SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
Hostname: | done Matches Common Name or/and SAN |
Expired: | done No (64 days till expiration) |
Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
Trusted: | done Yes, we were able to verify the certificate |
Self-Signed: | done No, the end-entity certificate is not self-signed |
Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
Resolves To: | 91.224.48.215 |
Reverse IP lookup: | No records found |
Nameserver: | ddns-ns1.quickconnect.to. |
Nameserver: | ddns-ns4.quickconnect.to. |
Nameserver: | ddns-ns3.quickconnect.to. |
Nameserver: | ddns-ns2.quickconnect.to. |
General Information
Common Name: | mike125.synology.me |
SANs: | DNS:*.mike125.synology.meDNS:mike125.synology.me Total number of SANs: 2 |
Signature Algorithm: | ecdsa-with-SHA384 |
Key Type: | ECDSA (secp256r1) |
Key size: | 256 bits |
Serial Number: | 401b3b83bb1ed9fbf8673c4a3b922781e93 |
Not Before: | Oct 15, 2024 18:43:21 GMT |
Not After: | Jan 13, 2025 18:43:20 GMT |
Number of certs: | 2 |
Revocation Status: | good |
OCSP Stapling: | Not Supported |
Server: | nginx |
HSTS: | Not Supported |
HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: mike125.synology.me
Decode this certificate for verbose information → launchSubject Common Name | mike125.synology.me |
Issuer Common Name | E5 |
Issuer Organization | Let's Encrypt |
Not Before: | Oct 15, 2024 18:43:21 GMT |
Not After: | Jan 13, 2025 18:43:20 GMT |
Signature Algorithm: | ecdsa-with-SHA384 |
Serial Number: | 401b3b83bb1ed9fbf8673c4a3b922781e93 |
SHA1 Fingerprint: | 2F:A1:46:DE:83:08:93:CE:D4:BE:93:23:2A:58:4F:E2:F5:EF:36:90 |
MD5 Fingerprint: | 80:B6:2A:49:3A:8A:73:64:83:FF:67:78:84:3C:29:6A |
Certificate # 2 - Common Name: E5
Decode this certificate for verbose information → launchIn place? | Yes, this certificate directly certifies the preceding one |
Subject Common Name | E5 |
Subject Organization | Let's Encrypt |
Issuer Common Name | ISRG Root X1 |
Issuer Organization | Internet Security Research Group |
Not Before: | Mar 13, 2024 00:00:00 GMT |
Not After: | Mar 12, 2027 23:59:59 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 838f6c63ceb1398c6206628315c9fdde |
SHA1 Fingerprint: | 5F:28:D9:C5:89:EE:4B:F3:1A:11:B7:8C:72:B8:D1:3F:07:9D:DC:45 |
MD5 Fingerprint: | 54:7A:B1:C0:5C:A8:5A:6E:68:2C:91:28:0F:EF:D7:55 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1 verify return:1 depth=1 C = US, O = Let's Encrypt, CN = E5 verify return:1 depth=0 CN = mike125.synology.me verify return:1 CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = mike125.synology.me i:C = US, O = Let's Encrypt, CN = E5 -----BEGIN CERTIFICATE----- MIIDnjCCAyWgAwIBAgISBAGzuDux7Z+/hnPEo7kieB6TMAoGCCqGSM49BAMDMDIx CzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJF NTAeFw0yNDEwMTUxODQzMjFaFw0yNTAxMTMxODQzMjBaMB4xHDAaBgNVBAMTE21p a2UxMjUuc3lub2xvZ3kubWUwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAARE4hxb GTawXOMwPE2shjg39AB4cX+zY0RhA0eeEfDGgvRt1FcdlNZQuiIb2uWr7TxEctaU 2QtXgrJ3UvErZlaVo4ICLTCCAikwDgYDVR0PAQH/BAQDAgeAMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRUBNRJ wSqkixl/7Tm9kYI9Qcyt/zAfBgNVHSMEGDAWgBSfK1/PPCFPnQS37SssxMZwi9LX DTBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9lNS5vLmxlbmNy Lm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL2U1LmkubGVuY3Iub3JnLzA1BgNVHREE LjAsghUqLm1pa2UxMjUuc3lub2xvZ3kubWWCE21pa2UxMjUuc3lub2xvZ3kubWUw EwYDVR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgB9 WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAZKRs3oxAAAEAwBHMEUC IQC39yDmHTcFD++fIZeeeDvrpWJUWRiXzIlTEVumt7pWvgIgTq120L0c+ujRvFnT 47QsvQrjmJVbz93v8q8/6iX3vSwAdwDgkrP8DB3I52g2H95huZZNClJ4GYpy1nLE sE2lbW9UBAAAAZKRs3ndAAAEAwBIMEYCIQDHYDPuo5XDJp6g/KL3NP+chI8GA+9T KdZCzQiEwqSyCQIhAJFjE1S3GFD9ZKbdQ1QyvLwL/mJk7P7grf79I/YCxDynMAoG CCqGSM49BAMDA2cAMGQCMG2u80jgIbM7Ku82fllVL5oedfu62qSdXVZCe5VmRx+y dj+sKTWDYMmzmDuaOauWFwIwMKmkTZevmmN2xmsIgbjZcKPPSXteP2EhQqIlSjWg iCCeGhrNj5bukTgF/qzUCMp2 -----END CERTIFICATE----- 1 s:C = US, O = Let's Encrypt, CN = E5 i:C = US, O = Internet Security Research Group, CN = ISRG Root X1 -----BEGIN CERTIFICATE----- MIIEVzCCAj+gAwIBAgIRAIOPbGPOsTmMYgZigxXJ/d4wDQYJKoZIhvcNAQELBQAw TzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2Vh cmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAw WhcNMjcwMzEyMjM1OTU5WjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3Mg RW5jcnlwdDELMAkGA1UEAxMCRTUwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAQNCzqK a2GOtu/cX1jnxkJFVKtj9mZhSAouWXW0gQI3ULc/FnncmOyhKJdyIBwsz9V8UiBO VHhbhBRrwJCuhezAUUE8Wod/Bk3U/mDR+mwt4X2VEIiiCFQPmRpM5uoKrNijgfgw gfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcD ATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBSfK1/PPCFPnQS37SssxMZw i9LXDTAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcB AQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0g BAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVu Y3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAH3KdNEVCQdqk0LKyuNImTKdRJY1C 2uw2SJajuhqkyGPY8C+zzsufZ+mgnhnq1A2KVQOSykOEnUbx1cy637rBAihx97r+ bcwbZM6sTDIaEriR/PLk6LKs9Be0uoVxgOKDcpG9svD33J+G9Lcfv1K9luDmSTgG 6XNFIN5vfI5gs/lMPyojEMdIzK9blcl2/1vKxO8WGCcjvsQ1nJ/Pwt8LQZBfOFyV XP8ubAp/au3dc4EKWG9MO5zcx1qT9+NXRGdVWxGvmBFRAajciMfXME1ZuGmk3/GO koAM7ZkjZmleyokP1LGzmfJcUd9s7eeu1/9/eg5XlXd/55GtYjAM+C4DG5i7eaNq cm2F+yxYIPt6cbbtYVNJCGfHWqHEQ4FYStUyFnv8sjyqU8ypgZaNJ9aVcWSICLOI E1/Qv/7oKsnZCWJ926wU6RqG1OYPGOi1zuABhLw61cuPVDT28nQS/e6z95cJXq0e K1BcaJ6fJZsmbjRgD5p3mvEf5vdQM7MCEvU0tHbsx2I5mHHJoABHb8KVBgWp/lcX GWiWaeOyB7RP+OfDtvi2OsapxXiV7vNVs7fMlrRjY1joKaqmmycnBvAq14AEbtyL sVfOS66B8apkeFX2NY4XPEYV4ZSCe8VHPrdrERk2wILG3T/EGmSIkCYVUMSnjmJd VQD9F6Na/+zmXCc= -----END CERTIFICATE----- --- Server certificate subject=CN = mike125.synology.me issuer=C = US, O = Let's Encrypt, CN = E5 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 2426 bytes and written 410 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) --- DONE