SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
Hostname: | done Matches Common Name or/and SAN |
Expired: | done No (76 days till expiration) |
Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
Trusted: | done Yes, we were able to verify the certificate |
Self-Signed: | done No, the end-entity certificate is not self-signed |
Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
Resolves To: | 85.215.123.144 |
Reverse IP lookup: | No records found |
Nameserver: | ns01.one.com. |
Nameserver: | ns02.one.com. |
General Information
Common Name: | hive.buckfast-bayern.de |
SANs: | DNS:hive.buckfast-bayern.de Total number of SANs: 1 |
Signature Algorithm: | ecdsa-with-SHA384 |
Key Type: | ECDSA (secp256r1) |
Key size: | 256 bits |
Serial Number: | 304d69b9b74b757b95896ab546e64952237 |
Not Before: | Jul 13, 2024 15:33:35 GMT |
Not After: | Oct 11, 2024 15:33:34 GMT |
Number of certs: | 2 |
Revocation Status: | good |
OCSP Stapling: | Not Supported |
Server: | nginx/1.18.0 (Ubuntu) |
HSTS: | Not Supported |
HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: hive.buckfast-bayern.de
Decode this certificate for verbose information → launchSubject Common Name | hive.buckfast-bayern.de |
Issuer Common Name | E6 |
Issuer Organization | Let's Encrypt |
Not Before: | Jul 13, 2024 15:33:35 GMT |
Not After: | Oct 11, 2024 15:33:34 GMT |
Signature Algorithm: | ecdsa-with-SHA384 |
Serial Number: | 304d69b9b74b757b95896ab546e64952237 |
SHA1 Fingerprint: | 1D:B8:88:A7:8B:15:56:D3:51:F1:E3:30:C1:B1:D2:4D:BC:2D:C9:7B |
MD5 Fingerprint: | CF:37:9E:5C:53:33:DC:FE:A6:97:F9:BC:66:9A:44:F0 |
Certificate # 2 - Common Name: E6
Decode this certificate for verbose information → launchIn place? | Yes, this certificate directly certifies the preceding one |
Subject Common Name | E6 |
Subject Organization | Let's Encrypt |
Issuer Common Name | ISRG Root X1 |
Issuer Organization | Internet Security Research Group |
Not Before: | Mar 13, 2024 00:00:00 GMT |
Not After: | Mar 12, 2027 23:59:59 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | b0573e9173972770dbb487cb3a452b38 |
SHA1 Fingerprint: | C9:4D:C4:83:1A:90:1A:9F:EC:0F:B4:9B:71:BD:49:B5:AA:D4:FA:D0 |
MD5 Fingerprint: | 26:86:4C:28:A4:DE:37:F5:69:C1:EC:87:A0:EC:CB:27 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1 verify return:1 depth=1 C = US, O = Let's Encrypt, CN = E6 verify return:1 depth=0 CN = hive.buckfast-bayern.de verify return:1 CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = hive.buckfast-bayern.de i:C = US, O = Let's Encrypt, CN = E6 -----BEGIN CERTIFICATE----- MIIDjTCCAxSgAwIBAgISAwTWm5t0t1e5WJarVG5klSI3MAoGCCqGSM49BAMDMDIx CzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJF NjAeFw0yNDA3MTMxNTMzMzVaFw0yNDEwMTExNTMzMzRaMCIxIDAeBgNVBAMTF2hp dmUuYnVja2Zhc3QtYmF5ZXJuLmRlMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE 8AcYNu5aq7LL1FKRgf3lMO+ScfQ0nkjn4f32dITRIJ8hNV/jL++NqvV2GoY0irYO 21GuNVR+Iw389iPvwHcZZKOCAhgwggIUMA4GA1UdDwEB/wQEAwIHgDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU dpcifzGstUG/b7AmvJNPDQg34UMwHwYDVR0jBBgwFoAUkydGmAOpUWiOmNbEQkjb I79YlNIwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vZTYuby5s ZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9lNi5pLmxlbmNyLm9yZy8wIgYD VR0RBBswGYIXaGl2ZS5idWNrZmFzdC1iYXllcm4uZGUwEwYDVR0gBAwwCjAIBgZn gQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQAZmBBxCfDWUi4wgNKeP2S7 g24ozPkPUo7u385KPxa0ygAAAZCs8VZdAAAEAwBGMEQCICrcE/bBmjPSvu5FdeUi +T6PnoQYIDjioRkiOVFiQluMAiBC3VHl82+ryp0GyZtSMjko/CygWiq3rl13/i44 3wGQXwB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABkKzxVpgA AAQDAEcwRQIhAK8WSoEHSJ6puWmhSaQywNGHmRZReu+n84H+AooTZweDAiBhmaUc yKJ+hdff0ixsE9IRTl/zs4eZ0DGeOIf1vX9F+zAKBggqhkjOPQQDAwNnADBkAjA9 huvkH4ffqcsIrz6Y5tA67ktDiaIqt9FMA0eCb9TSbcPjX8AYTqpCwO9YrJ/KgAcC MDzZIeTd1IhbXqb3TlnWRcufHnF7ohAT8dO0M84qJmOSGKniyUee8GiuaYuK14w6 7w== -----END CERTIFICATE----- 1 s:C = US, O = Let's Encrypt, CN = E6 i:C = US, O = Internet Security Research Group, CN = ISRG Root X1 -----BEGIN CERTIFICATE----- MIIEVzCCAj+gAwIBAgIRALBXPpFzlydw27SHyzpFKzgwDQYJKoZIhvcNAQELBQAw TzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2Vh cmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAw WhcNMjcwMzEyMjM1OTU5WjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3Mg RW5jcnlwdDELMAkGA1UEAxMCRTYwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAATZ8Z5G h/ghcWCoJuuj+rnq2h25EqfUJtlRFLFhfHWWvyILOR/VvtEKRqotPEoJhC6+QJVV 6RlAN2Z17TJOdwRJ+HB7wxjnzvdxEP6sdNgA1O1tHHMWMxCcOrLqbGL0vbijgfgw gfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcD ATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBSTJ0aYA6lRaI6Y1sRCSNsj v1iU0jAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcB AQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0g BAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVu Y3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAfYt7SiA1sgWGCIpunk46r4AExIRc MxkKgUhNlrrv1B21hOaXN/5miE+LOTbrcmU/M9yvC6MVY730GNFoL8IhJ8j8vrOL pMY22OP6baS1k9YMrtDTlwJHoGby04ThTUeBDksS9RiuHvicZqBedQdIF65pZuhp eDcGBcLiYasQr/EO5gxxtLyTmgsHSOVSBcFOn9lgv7LECPq9i7mfH3mpxgrRKSxH pOoZ0KXMcB+hHuvlklHntvcI0mMMQ0mhYj6qtMFStkF1RpCG3IPdIwpVCQqu8GV7 s8ubknRzs+3C/Bm19RFOoiPpDkwvyNfvmQ14XkyqqKK5oZ8zhD32kFRQkxa8uZSu h4aTImFxknu39waBxIRXE4jKxlAmQc4QjFZoq1KmQqQg0J/1JF8RlFvJas1VcjLv YlvUB2t6npO6oQjB3l+PNf0DpQH7iUx3Wz5AjQCi6L25FjyE06q6BZ/QlmtYdl/8 ZYao4SRqPEs/6cAiF+Qf5zg2UkaWtDphl1LKMuTNLotvsX99HP69V2faNyegodQ0 LyTApr/vT01YPE46vNsDLgK+4cL6TrzC/a4WcmF5SRJ938zrv/duJHLXQIku5v0+ EwOy59Hdm0PT/Er/84dDV0CSjdR/2XuZM3kpysSKLgD1cKiDA+IRguODCxfO9cyY Ig46v9mFmBvyH04= -----END CERTIFICATE----- --- Server certificate subject=CN = hive.buckfast-bayern.de issuer=C = US, O = Let's Encrypt, CN = E6 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 2407 bytes and written 414 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) --- DONE