SSL Checker

Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.

Report

Hostname:	Matches Common Name or/and SAN
Expired:	No (15 days till expiration)
Public Key:	We were unable to find any issues in the public key of end-entity certificate
Trusted:	We were unable to verify this certificate
Self-Signed:	No, the end-entity certificate is not self-signed
Chain Issues:	The chain doesn't contain any intermediate certificates
Weak signatures:	No, certificates sent by the server were not signed utilizing a weak hash function
OCSP Status:	OCSP Responder returned "good" status for the end-entity certificate

DNS Information

Resolves To:	5.9.89.198
Reverse IP lookup:	mail.sitepromo.de.
Nameserver:	c.ns14.net.
Nameserver:	b.ns14.net.
Nameserver:	a.ns14.net.
Nameserver:	d.ns14.net.

General Information

Common Name:	mail.sitepromo.de
SANs:	DNS:mail.liftconsulting.deDNS:mail.sitepromo.deDNS:www.sitepromo.de Total number of SANs: 3
Signature Algorithm:	sha256WithRSAEncryption
Key Type:	RSA
Key size:	2048 bits
Serial Number:	4174aff8046d6b7eb39d6f71709f45c269d
Not Before:	Feb 10, 2024 19:02:53 GMT
Not After:	May 10, 2024 19:02:52 GMT
Number of certs:	1
Revocation Status:	good
OCSP Stapling:	Not Supported

Chain Information

Certificate # 1 - Common Name: mail.sitepromo.de

Decode this certificate for verbose information →

Subject Common Name	mail.sitepromo.de
Issuer Common Name	R3
Issuer Organization	Let's Encrypt
Not Before:	Feb 10, 2024 19:02:53 GMT
Not After:	May 10, 2024 19:02:52 GMT
Signature Algorithm:	sha256WithRSAEncryption
Serial Number:	4174aff8046d6b7eb39d6f71709f45c269d
SHA1 Fingerprint:	CD:82:C1:C2:74:FE:51:EB:DE:8C:48:87:62:CB:A2:0B:71:F1:F7:38
MD5 Fingerprint:	97:37:0F:E8:92:95:36:CE:70:F4:7F:46:28:59:91:29

OpenSSL Handshake

depth=0 CN = mail.sitepromo.de
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 CN = mail.sitepromo.de
verify error:num=21:unable to verify the first certificate
verify return:1
depth=0 CN = mail.sitepromo.de
verify return:1
CONNECTED(00000003)
OCSP response: no response sent
---
Certificate chain
 0 s:CN = mail.sitepromo.de
   i:C = US, O = Let's Encrypt, CN = R3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=CN = mail.sitepromo.de

issuer=C = US, O = Let's Encrypt, CN = R3

---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 1970 bytes and written 421 bytes
Verification error: unable to verify the first certificate
---
New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
    Protocol  : TLSv1.2
    Cipher    : ECDHE-RSA-AES256-GCM-SHA384
    Session-ID: C406D53FF68F827EFC1FC96BB09E6C527BFC9D665C9D4516E7B3C13E1E6D83D5
    Session-ID-ctx: 
    Master-Key: BB2B2CB91E38A9B5EBBB050BA22B6416A10A9D510388FE08DC644899C28300CB7D41CCB9404E037A543866BE4019722D
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    TLS session ticket lifetime hint: 300 (seconds)
    TLS session ticket:
    0000 - 24 73 e3 bd 6f a3 45 a7-e9 73 b8 e8 76 9f b6 9b   $s..o.E..s..v...
    0010 - 01 f6 09 5d fd 18 a6 b3-ec 1c 65 aa a8 53 eb 0a   ...]......e..S..
    0020 - eb 51 07 ca 0f fd e7 d5-81 43 b6 09 ec c0 52 91   .Q.......C....R.
    0030 - 43 12 2a c3 f0 a1 0c 3f-40 77 1f 95 8e 5e 82 ea   C.*....?@w...^..
    0040 - 5f 30 80 ed e7 d8 7e 48-7f 90 15 04 f8 33 ef 28   _0....~H.....3.(
    0050 - 33 ae 61 f3 fe 3f d5 bb-f9 1e f6 16 fa b8 39 1c   3.a..?........9.
    0060 - 0a 53 37 f6 48 fe 45 1b-96 43 c8 df 4e cb 4a a0   .S7.H.E..C..N.J.
    0070 - 5a fc 9f 20 30 ac 64 47-31 ce 03 93 f6 58 ed 3b   Z.. 0.dG1....X.;
    0080 - ee 48 b6 82 f2 a1 7f 90-12 f6 d8 0c 21 ce 9f 9a   .H..........!...
    0090 - 92 cc 73 17 79 a2 86 60-09 26 34 4a 8b 13 62 ea   ..s.y..`.&4J..b.
    00a0 - 71 29 b3 af 27 d3 7c 66-b1 b2 40 dc b4 14 81 55   q)..'.|f..@....U
    00b0 - 4a fa 57 04 43 6f 44 91-2c 2d 06 cd c9 cd 7e fc   J.W.CoD.,-....~.

    Start Time: 1714023193
    Timeout   : 7200 (sec)
    Verify return code: 21 (unable to verify the first certificate)
    Extended master secret: yes
---
DONE