SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
| Hostname: | done Matches Common Name or/and SAN |
| Expired: | done No (76 days till expiration) |
| Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
| Trusted: | done Yes, we were able to verify the certificate |
| Self-Signed: | done No, the end-entity certificate is not self-signed |
| Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
| Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
| OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
| Resolves To: | 207.38.72.168 |
| Reverse IP lookup: | No records found |
| Nameserver: | ns42.cloudns.net. |
| Nameserver: | pns43.cloudns.net. |
| Nameserver: | pns41.cloudns.net. |
| Nameserver: | pns42.cloudns.net. |
| Nameserver: | pns44.cloudns.net. |
General Information
| Common Name: | www.portagemi.gov |
| SANs: | DNS:portagemi.govDNS:www.portagemi.gov Total number of SANs: 2 |
| Signature Algorithm: | sha256WithRSAEncryption |
| Key Type: | RSA |
| Key size: | 2048 bits |
| Serial Number: | 306a2c0ccb6f844ab901f2466b6dd3d93ce |
| Not Before: | Dec 05, 2024 11:52:14 GMT |
| Not After: | Mar 05, 2025 11:52:13 GMT |
| Number of certs: | 2 |
| Revocation Status: | good |
| OCSP Stapling: | Supported |
| Server: | Microsoft-IIS/10.0 |
| HSTS: | Not Supported |
| HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: www.portagemi.gov
Decode this certificate for verbose information → launch| Subject Common Name | www.portagemi.gov |
| Issuer Common Name | R10 |
| Issuer Organization | Let's Encrypt |
| Not Before: | Dec 05, 2024 11:52:14 GMT |
| Not After: | Mar 05, 2025 11:52:13 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 306a2c0ccb6f844ab901f2466b6dd3d93ce |
| SHA1 Fingerprint: | 1E:8A:49:D0:63:B3:76:02:0F:DF:57:74:CF:5E:86:D8:E5:9E:2B:56 |
| MD5 Fingerprint: | 79:10:68:31:16:61:1E:5A:3D:D7:48:2F:03:F1:16:61 |
Certificate # 2 - Common Name: R10
Decode this certificate for verbose information → launch| In place? | Yes, this certificate directly certifies the preceding one |
| Subject Common Name | R10 |
| Subject Organization | Let's Encrypt |
| Issuer Common Name | ISRG Root X1 |
| Issuer Organization | Internet Security Research Group |
| Not Before: | Mar 13, 2024 00:00:00 GMT |
| Not After: | Mar 12, 2027 23:59:59 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 4ba85293f79a2fa273064ba8048d75d0 |
| SHA1 Fingerprint: | 00:AB:EF:D0:55:F9:A9:C7:84:FF:DE:AB:D1:DC:DD:8F:ED:74:14:36 |
| MD5 Fingerprint: | AF:1C:77:AE:CC:8D:77:E9:AA:CB:0C:47:58:40:C3:92 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1
verify return:1
depth=1 C = US, O = Let's Encrypt, CN = R10
verify return:1
depth=0 CN = www.portagemi.gov
verify return:1
CONNECTED(00000003)
OCSP response:
======================================
OCSP Response Data:
OCSP Response Status: successful (0x0)
Response Type: Basic OCSP Response
Version: 1 (0x0)
Responder Id: C = US, O = Let's Encrypt, CN = R10
Produced At: Dec 17 02:05:00 2024 GMT
Responses:
Certificate ID:
Hash Algorithm: sha1
Issuer Name Hash: 690FE41567ED6F7FB534446406066F0967077172
Issuer Key Hash: 74A47629171854853137BE67E60658C0BCC50572
Serial Number: 0306A2C0CCB6F844AB901F2466B6DD3D93CE
Cert Status: good
This Update: Dec 17 02:05:00 2024 GMT
Next Update: Dec 24 02:04:58 2024 GMT
Signature Algorithm: sha256WithRSAEncryption
74:b3:1d:63:21:cb:de:56:34:88:de:21:77:87:c9:5c:53:dd:
14:d2:60:26:6c:30:30:79:ee:2c:eb:02:6a:aa:f6:a9:65:25:
2c:df:0a:e7:ab:f3:54:7c:0c:b2:a1:90:a2:58:71:bf:f0:c2:
10:56:d0:93:c1:88:08:77:fc:05:b6:e9:75:5d:c5:b3:cd:40:
35:68:39:1d:84:82:d5:57:df:5e:e3:4b:c4:69:41:6e:e7:b3:
4c:7a:c7:44:df:99:77:bf:cd:48:3d:d9:10:54:f8:04:79:84:
e4:fa:f9:1f:55:2f:1e:9f:0f:7b:b1:ba:e0:72:b1:9d:33:84:
18:b6:c5:86:db:7d:ef:82:70:d9:2d:58:3b:24:a5:ff:68:5e:
b4:94:50:e7:22:a1:03:88:20:27:2e:cf:6c:68:fb:ac:aa:98:
d8:3a:63:75:4f:81:0c:a2:44:87:07:a4:e3:05:58:5d:65:86:
3f:16:30:b0:74:93:d5:a7:94:44:55:29:89:94:8f:be:bf:78:
9e:a9:97:55:b7:4d:20:a4:15:a5:0b:10:f1:11:cd:a5:d4:1c:
57:96:01:47:78:9e:45:c8:4d:a7:97:ba:b6:98:c6:e5:9c:9a:
48:f8:02:49:a5:a2:44:08:8d:d9:c7:12:4c:57:47:c0:3f:2d:
0d:6b:6e:03
======================================
---
Certificate chain
0 s:CN = www.portagemi.gov
i:C = US, O = Let's Encrypt, CN = R10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
1 s:C = US, O = Let's Encrypt, CN = R10
i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
-----BEGIN CERTIFICATE-----
MIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBP
MQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFy
Y2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBa
Fw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBF
bmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFL
YlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a
/6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4
FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KR
mudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3
DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGG
MB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/
AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5
tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKG
Fmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYD
VR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0B
AQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIo
zwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfd
u6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p9
1n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0
GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh
1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZ
QjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N
4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyz
rsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2Ei
RmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLx
KPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54=
-----END CERTIFICATE-----
---
Server certificate
subject=CN = www.portagemi.gov
issuer=C = US, O = Let's Encrypt, CN = R10
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA
Server Temp Key: ECDH, P-384, 384 bits
---
SSL handshake has read 3618 bytes and written 482 bytes
Verification: OK
---
New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-RSA-AES256-GCM-SHA384
Session-ID: A64B0000E8001524E76FAFF24A068A1221A32ED5D2A4D5BD697B474605140996
Session-ID-ctx:
Master-Key: 8D93B121B17A6ADBF652C527C618F75A9D0424939849D8FDC1C8C093A4036778B79EFCFE2CA219E95B812C19DA8F381D
PSK identity: None
PSK identity hint: None
SRP username: None
Start Time: 1734542390
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: yes
---
DONE