SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
Hostname: | done Matches Common Name or/and SAN |
Expired: | done No (200 days till expiration) |
Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
Trusted: | close We were unable to verify this certificate |
Self-Signed: | done No, the end-entity certificate is not self-signed |
Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
Resolves To: | 89.208.236.251 |
Reverse IP lookup: | No records found |
Nameserver: | ns.hotlog.ru. |
Nameserver: | ns2.hotlog.ru. |
General Information
Common Name: | *.hotlog.ru |
SANs: | DNS:*.hotlog.ruDNS:hotlog.ru Total number of SANs: 2 |
Signature Algorithm: | sha256WithRSAEncryption |
Key Type: | RSA |
Key size: | 2048 bits |
Serial Number: | 311fff6b4cbb3931bd1be211 |
Not Before: | Sep 13, 2023 14:24:26 GMT |
Not After: | Oct 14, 2024 14:24:25 GMT |
Number of certs: | 3 |
Revocation Status: | good |
OCSP Stapling: | Not Supported |
Server: | nginx/1.14.2 |
HSTS: | Not Supported |
HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: *.hotlog.ru
Decode this certificate for verbose information → launchSubject Common Name | *.hotlog.ru |
Issuer Common Name | GlobalSign GCC R3 DV TLS CA 2020 |
Issuer Organization | GlobalSign nv-sa |
Not Before: | Sep 13, 2023 14:24:26 GMT |
Not After: | Oct 14, 2024 14:24:25 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 311fff6b4cbb3931bd1be211 |
SHA1 Fingerprint: | B7:4A:5F:4D:E3:FC:C1:06:D8:85:08:19:3F:37:BB:68:5D:8E:B4:68 |
MD5 Fingerprint: | 09:1C:AF:4D:B0:D5:DB:DB:3C:AF:52:B1:E9:3C:FD:C8 |
Certificate # 2 - Common Name: GlobalSign GCC R3 DV TLS CA 2020
Decode this certificate for verbose information → launchIn place? | Yes, this certificate directly certifies the preceding one |
Subject Common Name | GlobalSign GCC R3 DV TLS CA 2020 |
Subject Organization | GlobalSign nv-sa |
Issuer Common Name | GlobalSign |
Issuer Organization | GlobalSign |
Not Before: | Jul 28, 2020 00:00:00 GMT |
Not After: | Mar 18, 2029 00:00:00 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 77bd0e0742d5d9e9d049d774d02a6f9a |
SHA1 Fingerprint: | 1C:61:0A:0A:87:D4:92:F4:83:22:C2:AF:D3:BE:9B:6A:D3:6B:6B:EE |
MD5 Fingerprint: | A6:E7:E3:48:48:27:FD:C4:E0:C9:16:5B:AA:82:C7:4C |
Certificate # 3 - Common Name: GlobalSign
Decode this certificate for verbose information → launchIn place? | Yes, this certificate directly certifies the preceding one |
Subject Common Name | GlobalSign |
Subject Organization | GlobalSign |
Issuer Common Name | GlobalSign |
Issuer Organization | GlobalSign |
Not Before: | Mar 18, 2009 10:00:00 GMT |
Not After: | Mar 18, 2029 10:00:00 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 4000000000121585308a2 |
SHA1 Fingerprint: | D6:9B:56:11:48:F0:1C:77:C5:45:78:C1:09:26:DF:5B:85:69:76:AD |
MD5 Fingerprint: | C5:DF:B8:49:CA:05:13:55:EE:2D:BA:1A:C3:3E:B0:28 |
OpenSSL Handshake
depth=2 OU = GlobalSign Root CA - R3, O = GlobalSign, CN = GlobalSign verify error:num=19:self signed certificate in certificate chain verify return:1 depth=2 OU = GlobalSign Root CA - R3, O = GlobalSign, CN = GlobalSign verify return:1 depth=1 C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R3 DV TLS CA 2020 verify return:1 depth=0 CN = *.hotlog.ru verify return:1 CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = *.hotlog.ru i:C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R3 DV TLS CA 2020 -----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgIMMR//a0y7OTG9G+IRMA0GCSqGSIb3DQEBCwUAMFMxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSkwJwYDVQQDEyBH bG9iYWxTaWduIEdDQyBSMyBEViBUTFMgQ0EgMjAyMDAeFw0yMzA5MTMxNDI0MjZa Fw0yNDEwMTQxNDI0MjVaMBYxFDASBgNVBAMMCyouaG90bG9nLnJ1MIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuLg5wutZ+u5HR4LhxEaMX+LoiNHt+8pS yJ4v0uf3bCy2xSBy7b+1WCKJIszQPXkIw45rR5DQA9htnnzTcXEWt60nKMBQlm92 /8aYjeN8jF7YLg4mo86TxcNfFjFUuRTm67iXgC97lbW2BizUmvIo2Kuyw4cres95 LoWWKnQ4Jm/xtJuqMbJG5AhaHiWH58d3tukQ0Kc+o6mT0AEe7voD/BfRLKW8nA2u jLhZ9t1zgYd7NdEUm+as0ylsZo+Dsb7YnSStzBtCl3cMZlgu06qw/YKYKgYQV/CR GahRfR4V2uLplbPYY5nKlnCW197IcWu/mL4SdW5/j5U05UJMgfbrKQIDAQABo4ID WDCCA1QwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwgZMGCCsGAQUFBwEB BIGGMIGDMEYGCCsGAQUFBzAChjpodHRwOi8vc2VjdXJlLmdsb2JhbHNpZ24uY29t L2NhY2VydC9nc2djY3IzZHZ0bHNjYTIwMjAuY3J0MDkGCCsGAQUFBzABhi1odHRw Oi8vb2NzcC5nbG9iYWxzaWduLmNvbS9nc2djY3IzZHZ0bHNjYTIwMjAwVgYDVR0g BE8wTTBBBgkrBgEEAaAyAQowNDAyBggrBgEFBQcCARYmaHR0cHM6Ly93d3cuZ2xv YmFsc2lnbi5jb20vcmVwb3NpdG9yeS8wCAYGZ4EMAQIBMEEGA1UdHwQ6MDgwNqA0 oDKGMGh0dHA6Ly9jcmwuZ2xvYmFsc2lnbi5jb20vZ3NnY2NyM2R2dGxzY2EyMDIw LmNybDAhBgNVHREEGjAYggsqLmhvdGxvZy5ydYIJaG90bG9nLnJ1MB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAfBgNVHSMEGDAWgBQNmMBzf6u9vdlHS0mt CkoMrD7HfDAdBgNVHQ4EFgQU+OtpdOS5ht7SP2Xw5BTKiM0ox3YwggF/BgorBgEE AdZ5AgQCBIIBbwSCAWsBaQB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s5 2IRzAAABio7t2/oAAAQDAEgwRgIhALo4JFd0/bsOFv3qrhZyVKQ7stZmqypyu2C2 Snl74JojAiEA8ACUbWG5IkG9CBASndw909s5yHaw36YZhrCCV7w2xAgAdQDuzdBk 1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYqO7dvhAAAEAwBGMEQCIFNM S92Y9vPkZ7G53lBj2LlH/judcnoR5PL8uLIO9VKUAiBAzJh6W1uqcB1nsPlDovYe NP6/8iVDaB6UeVwpzVPYVAB3AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdM Wjp0AAABio7t3CsAAAQDAEgwRgIhANV6ODFmgiUz4gWrVoXkESrVnOTpvRIyNbY0 jTqkMLfeAiEA4JEONPhwBAJgb1BzBRi8b+wGjK1VISxELXo9vdAEqo4wDQYJKoZI hvcNAQELBQADggEBADGWp6rrjj9kvM8Kr+XwlY+ykV7ayFXU/X7tLqf7ZofOeilN 8DOAUV3+MbmCoV2ixfRKiJNc7mOXMEghk3E0oH4H3qY+1jKmbcAnWk6iSUdHa2k5 VFGmr1Slh+ycNNnRGHSgSxhhH9nYB8hTH9VDAcKyetoNmlKs15W1EXTjrmdJntg/ mgvRfc6xo9B9904Dlnc8qisQPuHSr6jWvNMahyXX4m0gQUrBpNjOYgEb0yJZPNzx NwnMH/OMSo7+JYjfGU29Y3nCH2TpHTUsitCtKatufvayYPDtz9yoW13+Co98Kiz9 i+d4sIPiTa7wkdsE7Jev5u0TRhWMWKlz9IW8Q0E= -----END CERTIFICATE----- 1 s:C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R3 DV TLS CA 2020 i:OU = GlobalSign Root CA - R3, O = GlobalSign, CN = GlobalSign -----BEGIN CERTIFICATE----- MIIEsDCCA5igAwIBAgIQd70OB0LV2enQSdd00CpvmjANBgkqhkiG9w0BAQsFADBM MSAwHgYDVQQLExdHbG9iYWxTaWduIFJvb3QgQ0EgLSBSMzETMBEGA1UEChMKR2xv YmFsU2lnbjETMBEGA1UEAxMKR2xvYmFsU2lnbjAeFw0yMDA3MjgwMDAwMDBaFw0y OTAzMTgwMDAwMDBaMFMxCzAJBgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWdu IG52LXNhMSkwJwYDVQQDEyBHbG9iYWxTaWduIEdDQyBSMyBEViBUTFMgQ0EgMjAy MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKxnlJV/de+OpwyvCXAJ IcxPCqkFPh1lttW2oljS3oUqPKq8qX6m7K0OVKaKG3GXi4CJ4fHVUgZYE6HRdjqj hhnuHY6EBCBegcUFgPG0scB12Wi8BHm9zKjWxo3Y2bwhO8Fvr8R42pW0eINc6OTb QXC0VWFCMVzpcqgz6X49KMZowAMFV6XqtItcG0cMS//9dOJs4oBlpuqX9INxMTGp 6EASAF9cnlAGy/RXkVS9nOLCCa7pCYV+WgDKLTF+OK2Vxw3RUJ/p8009lQeUARv2 UCcNNPCifYX1xIspvarkdjzLwzOdLahDdQbJON58zN4V+lMj0msg+c0KnywPIRp3 BMkCAwEAAaOCAYUwggGBMA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUDZjA c3+rvb3ZR0tJrQpKDKw+x3wwHwYDVR0jBBgwFoAUj/BLf6guRSSuTVD6Y5qL3uLd G7wwewYIKwYBBQUHAQEEbzBtMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcDIuZ2xv YmFsc2lnbi5jb20vcm9vdHIzMDsGCCsGAQUFBzAChi9odHRwOi8vc2VjdXJlLmds b2JhbHNpZ24uY29tL2NhY2VydC9yb290LXIzLmNydDA2BgNVHR8ELzAtMCugKaAn hiVodHRwOi8vY3JsLmdsb2JhbHNpZ24uY29tL3Jvb3QtcjMuY3JsMEcGA1UdIARA MD4wPAYEVR0gADA0MDIGCCsGAQUFBwIBFiZodHRwczovL3d3dy5nbG9iYWxzaWdu LmNvbS9yZXBvc2l0b3J5LzANBgkqhkiG9w0BAQsFAAOCAQEAy8j/c550ea86oCkf r2W+ptTCYe6iVzvo7H0V1vUEADJOWelTv07Obf+YkEatdN1Jg09ctgSNv2h+LMTk KRZdAXmsE3N5ve+z1Oa9kuiu7284LjeS09zHJQB4DJJJkvtIbjL/ylMK1fbMHhAW i0O194TWvH3XWZGXZ6ByxTUIv1+kAIql/Mt29PmKraTT5jrzcVzQ5A9jw16yysuR XRrLODlkS1hyBjsfyTNZrmL1h117IFgntBA5SQNVl9ckedq5r4RSAU85jV8XK5UL REjRZt2I6M9Po9QL7guFLu4sPFJpwR1sPJvubS2THeo7SxYoNDtdyBHs7euaGcMa D/fayQ== -----END CERTIFICATE----- 2 s:OU = GlobalSign Root CA - R3, O = GlobalSign, CN = GlobalSign i:OU = GlobalSign Root CA - R3, O = GlobalSign, CN = GlobalSign -----BEGIN CERTIFICATE----- MIIDXzCCAkegAwIBAgILBAAAAAABIVhTCKIwDQYJKoZIhvcNAQELBQAwTDEgMB4G A1UECxMXR2xvYmFsU2lnbiBSb290IENBIC0gUjMxEzARBgNVBAoTCkdsb2JhbFNp Z24xEzARBgNVBAMTCkdsb2JhbFNpZ24wHhcNMDkwMzE4MTAwMDAwWhcNMjkwMzE4 MTAwMDAwWjBMMSAwHgYDVQQLExdHbG9iYWxTaWduIFJvb3QgQ0EgLSBSMzETMBEG A1UEChMKR2xvYmFsU2lnbjETMBEGA1UEAxMKR2xvYmFsU2lnbjCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAMwldpB5BngiFvXAg7aEyiie/QV2EcWtiHL8 RgJDx7KKnQRfJMsuS+FggkbhUqsMgUdwbN1k0ev1LKMPgj0MK66X17YUhhB5uzsT gHeMCOFJ0mpiLx9e+pZo34knlTifBtc+ycsmWQ1z3rDI6SYOgxXG71uL0gRgykmm KPZpO/bLyCiR5Z2KYVc3rHQU3HTgOu5yLy6c+9C7v/U9AOEGM+iCK65TpjoWc4zd QQ4gOsC0p6Hpsk+QLjJg6VfLuQSSaGjlOCZgdbKfd/+RFO+uIEn8rUAVSNECMWEZ XriX7613t2Saer9fwRPvm2L7DWzgVGkWqQPabumDk3F2xmmFghcCAwEAAaNCMEAw DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYEFI/wS3+o LkUkrk1Q+mOai97i3Ru8MA0GCSqGSIb3DQEBCwUAA4IBAQBLQNvAUKr+yAzv95ZU RUm7lgAJQayzE4aGKAczymvmdLm6AC2upArT9fHxD4q/c2dKg8dEe3jgr25sbwMp jjM5RcOO5LlXbKr8EpbsU8Yt5CRsuZRj+9xTaGdWPoO4zzUhw8lo/s7awlOqzJCK 6fBdRoyV3XpYKBovHd7NADdBj+1EbddTKJd+82cEHhXXipa0095MJ6RMG3NzdvQX mcIfeg7jLQitChws/zyrVQ4PkX4268NXSb7hLi18YIvDQVETI53O9zJrlAGomecs Mx86OyXShkDOOyyGeMlhLxS67ttVb9+E7gUJTb0o2HLO02JQZR7rkpeDMdmztcpH WD9f -----END CERTIFICATE----- --- Server certificate subject=CN = *.hotlog.ru issuer=C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R3 DV TLS CA 2020 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 4250 bytes and written 400 bytes Verification error: self signed certificate in certificate chain --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 19 (self signed certificate in certificate chain) --- DONE --- Post-Handshake New Session Ticket arrived: SSL-Session: Protocol : TLSv1.3 Cipher : TLS_AES_256_GCM_SHA384 Session-ID: 3F2F9F8FB10467752B1B788D5F1E0D16BA74DA2C44AFE0E45D9AEB8024A43E16 Session-ID-ctx: Resumption PSK: A2030FF87938FAE9061FCAD78967EABA1224525432AEE281FB91E3ACBB093E2EAC3E0EF15B8E5BBB9B438D89D2A1ADD3 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 604800 (seconds) TLS session ticket: 0000 - 05 8b cb f5 ad 67 8f 9f-66 95 42 33 7d b3 2b 73 .....g..f.B3}.+s 0010 - 79 53 ef b3 1c 50 68 9d-dd a3 f8 0e b4 25 32 56 yS...Ph......%2V 0020 - 51 3e 88 27 d3 75 b5 5b-8c 64 c5 e2 06 f0 d3 f8 Q>.'.u.[.d...... 0030 - 01 1b 8e 79 31 8b 55 3e-59 b5 a4 30 7d 43 0c f3 ...y1.U>Y..0}C.. 0040 - 65 c4 6f 09 32 d6 ea 00-17 76 1f 4a 91 2d f7 34 e.o.2....v.J.-.4 0050 - fc cb 05 68 b3 15 6e 1e-f2 cc c8 0c b2 2e 88 7a ...h..n........z 0060 - 71 a2 27 99 18 1d c2 5e-84 89 a9 85 db d5 c6 fa q.'....^........ 0070 - 59 ed 15 73 d0 6b 75 60-06 ea d4 24 e8 f8 87 a2 Y..s.ku`...$.... 0080 - b6 . Start Time: 1711624618 Timeout : 7200 (sec) Verify return code: 19 (self signed certificate in certificate chain) Extended master secret: no Max Early Data: 0 --- read R BLOCK