SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
Hostname: | done Matches Common Name or/and SAN |
Expired: | done No (23 days till expiration) |
Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
Trusted: | done Yes, we were able to verify the certificate |
Self-Signed: | done No, the end-entity certificate is not self-signed |
Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
Resolves To: | 84.45.203.209 |
Reverse IP lookup: | 84-45-203-209.static.enta.net. |
Nameserver: | ns4.freeola.net. |
Nameserver: | ns3.freeola.net. |
General Information
Common Name: | mail.nova-security.co.uk |
SANs: | DNS:mail.nova-security.co.uk Total number of SANs: 1 |
Signature Algorithm: | sha256WithRSAEncryption |
Key Type: | RSA |
Key size: | 2048 bits |
Serial Number: | 3232c5abce18a67b066722890e355d4f8ed |
Not Before: | Nov 19, 2024 23:02:32 GMT |
Not After: | Feb 17, 2025 23:02:31 GMT |
Number of certs: | 2 |
Revocation Status: | good |
OCSP Stapling: | Supported |
Server: | Not Provided |
HSTS: | Not Supported |
HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: mail.nova-security.co.uk
Decode this certificate for verbose information → launchSubject Common Name | mail.nova-security.co.uk |
Issuer Common Name | R10 |
Issuer Organization | Let's Encrypt |
Not Before: | Nov 19, 2024 23:02:32 GMT |
Not After: | Feb 17, 2025 23:02:31 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 3232c5abce18a67b066722890e355d4f8ed |
SHA1 Fingerprint: | F4:43:FC:F0:95:88:50:78:AB:AB:90:75:5B:9B:79:C3:ED:58:20:D3 |
MD5 Fingerprint: | 09:E8:26:6D:0B:21:81:CD:E1:06:4D:B1:F8:68:09:67 |
Certificate # 2 - Common Name: R10
Decode this certificate for verbose information → launchIn place? | Yes, this certificate directly certifies the preceding one |
Subject Common Name | R10 |
Subject Organization | Let's Encrypt |
Issuer Common Name | ISRG Root X1 |
Issuer Organization | Internet Security Research Group |
Not Before: | Mar 13, 2024 00:00:00 GMT |
Not After: | Mar 12, 2027 23:59:59 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 4ba85293f79a2fa273064ba8048d75d0 |
SHA1 Fingerprint: | 00:AB:EF:D0:55:F9:A9:C7:84:FF:DE:AB:D1:DC:DD:8F:ED:74:14:36 |
MD5 Fingerprint: | AF:1C:77:AE:CC:8D:77:E9:AA:CB:0C:47:58:40:C3:92 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1 verify return:1 depth=1 C = US, O = Let's Encrypt, CN = R10 verify return:1 depth=0 CN = mail.nova-security.co.uk verify return:1 CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: C = US, O = Let's Encrypt, CN = R10 Produced At: Jan 23 00:21:00 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: 690FE41567ED6F7FB534446406066F0967077172 Issuer Key Hash: 74A47629171854853137BE67E60658C0BCC50572 Serial Number: 03232C5ABCE18A67B066722890E355D4F8ED Cert Status: good This Update: Jan 23 00:21:00 2025 GMT Next Update: Jan 30 00:20:58 2025 GMT Signature Algorithm: sha256WithRSAEncryption 7c:7f:3b:bc:6f:b5:19:a4:a4:b2:18:16:b7:dd:9f:5c:da:24: 74:ca:25:5c:95:cf:46:37:69:a8:56:d2:b8:b4:59:92:d0:55: 3f:ef:a1:ed:9f:01:af:ba:f7:25:4e:2c:d0:3f:9b:23:ec:78: ee:00:8d:f8:57:73:9d:3d:b9:7f:ec:ce:7b:f4:e3:e6:c7:b9: 02:4f:ba:bd:31:fc:94:99:65:0a:a6:09:5f:e1:35:eb:fc:18: 37:62:74:23:bf:13:55:73:13:53:61:57:89:dc:08:65:21:c9: c6:5d:4c:38:f0:83:5c:50:ce:ba:1d:6a:dc:b6:76:38:53:7e: 51:ee:0e:10:d7:8f:41:14:43:12:dd:10:33:05:e3:2f:43:52: 17:8e:08:8b:df:47:f3:58:e0:83:3b:a5:ca:6d:72:86:9f:05: 48:2d:34:af:09:00:a6:db:b4:c2:78:ea:a7:b4:36:d7:49:cc: c2:b5:01:81:64:44:05:f9:3a:13:86:60:33:06:d5:ce:c7:87: 14:1a:dc:67:2d:bc:aa:b0:27:fc:75:47:e9:34:aa:7f:96:5d: bf:4d:93:6f:00:4c:98:f7:e3:5c:94:71:b7:43:da:c9:2b:13: 5b:3b:e2:f3:63:45:80:21:67:25:c7:ae:a4:8a:b9:4c:a8:6f: 75:d0:d7:95 ====================================== --- Certificate chain 0 s:CN = mail.nova-security.co.uk i:C = US, O = Let's Encrypt, CN = R10 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAyMsWrzhimewZnIokONV1PjtMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTAwHhcNMjQxMTE5MjMwMjMyWhcNMjUwMjE3MjMwMjMxWjAjMSEwHwYDVQQD ExhtYWlsLm5vdmEtc2VjdXJpdHkuY28udWswggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJ9bMSsM/ZkALcyX8aVt5YaPyHhYDEtuYsI8lFtluUY9xMN+ab wczf0hxEGgFwl3ISEqEL4QfF3kpUm+c04uQ/TjtAOARjGHUIk/t0A1NMhbbhVuji umAYCw3/g4HZL5teIV7m2fIkkupvlQQPA7DpoXu+Ge+qTHYwo567hxesjwBJmL4u /JOmCpGY5P4Gn5VP+wVTVesen7o8ayyVkiHsX5OvWC3vi+QHJvLYSEd8zfk5BeGL uyZqclb6UPQHDZseVwems1wYBe9wxnetvyNGuWQikb060LElsDx/EE730OALVodR 3p9qNeYhH8iRjWWiZZXQ51Kp+4PW9SsX81E/AgMBAAGjggIcMIICGDAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFL0PdB+UqApxTEeMv+L1lVRf/OZtMB8GA1UdIwQYMBaA FLu8w0el5LypxsOkcgwQjaI14cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcw AYYWaHR0cDovL3IxMC5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3Ix MC5pLmxlbmNyLm9yZy8wIwYDVR0RBBwwGoIYbWFpbC5ub3ZhLXNlY3VyaXR5LmNv LnVrMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHUA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGTRt9YDAAABAMA RjBEAiBTiVteBD+oe+JcEyvbNzFnmA+4lSE8Oo4Uc9cMUzOBLgIgKzSW2qRBlblh +oHIl/gP47E/z74uO7mUUn6fxqxdL6cAdwCi4wrkRe+9rZt+OO1HZ3dT14JbhJTX K14bLMS5UKRH5wAAAZNG31gKAAAEAwBIMEYCIQC2rgKJiG8qyq3AgfIQmBMCpnp2 MEBuPN1o93C9uHIr6QIhAP/LT+dzATkc2B8NNoIn1vbr26mOiPqN/BPYj0Uolhw2 MA0GCSqGSIb3DQEBCwUAA4IBAQBDRWfsQDOfRTdNzAF2taNNxY4PjrzG+yy10s3S QxJDqfUahZLd1klmbAAko7YvlgtqMQgbWsY36W7uYmegWKLGpOZV1XOAF4Rs3aKh EwdBmx0wuGvh1BYLZ6rRH6IRfaTNbIi7MpBqxr7RzwVrNUKL5SShIYXUuWNpz07D +VC4RwFo7mw9VtGmzwfUBDhjQkehTuCic50e3JwDL1oyXxVV9rEqqpLfB9pUOMlK ZClShFZ1El2IEhlc+CNRIDdn9LAdVpIJPA5Lpg1tM0UPuVQJVFAxkN09oHDiq27C 7NLbKm9prUdIE3o3Tt7LzA5v//s4YaiJOqF4AoDbktiRXj6s -----END CERTIFICATE----- 1 s:C = US, O = Let's Encrypt, CN = R10 i:C = US, O = Internet Security Research Group, CN = ISRG Root X1 -----BEGIN CERTIFICATE----- MIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFy Y2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBa Fw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBF bmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFL YlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a /6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4 FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KR mudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3 DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGG MB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/ AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5 tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKG Fmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYD VR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0B AQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIo zwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfd u6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p9 1n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0 GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh 1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZ QjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N 4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyz rsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2Ei RmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLx KPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54= -----END CERTIFICATE----- --- Server certificate subject=CN = mail.nova-security.co.uk issuer=C = US, O = Let's Encrypt, CN = R10 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 3547 bytes and written 428 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384 Session-ID: E80B00007E244853D0C298B4633F0DC24C25D5053C8EA7AD7409D0C9FC3CB8E5 Session-ID-ctx: Master-Key: A43100F07CF6B3696B31EF69A9C6D151BFD858B88F156905E4F899D3D182FC7162FEEBAF8E519D01A0DE8749E44D2C6F PSK identity: None PSK identity hint: None SRP username: None Start Time: 1737769491 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes --- DONE