SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
| Hostname: | done Matches Common Name or/and SAN |
| Expired: | done No (220 days till expiration) |
| Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
| Trusted: | close We were unable to verify this certificate |
| Self-Signed: | done No, the end-entity certificate is not self-signed |
| Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
| Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
| OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
| Resolves To: | 35.79.244.147 |
| Reverse IP lookup: | ec2-35-79-244-147.ap-northeast-1.compute.amazonaws.com. |
| Nameserver: | ns-1333.awsdns-38.org. |
| Nameserver: | ns-1693.awsdns-19.co.uk. |
| Nameserver: | ns-59.awsdns-07.com. |
| Nameserver: | ns-963.awsdns-56.net. |
General Information
| Common Name: | *.nend.net |
| SANs: | DNS:*.nend.netDNS:nend.net Total number of SANs: 2 |
| Signature Algorithm: | sha256WithRSAEncryption |
| Key Type: | RSA |
| Key size: | 2048 bits |
| Serial Number: | 61f7cb1d439d4da955e5aa9b |
| Not Before: | Nov 02, 2023 04:41:27 GMT |
| Not After: | Dec 03, 2024 04:41:26 GMT |
| Number of certs: | 2 |
| Revocation Status: | good |
| OCSP Stapling: | Not Supported |
| Server: | Apache |
| HSTS: | Not Supported |
| HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: *.nend.net
Decode this certificate for verbose information → launch| Subject Common Name | *.nend.net |
| Issuer Common Name | GlobalSign GCC R3 DV TLS CA 2020 |
| Issuer Organization | GlobalSign nv-sa |
| Not Before: | Nov 02, 2023 04:41:27 GMT |
| Not After: | Dec 03, 2024 04:41:26 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 61f7cb1d439d4da955e5aa9b |
| SHA1 Fingerprint: | B3:12:04:14:6B:A1:D7:2E:0A:7F:4C:9C:B0:A5:0A:ED:44:01:7B:4E |
| MD5 Fingerprint: | 0C:5F:A1:90:74:82:51:AE:F2:7A:7F:1E:F6:B0:C6:B0 |
Certificate # 2 - Common Name: GlobalSign GCC R3 DV TLS CA 2020
Decode this certificate for verbose information → launch| In place? | Yes, this certificate directly certifies the preceding one |
| Subject Common Name | GlobalSign GCC R3 DV TLS CA 2020 |
| Subject Organization | GlobalSign nv-sa |
| Issuer Common Name | GlobalSign |
| Issuer Organization | GlobalSign |
| Not Before: | Jul 28, 2020 00:00:00 GMT |
| Not After: | Mar 18, 2029 00:00:00 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 77bd0e0742d5d9e9d049d774d02a6f9a |
| SHA1 Fingerprint: | 1C:61:0A:0A:87:D4:92:F4:83:22:C2:AF:D3:BE:9B:6A:D3:6B:6B:EE |
| MD5 Fingerprint: | A6:E7:E3:48:48:27:FD:C4:E0:C9:16:5B:AA:82:C7:4C |
OpenSSL Handshake
depth=1 C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R3 DV TLS CA 2020
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 CN = *.nend.net
verify return:1
CONNECTED(00000003)
OCSP response: no response sent
---
Certificate chain
0 s:CN = *.nend.net
i:C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R3 DV TLS CA 2020
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
1 s:C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R3 DV TLS CA 2020
i:OU = GlobalSign Root CA - R3, O = GlobalSign, CN = GlobalSign
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=CN = *.nend.net
issuer=C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R3 DV TLS CA 2020
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3474 bytes and written 412 bytes
Verification error: unable to get local issuer certificate
---
New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-RSA-AES256-GCM-SHA384
Session-ID: F8514C325741FA66F87BA498982B7F2E49AEDC886AEA47EB0C896A544F92A5BF
Session-ID-ctx:
Master-Key: EFA9CA598EBFC1CC4A6814E30ED9C70DF78CF37D1E011E11201D23223732ECF1D8823FE6359A4BCC984D4B01419BD64B
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 300 (seconds)
TLS session ticket:
0000 - 4f b7 d9 78 e3 76 f3 8f-ff 26 ca b0 f6 27 dd a5 O..x.v...&...'..
0010 - 88 29 c5 e0 a1 c5 c8 4a-11 50 43 18 9a 23 42 6d .).....J.PC..#Bm
0020 - 61 b3 ce f1 78 05 2e be-7e 52 97 f6 dd 4d be f2 a...x...~R...M..
0030 - c8 ff 84 46 af b0 8a f8-79 0e f7 e0 88 9e f1 93 ...F....y.......
0040 - 1f b8 a9 ef 72 ef 6e 50-25 91 3c 3e 6b ee 8c af ....r.nP%.<>k...
0050 - bf d3 7a 12 18 91 c8 6e-4a 01 6c be b9 d0 87 3a ..z....nJ.l....:
0060 - 1a ed 04 11 62 10 87 a7-27 17 33 dd 54 3b 44 09 ....b...'.3.T;D.
0070 - 28 65 45 47 21 39 9f 07-15 fe 14 d5 64 e6 f8 a1 (eEG!9......d...
0080 - 16 2d d2 2a 5a 5b 8d 87-84 46 d2 a1 3b 4c 1d 7e .-.*Z[...F..;L.~
0090 - 81 d7 88 87 58 5f 27 0d-41 68 60 b4 45 2d cf b7 ....X_'.Ah`.E-..
00a0 - 94 ca f8 20 96 2e d6 17-dc 76 f0 db 19 33 c5 40 ... .....v...3.@
00b0 - 2b ad e5 be 77 f5 84 0c-e7 8a fe 9c e0 e6 21 07 +...w.........!.
Start Time: 1714143886
Timeout : 7200 (sec)
Verify return code: 20 (unable to get local issuer certificate)
Extended master secret: yes
---
DONE