version: 1 (0x0)
Responder Id: C = US, O = Let's Encrypt, CN = R3
Produced At: Apr 20 15:56:00 2024 GMT
Responses:
Certificate ID:
Hash Algorithm: sha1
Issuer Name Hash: 48DAC9A0FB2BD32D4FF0DE68D2F567B735F9B3C4
Issuer Key Hash: 142EB317B75856CBAE500940E61FAF9D8B14C2C6
Serial Number: 03AA98399EFF4B9653CB88FADA2C2DAEBF0A
Cert Status: good
This Update: Apr 20 15:56:00 2024 GMT
Next Update: Apr 27 15:55:58 2024 GMT
Signature Algorithm: sha256WithRSAEncryption
2e:8a:d4:aa:d0:da:1c:66:6d:69:7f:7b:fb:71:66:b1:c8:9e:
da:d6:1a:ac:db:b1:6b:fd:ce:95:d4:90:8f:70:0e:d1:2e:ee:
d6:59:d7:79:c3:2a:ff:7e:32:e6:23:d1:04:ed:1f:46:9d:4f:
9c:55:96:8b:78:10:e7:cb:c7:49:5b:66:73:a7:ad:ad:e4:7e:
48:1c:5e:79:6e:99:8e:1b:54:df:98:65:b0:32:86:bd:5e:8b:
a9:72:e1:d9:ae:59:d2:91:f8:06:18:9e:a8:29:78:86:1f:eb:
d8:c5:5a:92:e5:33:15:c1:cb:34:67:d3:c6:55:f5:56:b9:fb:
8e:6d:53:3c:9a:86:a3:e0:0f:2c:cd:01:f1:5d:a2:37:8d:ef:
2d:15:74:46:04:64:4b:6a:2a:b2:dc:f9:83:f9:af:f8:74:2d:
95:96:cd:e4:9c:b5:8b:b2:01:b4:88:fe:c9:35:bd:2d:f3:20:
a1:4e:c3:98:cc:82:0b:a7:30:62:9b:5d:a2:c3:10:ef:18:14:
8a:de:fb:4e:cb:0e:60:e9:de:60:b6:8f:c8:2b:00:d1:2e:9f:
5b:af:9c:4d:ec:d2:b5:0e:13:01:d7:b6:a2:00:3c:9e:77:b7:
45:85:29:13:7e:54:ee:2d:1b:5b:de:d0:fe:3a:0f:4e:d7:18:
e4:d3:2f:7c
======================================
---
Certificate chain
0 s:CN = *.grnh.se
i:C = US, O = Let's Encrypt, CN = R3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
1 s:C = US, O = Let's Encrypt, CN = R3
i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=CN = *.grnh.se
issuer=C = US, O = Let's Encrypt, CN = R3
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3762 bytes and written 403 bytes
Verification: OK
---
New, TLSv1.2, Cipher is ECDHE-RSA-CHACHA20-POLY1305
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-RSA-CHACHA20-POLY1305
Session-ID: 3F456416BF06C984DBF10977BEAF447B789D7ECB426CD85BC298182CE846A531
Session-ID-ctx:
Master-Key: 4DA21A5CE05B7FC2A0ADA36D7C6AEF19D8C35F5774331462C4B70C60B7B86F53B175C7CD2395486CDBECB02C5E55E42C
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 7200 (seconds)
TLS session ticket:
0000 - 7c 0c cd 02 cc 50 2e e0-48 e1 8d 29 e6 99 15 57 |....P..H..)...W
0010 - 54 6a 4b fb 1a 38 f3 56-73 e9 9a 8d b6 fd 49 1e TjK..8.Vs.....I.
0020 - b2 5c ca 6f c4 e5 84 0d-6b 27 c4 cb bf 17 43 69 .\.o....k'....Ci
0030 - 69 db c6 43 18 77 73 16-55 02 87 7b 20 0c e2 b2 i..C.ws.U..{ ...
0040 - a5 35 4e 4d 3c f2 2f 78-1e 12 10 6e ba b3 63 cc .5NM<./x...n..c.
0050 - ff 88 98 83 e4 51 6f c8-7d df a8 4d be b0 b6 52 .....Qo.}..M...R
0060 - e3 f2 06 98 8b e4 3c 26-18 3c 71 fb d4 b9 5b 6a ......<&.<q...[j
0070 - eb d7 9e 3f ca e1 dd e5-df 39 59 06 93 8f e5 2a ...?.....9Y....*
0080 - cb e1 bd 74 34 27 84 2c-07 4e 75 c2 c6 72 13 ba ...t4'.,.Nu..r..
0090 - 9b 5f 3d 01 5e f4 e9 12-40 e2 c1 49 2c 5a 3f 2a ._=.^...@..I,Z?*
00a0 - 2d a9 0c d8 f3 e9 f9 f3-35 3a c4 54 85 0b 5d 26 -.......5:.T..]&
00b0 - e7 2c cd e8 78 07 4e 35-df f8 47 63 e2 8f 02 be .,..x.N5..Gc....
Start Time: 1714032692
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: yes
---
DONE