SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
Hostname: | done Matches Common Name or/and SAN |
Expired: | done No (80 days till expiration) |
Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
Trusted: | done Yes, we were able to verify the certificate |
Self-Signed: | done No, the end-entity certificate is not self-signed |
Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
Resolves To: | 34.75.233.163 |
Reverse IP lookup: | 163.233.75.34.bc.googleusercontent.com. |
Nameserver: | ns73.domaincontrol.com. |
Nameserver: | ns74.domaincontrol.com. |
General Information
Common Name: | psychphransisco.com |
SANs: | DNS:api.psychphransisco.comDNS:psychphransisco.comDNS:www.psychphransisco.com Total number of SANs: 3 |
Signature Algorithm: | ecdsa-with-SHA384 |
Key Type: | ECDSA (secp256r1) |
Key size: | 256 bits |
Serial Number: | 38123571ed6cb4679bb98032da66cf37fde |
Not Before: | Jun 25, 2024 15:23:00 GMT |
Not After: | Sep 23, 2024 15:22:59 GMT |
Number of certs: | 2 |
Revocation Status: | good |
OCSP Stapling: | Not Supported |
Server: | nginx/1.18.0 (Ubuntu) |
HSTS: | Not Supported |
HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: psychphransisco.com
Decode this certificate for verbose information → launchSubject Common Name | psychphransisco.com |
Issuer Common Name | E5 |
Issuer Organization | Let's Encrypt |
Not Before: | Jun 25, 2024 15:23:00 GMT |
Not After: | Sep 23, 2024 15:22:59 GMT |
Signature Algorithm: | ecdsa-with-SHA384 |
Serial Number: | 38123571ed6cb4679bb98032da66cf37fde |
SHA1 Fingerprint: | 08:8D:2E:36:9E:72:8B:20:72:FF:56:23:A2:B0:B2:0A:AD:BF:36:F3 |
MD5 Fingerprint: | AE:B3:6B:99:A7:8D:5C:84:FA:88:25:F0:53:A8:19:D7 |
Certificate # 2 - Common Name: E5
Decode this certificate for verbose information → launchIn place? | Yes, this certificate directly certifies the preceding one |
Subject Common Name | E5 |
Subject Organization | Let's Encrypt |
Issuer Common Name | ISRG Root X1 |
Issuer Organization | Internet Security Research Group |
Not Before: | Mar 13, 2024 00:00:00 GMT |
Not After: | Mar 12, 2027 23:59:59 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 838f6c63ceb1398c6206628315c9fdde |
SHA1 Fingerprint: | 5F:28:D9:C5:89:EE:4B:F3:1A:11:B7:8C:72:B8:D1:3F:07:9D:DC:45 |
MD5 Fingerprint: | 54:7A:B1:C0:5C:A8:5A:6E:68:2C:91:28:0F:EF:D7:55 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1 verify return:1 depth=1 C = US, O = Let's Encrypt, CN = E5 verify return:1 depth=0 CN = psychphransisco.com verify return:1 CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = psychphransisco.com i:C = US, O = Let's Encrypt, CN = E5 -----BEGIN CERTIFICATE----- MIIDujCCA0CgAwIBAgISA4EjVx7Wy0Z5u5gDLaZs83/eMAoGCCqGSM49BAMDMDIx CzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJF NTAeFw0yNDA2MjUxNTIzMDBaFw0yNDA5MjMxNTIyNTlaMB4xHDAaBgNVBAMTE3Bz eWNocGhyYW5zaXNjby5jb20wWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAT1llMV vGNmDArpmbtlQuYa1VhkEfT0s4LIFT1vnoZfxcKx6aJ3P28gyRXIUcCO8F5P2aaC 6B2jaTa89GX916nGo4ICSDCCAkQwDgYDVR0PAQH/BAQDAgeAMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT+L7Ah h2F0cZC4xscLTHhDS209KzAfBgNVHSMEGDAWgBSfK1/PPCFPnQS37SssxMZwi9LX DTBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9lNS5vLmxlbmNy Lm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL2U1LmkubGVuY3Iub3JnLzBQBgNVHREE STBHghdhcGkucHN5Y2hwaHJhbnNpc2NvLmNvbYITcHN5Y2hwaHJhbnNpc2NvLmNv bYIXd3d3LnBzeWNocGhyYW5zaXNjby5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEw ggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwAZmBBxCfDWUi4wgNKeP2S7g24ozPkP Uo7u385KPxa0ygAAAZBQNSvFAAAEAwBIMEYCIQDP1/T42NLLWU3yPwtZ6QceZlBo D3lfWrGAdyqSuHYPMwIhAMUt8uXnPq7mtcCJJ7b/icWPiq0D1vwvYl3lPVu4j2aw AHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGQUDUrsgAABAMA RzBFAiEAqGKVnpri0kK7IUlxG2a4ZCFhpTlg9Q3xy4PS8nYQicwCIEQBCI0lGz0Y IM8kBwmWadjuYaBeVEl9/G02KmVEXRUiMAoGCCqGSM49BAMDA2gAMGUCMQCcxizT WGBM9yDIuWlcYP1NkvKSJAmAfvy90hbQBr8fA8jSMkkbmVoesckKT4TacfYCMAzC lQo+iC/8ZIfdqco1cg8NlSiVOOj3j5543Q5LbhKHQLkaYZkIyKxQ+EcaDAB++Q== -----END CERTIFICATE----- 1 s:C = US, O = Let's Encrypt, CN = E5 i:C = US, O = Internet Security Research Group, CN = ISRG Root X1 -----BEGIN CERTIFICATE----- MIIEVzCCAj+gAwIBAgIRAIOPbGPOsTmMYgZigxXJ/d4wDQYJKoZIhvcNAQELBQAw TzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2Vh cmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAw WhcNMjcwMzEyMjM1OTU5WjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3Mg RW5jcnlwdDELMAkGA1UEAxMCRTUwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAQNCzqK a2GOtu/cX1jnxkJFVKtj9mZhSAouWXW0gQI3ULc/FnncmOyhKJdyIBwsz9V8UiBO VHhbhBRrwJCuhezAUUE8Wod/Bk3U/mDR+mwt4X2VEIiiCFQPmRpM5uoKrNijgfgw gfUwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcD ATASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBSfK1/PPCFPnQS37SssxMZw i9LXDTAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcB AQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0g BAwwCjAIBgZngQwBAgEwJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVu Y3Iub3JnLzANBgkqhkiG9w0BAQsFAAOCAgEAH3KdNEVCQdqk0LKyuNImTKdRJY1C 2uw2SJajuhqkyGPY8C+zzsufZ+mgnhnq1A2KVQOSykOEnUbx1cy637rBAihx97r+ bcwbZM6sTDIaEriR/PLk6LKs9Be0uoVxgOKDcpG9svD33J+G9Lcfv1K9luDmSTgG 6XNFIN5vfI5gs/lMPyojEMdIzK9blcl2/1vKxO8WGCcjvsQ1nJ/Pwt8LQZBfOFyV XP8ubAp/au3dc4EKWG9MO5zcx1qT9+NXRGdVWxGvmBFRAajciMfXME1ZuGmk3/GO koAM7ZkjZmleyokP1LGzmfJcUd9s7eeu1/9/eg5XlXd/55GtYjAM+C4DG5i7eaNq cm2F+yxYIPt6cbbtYVNJCGfHWqHEQ4FYStUyFnv8sjyqU8ypgZaNJ9aVcWSICLOI E1/Qv/7oKsnZCWJ926wU6RqG1OYPGOi1zuABhLw61cuPVDT28nQS/e6z95cJXq0e K1BcaJ6fJZsmbjRgD5p3mvEf5vdQM7MCEvU0tHbsx2I5mHHJoABHb8KVBgWp/lcX GWiWaeOyB7RP+OfDtvi2OsapxXiV7vNVs7fMlrRjY1joKaqmmycnBvAq14AEbtyL sVfOS66B8apkeFX2NY4XPEYV4ZSCe8VHPrdrERk2wILG3T/EGmSIkCYVUMSnjmJd VQD9F6Na/+zmXCc= -----END CERTIFICATE----- --- Server certificate subject=CN = psychphransisco.com issuer=C = US, O = Let's Encrypt, CN = E5 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 2451 bytes and written 410 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) --- DONE