SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
Hostname: | close Doesn't match Common Name or/and SANs |
Expired: | done No (79 days till expiration) |
Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
Trusted: | done Yes, we were able to verify the certificate |
Self-Signed: | done No, the end-entity certificate is not self-signed |
Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
Resolves To: | 70.32.85.79 |
Reverse IP lookup: | lagas.com. |
Nameserver: | ns2.mediatemple.net. |
Nameserver: | ns1.mediatemple.net. |
General Information
Common Name: | lagas.com |
SANs: | DNS:lagas.com Total number of SANs: 1 |
Signature Algorithm: | sha256WithRSAEncryption |
Key Type: | RSA |
Key size: | 2048 bits |
Serial Number: | 367a10aa9caa61583f9eea85931d24433ba |
Not Before: | Jul 16, 2024 19:45:05 GMT |
Not After: | Oct 14, 2024 19:45:04 GMT |
Number of certs: | 2 |
Revocation Status: | good |
OCSP Stapling: | Not Supported |
Chain Information
Certificate # 1 - Common Name: lagas.com
Decode this certificate for verbose information → launchSubject Common Name | lagas.com |
Issuer Common Name | R10 |
Issuer Organization | Let's Encrypt |
Not Before: | Jul 16, 2024 19:45:05 GMT |
Not After: | Oct 14, 2024 19:45:04 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 367a10aa9caa61583f9eea85931d24433ba |
SHA1 Fingerprint: | FA:D1:3A:21:E7:CF:E4:36:CA:43:7C:B2:BE:B9:C3:4D:1C:C5:54:97 |
MD5 Fingerprint: | BB:AB:52:B6:D9:07:11:8D:3E:37:8F:75:BF:DD:9B:31 |
Certificate # 2 - Common Name: R10
Decode this certificate for verbose information → launchIn place? | Yes, this certificate directly certifies the preceding one |
Subject Common Name | R10 |
Subject Organization | Let's Encrypt |
Issuer Common Name | ISRG Root X1 |
Issuer Organization | Internet Security Research Group |
Not Before: | Mar 13, 2024 00:00:00 GMT |
Not After: | Mar 12, 2027 23:59:59 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 4ba85293f79a2fa273064ba8048d75d0 |
SHA1 Fingerprint: | 00:AB:EF:D0:55:F9:A9:C7:84:FF:DE:AB:D1:DC:DD:8F:ED:74:14:36 |
MD5 Fingerprint: | AF:1C:77:AE:CC:8D:77:E9:AA:CB:0C:47:58:40:C3:92 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1 verify return:1 depth=1 C = US, O = Let's Encrypt, CN = R10 verify return:1 depth=0 CN = lagas.com verify return:1 CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = lagas.com i:C = US, O = Let's Encrypt, CN = R10 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgISA2ehCqnKphWD+e6oWTHSRDO6MA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTAwHhcNMjQwNzE2MTk0NTA1WhcNMjQxMDE0MTk0NTA0WjAUMRIwEAYDVQQD EwlsYWdhcy5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGBRnJ FZwVVQim1dTqCNiGY4nZq5wOuHP1TK+5Yr26tKQXUDcaEEqMdCRR+4GHxgZX14tW 3sOGQe9EIuBL4QYKfj6JRQK97JJMLIUim9nW+2TbHETVANw1aGpxt0Oph/cxkZVJ MIxfcAdfFj2raALZr2ycw5nCVxEURJojxEAwnkrJlfCXUYMKaKAsu3+GY2Fo9gPy YRG8YJF+a9k1aW69O1G3FbvpltUgQaDp9GkLCGLdQaWZfGeTQ+XFZoxeBwJYFS5z FDFWn80NdJWVndDt8DWV5R1y2OtUmN7Y3VzDHflyJm6zaQretqUQyiXYOZqqD8z7 Sm1X54P6xu3be12lAgMBAAGjggILMIICBzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FL7LDqSAJRacD0N3V6IUAsKuZ74kMB8GA1UdIwQYMBaAFLu8w0el5LypxsOkcgwQ jaI14cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMC5v LmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMC5pLmxlbmNyLm9yZy8w FAYDVR0RBA0wC4IJbGFnYXMuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAgYK KwYBBAHWeQIEAgSB8wSB8ADuAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZ RnEftZsAAAGQvUqqLQAABAMARzBFAiEAxUfp5cS0gyjgEynHhFJTLO4NBAEKn8Ms nG5nXcX/RKgCIFZ1+tp6oZsQIdGSGYxort6HZ87cJg876hA1YyziU52HAHQAGZgQ cQnw1lIuMIDSnj9ku4NuKMz5D1KO7t/OSj8WtMoAAAGQvUqqdgAABAMARTBDAh9h sIq0G2FCXCF+8nZlE0jR2Ab47L2IN9u0i1TsnLSOAiAeEsBFQP5PQws9MLcI9sqH 66cu1H5jzmUhVmmP9dgkgDANBgkqhkiG9w0BAQsFAAOCAQEAmv9Fj9dqxUlaq5iZ znsaXoze8oitAwxhDJPBcKCQXrdQwPuTVTS3InffFIJ/DcAlZAvHDjk6G6+9IOze o7aoFY7ClUJeLe6IbbBo9MPQIPj+0k9r/H58O6DTA0WVTQqBFWHgHtJZF9PatNy4 XO05+WabYhhaNPDDXurQbIn/GHdEX9gMfYOECPr1+DWRiILjrxiSWV/sifoJgQhl CwSgmKmMvAb9CbQVOV/wJU1wfqzNdMtB7oQBRLvvFlrG1QLmhuVwgehMLHtqlaS1 B7rAsTSFzCpquvG5NuFPP29mgHn61awriGo+IeTA8IrLXriJg9qrlln2Aae527QW Wt6NjQ== -----END CERTIFICATE----- 1 s:C = US, O = Let's Encrypt, CN = R10 i:C = US, O = Internet Security Research Group, CN = ISRG Root X1 -----BEGIN CERTIFICATE----- MIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFy Y2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBa Fw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBF bmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFL YlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a /6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4 FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KR mudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3 DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGG MB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/ AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5 tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKG Fmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYD VR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0B AQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIo zwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfd u6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p9 1n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0 GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh 1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZ QjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N 4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyz rsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2Ei RmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLx KPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54= -----END CERTIFICATE----- --- Server certificate subject=CN = lagas.com issuer=C = US, O = Let's Encrypt, CN = R10 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: DH, 2048 bits --- SSL handshake has read 3656 bytes and written 643 bytes Verification: OK --- New, TLSv1.2, Cipher is DHE-RSA-AES256-GCM-SHA384 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : DHE-RSA-AES256-GCM-SHA384 Session-ID: E285EA829F0762227E26A7AA02996CCE7442737F19E6D1C2A1FE40DF41E04A59 Session-ID-ctx: Master-Key: 126763F912760F4C3619D2981D2A57F55FE143BBA061DF4C406A284B165E6A24F269907F1C366FAA1EF3BDB53D857950 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 300 (seconds) TLS session ticket: 0000 - 7e 01 74 73 b4 38 f7 4b-8e 64 bd db 1a f3 5b ea ~.ts.8.K.d....[. 0010 - cc 60 b0 98 fa 27 3f bc-ac 68 5f a0 08 48 cc 00 .`...'?..h_..H.. 0020 - 47 b8 76 5e 03 d7 68 fd-fd 89 53 c3 ed 67 86 36 G.v^..h...S..g.6 0030 - 4e a8 fc 6f ad da 60 02-1d 55 39 cb 9c 82 7b 6a N..o..`..U9...{j 0040 - 90 cd c1 2d 1f 92 37 6b-08 6b 46 04 44 51 af 53 ...-..7k.kF.DQ.S 0050 - d4 be 15 8a 0d bc 69 b5-3b 41 bd 57 2d d4 87 13 ......i.;A.W-... 0060 - b6 2a 7f ff f0 13 77 f5-be 15 23 d8 c6 6f 19 99 .*....w...#..o.. 0070 - ef bb 99 33 91 84 60 6d-3b 32 1c 38 d8 2d c6 34 ...3..`m;2.8.-.4 0080 - e5 6c a0 d2 a4 f5 4c bb-f1 06 88 6e e4 b0 2f 40 .l....L....n../@ 0090 - 17 86 a3 43 20 b5 94 7c-50 5c cd 02 99 cd 34 94 ...C ..|P\....4. 00a0 - 00 b1 5f c4 93 25 e9 1c-e5 05 f6 4d 44 43 68 fc .._..%.....MDCh. Start Time: 1722064150 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no --- DONE