SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
| Hostname: | done Matches Common Name or/and SAN |
| Expired: | done No (33 days till expiration) |
| Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
| Trusted: | done Yes, we were able to verify the certificate |
| Self-Signed: | done No, the end-entity certificate is not self-signed |
| Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
| Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
| OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
| Resolves To: | 207.38.72.168 |
| Reverse IP lookup: | No records found |
| Nameserver: | pns42.cloudns.net. |
| Nameserver: | pns41.cloudns.net. |
| Nameserver: | pns44.cloudns.net. |
| Nameserver: | pns43.cloudns.net. |
| Nameserver: | ns42.cloudns.net. |
General Information
| Common Name: | www.portagemi.gov |
| SANs: | DNS:portagemi.govDNS:www.portagemi.gov Total number of SANs: 2 |
| Signature Algorithm: | sha256WithRSAEncryption |
| Key Type: | RSA |
| Key size: | 2048 bits |
| Serial Number: | 306a2c0ccb6f844ab901f2466b6dd3d93ce |
| Not Before: | Dec 05, 2024 11:52:14 GMT |
| Not After: | Mar 05, 2025 11:52:13 GMT |
| Number of certs: | 2 |
| Revocation Status: | good |
| OCSP Stapling: | Supported |
| Server: | Microsoft-IIS/10.0 |
| HSTS: | Not Supported |
| HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: www.portagemi.gov
Decode this certificate for verbose information → launch| Subject Common Name | www.portagemi.gov |
| Issuer Common Name | R10 |
| Issuer Organization | Let's Encrypt |
| Not Before: | Dec 05, 2024 11:52:14 GMT |
| Not After: | Mar 05, 2025 11:52:13 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 306a2c0ccb6f844ab901f2466b6dd3d93ce |
| SHA1 Fingerprint: | 1E:8A:49:D0:63:B3:76:02:0F:DF:57:74:CF:5E:86:D8:E5:9E:2B:56 |
| MD5 Fingerprint: | 79:10:68:31:16:61:1E:5A:3D:D7:48:2F:03:F1:16:61 |
Certificate # 2 - Common Name: R10
Decode this certificate for verbose information → launch| In place? | Yes, this certificate directly certifies the preceding one |
| Subject Common Name | R10 |
| Subject Organization | Let's Encrypt |
| Issuer Common Name | ISRG Root X1 |
| Issuer Organization | Internet Security Research Group |
| Not Before: | Mar 13, 2024 00:00:00 GMT |
| Not After: | Mar 12, 2027 23:59:59 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 4ba85293f79a2fa273064ba8048d75d0 |
| SHA1 Fingerprint: | 00:AB:EF:D0:55:F9:A9:C7:84:FF:DE:AB:D1:DC:DD:8F:ED:74:14:36 |
| MD5 Fingerprint: | AF:1C:77:AE:CC:8D:77:E9:AA:CB:0C:47:58:40:C3:92 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1
verify return:1
depth=1 C = US, O = Let's Encrypt, CN = R10
verify return:1
depth=0 CN = www.portagemi.gov
verify return:1
CONNECTED(00000003)
OCSP response:
======================================
OCSP Response Data:
OCSP Response Status: successful (0x0)
Response Type: Basic OCSP Response
Version: 1 (0x0)
Responder Id: C = US, O = Let's Encrypt, CN = R10
Produced At: Jan 28 03:49:00 2025 GMT
Responses:
Certificate ID:
Hash Algorithm: sha1
Issuer Name Hash: 690FE41567ED6F7FB534446406066F0967077172
Issuer Key Hash: 74A47629171854853137BE67E60658C0BCC50572
Serial Number: 0306A2C0CCB6F844AB901F2466B6DD3D93CE
Cert Status: good
This Update: Jan 28 03:49:00 2025 GMT
Next Update: Feb 4 03:48:58 2025 GMT
Signature Algorithm: sha256WithRSAEncryption
91:b0:27:e6:72:49:bb:b1:2a:26:3b:8f:53:c3:0b:16:d6:83:
c1:2d:91:93:72:20:f8:c6:d8:85:2d:44:7c:88:c4:e5:8a:93:
8d:2f:4c:04:7f:60:fe:95:af:87:3d:05:13:a7:5e:34:bb:7c:
ee:76:91:49:bc:e2:10:88:7b:00:54:c9:52:94:b8:7c:37:30:
f4:34:dd:f5:d3:eb:47:8f:b7:29:f2:83:07:9f:e8:5e:a7:87:
df:26:fb:2c:5a:88:8c:b9:7a:ec:ea:a8:d3:b7:02:c6:18:86:
4c:47:1c:8d:25:f3:bf:75:49:da:e7:50:19:c1:37:c9:b0:11:
4a:d1:94:11:87:28:68:4b:7d:0f:8e:32:25:8f:b4:72:20:21:
62:93:4f:3c:2b:fe:10:b4:e7:b2:19:5b:62:ef:df:33:af:ec:
61:84:04:6a:7d:bd:e4:89:72:4e:d0:2b:f6:aa:47:60:10:db:
ad:a6:8d:0a:b1:87:c1:d7:3c:4f:1a:fb:6e:93:35:75:28:5a:
94:57:9a:5c:86:42:38:18:a9:72:23:5f:10:88:6f:a5:f2:06:
6c:7f:44:79:f2:1f:69:be:bb:f0:70:0c:b3:da:26:2b:46:66:
bc:17:e1:cc:61:bb:2b:08:dc:d3:53:07:4a:7e:3d:f8:7b:ec:
ca:6d:d2:7e
======================================
---
Certificate chain
0 s:CN = www.portagemi.gov
i:C = US, O = Let's Encrypt, CN = R10
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgISAwaiwMy2+ESrkB8kZrbdPZPOMA0GCSqGSIb3DQEBCwUA
MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD
EwNSMTAwHhcNMjQxMjA1MTE1MjE0WhcNMjUwMzA1MTE1MjEzWjAcMRowGAYDVQQD
ExF3d3cucG9ydGFnZW1pLmdvdjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAJBJ7ko1+vIUVPjLz4WQOF7kBxSSOnfp+1cjFFVjUeqBNIJGXQbeximjZtUc
kPj6J+wlkOOUKHoaGSSFLTPNsUcXnKOqn1qpPUzGkmCXGvUuL5VohUQ5JEjC6eJI
rSkmRBoPFTmq8LnDB8LNJRJu8SOPe9w1uXXewVRwwE0K0LLxWul/FIMIDwPflXZk
EBEy9d9Souyr31je71FjqGdMLtmE+p+9Ua7ussIdrVys7jQF1Il4es9htHuEYY61
Sj3FoQOn30DzAM3/7GXvYO1R72D2W9TDxhpeHHiuMyrYFNvj9BpyyesSJJsilaj5
VwhlMW6WphhC8tRWW24SMnglHwUCAwEAAaOCAiUwggIhMA4GA1UdDwEB/wQEAwIF
oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd
BgNVHQ4EFgQUes5rA9iOfduR/cp+dSxYcI85YYUwHwYDVR0jBBgwFoAUu7zDR6Xk
vKnGw6RyDBCNojXhyOgwVwYIKwYBBQUHAQEESzBJMCIGCCsGAQUFBzABhhZodHRw
Oi8vcjEwLm8ubGVuY3Iub3JnMCMGCCsGAQUFBzAChhdodHRwOi8vcjEwLmkubGVu
Y3Iub3JnLzArBgNVHREEJDAigg1wb3J0YWdlbWkuZ292ghF3d3cucG9ydGFnZW1p
LmdvdjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA
8QB2AObSMWNAd4zBEEEG13G5zsHSQPaWhIb7uocyHf0eN45QAAABk5bfazYAAAQD
AEcwRQIhAIgvNHb/FlQnccym4M8BAndmF1iLf8dk4jg3sMBFAoufAiAf7HqiAT3o
mNU1e3nyPzTcVShhk6KauDwjbUzz+WgV6AB3AKLjCuRF772tm3447Udnd1PXgluE
lNcrXhssxLlQpEfnAAABk5bfazMAAAQDAEgwRgIhAOuY6JwLHezzdv4pLPcFYyvx
aNzL+wXaY4vLrLtbcrryAiEA7kXQSmrJNECsgvOS4eSJ0ppnLpgOZGtNyw9CuwSo
/vcwDQYJKoZIhvcNAQELBQADggEBAGphJ19ZUIgSkNrlGhLCerMAxhvkdduAVxQL
77pCnRINLSYTyaERcAI2bIlxGZNJRNtNts0Mbr9cQTc+fws8RyqKAEvrYhvTFo+r
WggbVHnMSSosfOtjD1u5aC4XIKAOU4km5m4oGFVqkIsIVlwAChNoSr7m1vbuv98T
XbYKrIYSxoYbJ0NjRKsAVVPqNjvXnsYoqbX9PreTI7UicNwP1pzZ2OO6mmZXgJuJ
J8/jt6XgOyPRD6Bc+6q3DwgXpIxIFCeY3yHoEYb2WtHvP2d/4wDsMfAedfiCI/ts
lHepWCPE0C+7BzsoHOr761OL6o01NtLTPIxJXbEuzwOTdXuL870=
-----END CERTIFICATE-----
1 s:C = US, O = Let's Encrypt, CN = R10
i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=CN = www.portagemi.gov
issuer=C = US, O = Let's Encrypt, CN = R10
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA
Server Temp Key: ECDH, P-384, 384 bits
---
SSL handshake has read 3618 bytes and written 482 bytes
Verification: OK
---
New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-RSA-AES256-GCM-SHA384
Session-ID: 5C060000F19CE527A55254C0E92F37976614695E08C6483DCFEB4424A1FA1141
Session-ID-ctx:
Master-Key: 541419218DED84DAE7DED0AADB57D690D4D352544D8CE1281B0F94BA1EDF4EC22426FC8CC40E1360CBDD554C6AFFA8CE
PSK identity: None
PSK identity hint: None
SRP username: None
Start Time: 1738292930
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: yes
---
DONE