SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
| Hostname: | done Matches Common Name or/and SAN |
| Expired: | done No (64 days till expiration) |
| Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
| Trusted: | done Yes, we were able to verify the certificate |
| Self-Signed: | done No, the end-entity certificate is not self-signed |
| Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
| Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
| OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
| Resolves To: | 194.209.225.23 |
| Reverse IP lookup: | member.kcdb.net. |
| Nameserver: | namesrv2.kaktus.ch. |
| Nameserver: | namesrv1.kaktus.ch. |
General Information
| Common Name: | member.kcdb.net |
| SANs: | DNS:member.kcdb.netDNS:my.kcdb.net Total number of SANs: 2 |
| Signature Algorithm: | sha256WithRSAEncryption |
| Key Type: | RSA |
| Key size: | 2048 bits |
| Serial Number: | 3a2cce050b49fa9ebe5183976fcd703e76f |
| Not Before: | Nov 03, 2024 11:49:12 GMT |
| Not After: | Feb 01, 2025 11:49:11 GMT |
| Number of certs: | 2 |
| Revocation Status: | good |
| OCSP Stapling: | Not Supported |
| Server: | Microsoft-IIS/8.5 |
| HSTS: | Not Supported |
| HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: member.kcdb.net
Decode this certificate for verbose information → launch| Subject Common Name | member.kcdb.net |
| Issuer Common Name | R10 |
| Issuer Organization | Let's Encrypt |
| Not Before: | Nov 03, 2024 11:49:12 GMT |
| Not After: | Feb 01, 2025 11:49:11 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 3a2cce050b49fa9ebe5183976fcd703e76f |
| SHA1 Fingerprint: | 72:5E:18:37:BF:6A:6D:D4:B2:A0:13:7B:02:67:FD:74:15:5F:F7:41 |
| MD5 Fingerprint: | 9E:B5:23:7E:34:26:3F:03:06:86:99:27:EE:C9:C9:7E |
Certificate # 2 - Common Name: R10
Decode this certificate for verbose information → launch| In place? | Yes, this certificate directly certifies the preceding one |
| Subject Common Name | R10 |
| Subject Organization | Let's Encrypt |
| Issuer Common Name | ISRG Root X1 |
| Issuer Organization | Internet Security Research Group |
| Not Before: | Mar 13, 2024 00:00:00 GMT |
| Not After: | Mar 12, 2027 23:59:59 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 4ba85293f79a2fa273064ba8048d75d0 |
| SHA1 Fingerprint: | 00:AB:EF:D0:55:F9:A9:C7:84:FF:DE:AB:D1:DC:DD:8F:ED:74:14:36 |
| MD5 Fingerprint: | AF:1C:77:AE:CC:8D:77:E9:AA:CB:0C:47:58:40:C3:92 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1
verify return:1
depth=1 C = US, O = Let's Encrypt, CN = R10
verify return:1
depth=0 CN = member.kcdb.net
verify return:1
CONNECTED(00000003)
OCSP response: no response sent
---
Certificate chain
0 s:CN = member.kcdb.net
i:C = US, O = Let's Encrypt, CN = R10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
1 s:C = US, O = Let's Encrypt, CN = R10
i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=CN = member.kcdb.net
issuer=C = US, O = Let's Encrypt, CN = R10
---
No client certificate CA names sent
Peer signing digest: SHA1
Peer signature type: RSA
Server Temp Key: ECDH, P-256, 256 bits
---
SSL handshake has read 3118 bytes and written 508 bytes
Verification: OK
---
New, TLSv1.2, Cipher is ECDHE-RSA-AES256-SHA384
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-RSA-AES256-SHA384
Session-ID: 924D0000CC3F8A963A6405E1AF261009EA3A6AF550EFDFD5F9082DA8530C1847
Session-ID-ctx:
Master-Key: E6474A5856E6A257715E9BB007EC2C0537883AED732FD1425CC31417ED10B6B3F4F68F5C9E3473284347E8C1B831A79B
PSK identity: None
PSK identity hint: None
SRP username: None
Start Time: 1732818913
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: yes
---
DONE