SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
| Hostname: | done Matches Common Name or/and SAN |
| Expired: | done No (76 days till expiration) |
| Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
| Trusted: | done Yes, we were able to verify the certificate |
| Self-Signed: | done No, the end-entity certificate is not self-signed |
| Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
| Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
| OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
| Resolves To: | 35.212.10.164 |
| Reverse IP lookup: | 164.10.212.35.bc.googleusercontent.com. |
| Nameserver: | ns18.domaincontrol.com. |
| Nameserver: | ns17.domaincontrol.com. |
General Information
| Common Name: | redrockroofing.com |
| SANs: | DNS:redrockroofing.comDNS:www.redrockroofing.com Total number of SANs: 2 |
| Signature Algorithm: | sha256WithRSAEncryption |
| Key Type: | RSA |
| Key size: | 2048 bits |
| Serial Number: | 4f70f3c670f3bb51a252088cafd82cbd050 |
| Not Before: | Nov 04, 2024 17:52:13 GMT |
| Not After: | Feb 02, 2025 17:52:12 GMT |
| Number of certs: | 2 |
| Revocation Status: | good |
| OCSP Stapling: | Supported |
| Server: | nginx |
| HSTS: | Not Supported |
| HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: redrockroofing.com
Decode this certificate for verbose information → launch| Subject Common Name | redrockroofing.com |
| Issuer Common Name | R11 |
| Issuer Organization | Let's Encrypt |
| Not Before: | Nov 04, 2024 17:52:13 GMT |
| Not After: | Feb 02, 2025 17:52:12 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 4f70f3c670f3bb51a252088cafd82cbd050 |
| SHA1 Fingerprint: | F4:75:CF:10:A1:E3:98:0C:31:B6:31:49:BF:0A:D9:F0:26:EE:73:ED |
| MD5 Fingerprint: | B0:52:F0:B0:86:5D:B2:EA:EB:C7:88:94:7D:CB:01:BA |
Certificate # 2 - Common Name: R11
Decode this certificate for verbose information → launch| In place? | Yes, this certificate directly certifies the preceding one |
| Subject Common Name | R11 |
| Subject Organization | Let's Encrypt |
| Issuer Common Name | ISRG Root X1 |
| Issuer Organization | Internet Security Research Group |
| Not Before: | Mar 13, 2024 00:00:00 GMT |
| Not After: | Mar 12, 2027 23:59:59 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 8a7d3e13d62f30ef2386bd29076b34f8 |
| SHA1 Fingerprint: | 69:6D:B3:AF:0D:FF:C1:7E:65:C6:A2:0D:92:5C:5A:7B:D2:4D:EC:7E |
| MD5 Fingerprint: | 2F:AC:04:55:31:47:F4:6A:49:DF:9B:4E:BE:A6:DF:43 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1
verify return:1
depth=1 C = US, O = Let's Encrypt, CN = R11
verify return:1
depth=0 CN = redrockroofing.com
verify return:1
CONNECTED(00000003)
OCSP response:
======================================
OCSP Response Data:
OCSP Response Status: successful (0x0)
Response Type: Basic OCSP Response
Version: 1 (0x0)
Responder Id: C = US, O = Let's Encrypt, CN = R11
Produced At: Nov 17 10:52:00 2024 GMT
Responses:
Certificate ID:
Hash Algorithm: sha1
Issuer Name Hash: 1A52B9B459E4C33398217E866D4BBD8A3BD667CE
Issuer Key Hash: 08B9113BA5D08518B4EA0FA0AD9F861E8EFC3827
Serial Number: 04F70F3C670F3BB51A252088CAFD82CBD050
Cert Status: good
This Update: Nov 17 10:52:00 2024 GMT
Next Update: Nov 24 10:51:58 2024 GMT
Signature Algorithm: sha256WithRSAEncryption
0f:dc:b6:3e:61:56:bc:d0:89:9f:27:81:a5:6a:b2:0a:1e:f3:
77:ed:e0:fd:8c:9a:8f:75:a1:df:a5:0d:8c:89:12:66:69:93:
be:e8:7b:a0:e5:c8:f5:d3:bd:b5:89:fc:1b:93:e5:66:90:53:
00:62:80:c1:61:fa:7a:ac:03:43:f0:01:be:29:c7:99:03:8b:
19:3d:7f:2c:8c:36:38:5d:bb:8d:e0:1c:2f:f1:ba:d8:f3:f3:
d7:a8:db:14:65:a9:d8:81:60:19:6d:a3:a7:12:a5:05:85:ae:
02:b9:e6:2c:6a:01:21:ab:cb:7b:f4:64:91:24:77:94:15:7c:
23:c6:bb:1b:ae:86:e8:2f:aa:51:90:4f:f3:9a:26:24:50:da:
bf:19:4b:75:2a:4f:b5:15:2f:7c:25:bb:12:8b:d6:8d:4b:0b:
91:fc:35:62:f1:3b:a9:da:af:7c:19:1d:fe:30:0a:f0:e6:a1:
47:31:f2:c2:0d:33:97:fa:2a:3f:7e:ea:af:d8:ec:48:85:bb:
db:9c:0a:ab:8a:b7:8d:48:91:bb:48:b8:f1:c9:6c:84:30:5c:
f4:a0:0d:c3:02:cc:b5:30:5f:73:c1:fb:1f:5f:12:34:e7:10:
a4:1f:af:75:3e:56:42:1c:af:97:36:3e:04:83:c7:19:0e:db:
8f:f6:7e:f2
======================================
---
Certificate chain
0 s:CN = redrockroofing.com
i:C = US, O = Let's Encrypt, CN = R11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
1 s:C = US, O = Let's Encrypt, CN = R11
i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=CN = redrockroofing.com
issuer=C = US, O = Let's Encrypt, CN = R11
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: ECDH, P-384, 384 bits
---
SSL handshake has read 3821 bytes and written 803 bytes
Verification: OK
---
New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
---
DONE