SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
Hostname: | done Matches Common Name or/and SAN |
Expired: | done No (79 days till expiration) |
Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
Trusted: | done Yes, we were able to verify the certificate |
Self-Signed: | done No, the end-entity certificate is not self-signed |
Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
Resolves To: | 35.227.244.1 |
Reverse IP lookup: | 1.244.227.35.bc.googleusercontent.com. |
Nameserver: | ns-1375.awsdns-43.org. |
Nameserver: | ns-1678.awsdns-17.co.uk. |
Nameserver: | ns-482.awsdns-60.com. |
Nameserver: | ns-601.awsdns-11.net. |
General Information
Common Name: | *.shop.pe |
SANs: | DNS:*.shop.peDNS:shop.pe Total number of SANs: 2 |
Signature Algorithm: | sha256WithRSAEncryption |
Key Type: | RSA |
Key size: | 2048 bits |
Serial Number: | 8bc8a72a717bbe2df86a4b543bc038b |
Not Before: | Jul 13, 2023 00:00:00 GMT |
Not After: | Jul 12, 2024 23:59:59 GMT |
Number of certs: | 2 |
Revocation Status: | good |
OCSP Stapling: | Not Supported |
Server: | nginx |
HSTS: | max-age=31536000; includeSubDomains |
HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: *.shop.pe
Decode this certificate for verbose information → launchSubject Common Name | *.shop.pe |
Issuer Common Name | RapidSSL TLS RSA CA G1 |
Issuer Organization | DigiCert Inc |
Not Before: | Jul 13, 2023 00:00:00 GMT |
Not After: | Jul 12, 2024 23:59:59 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 8bc8a72a717bbe2df86a4b543bc038b |
SHA1 Fingerprint: | F9:8D:FC:0A:9A:9B:EE:21:07:4B:4A:DD:3C:1E:32:BD:EF:0B:01:59 |
MD5 Fingerprint: | 23:B9:71:7C:47:D1:23:F8:EF:A2:31:3D:86:EC:1D:C2 |
Certificate # 2 - Common Name: RapidSSL TLS RSA CA G1
Decode this certificate for verbose information → launchIn place? | Yes, this certificate directly certifies the preceding one |
Subject Common Name | RapidSSL TLS RSA CA G1 |
Subject Organization | DigiCert Inc |
Issuer Common Name | DigiCert Global Root G2 |
Issuer Organization | DigiCert Inc |
Not Before: | Nov 02, 2017 12:24:33 GMT |
Not After: | Nov 02, 2027 12:24:33 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | b259422ced9812a15a04e99528a0efa |
SHA1 Fingerprint: | CB:FE:9E:B4:3B:3B:37:FE:0D:FB:C4:C2:EB:2D:4E:07:D0:8B:D8:E8 |
MD5 Fingerprint: | 98:EB:0B:62:C3:FE:53:EA:C8:CA:A8:FD:B5:80:20:EE |
OpenSSL Handshake
depth=2 C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root G2 verify return:1 depth=1 C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1 verify return:1 depth=0 CN = *.shop.pe verify return:1 CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = *.shop.pe i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1 -----BEGIN CERTIFICATE----- MIIGGTCCBQGgAwIBAgIQCLyKcqcXu+LfhqS1Q7wDizANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZSYXBpZFNTTCBUTFMgUlNBIENBIEcx MB4XDTIzMDcxMzAwMDAwMFoXDTI0MDcxMjIzNTk1OVowFDESMBAGA1UEAwwJKi5z aG9wLnBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp++hfx2xgsDb Lb78MKHbIQk7p+D3105UrDYciDKKw2TQ3CBxYZEHmcqPeVqnH4h/SeTEgOJV3XCv ADABNYTFxazUXL/jEjEcQOKuaoyhFFxgFiTSkWEMkH9WyrFn3fGGX3tZ3dkUTAb3 WE5oMO57Fkb8fTgA0wWUVGXIncIQm9QGmibQYE3qMl8RDwooAVqr9T1Tbwul+l9x eu5q5rjv3fb1PhQ6aFP7DptVbpeyTGQL/8wBt/j3oQdGIdU+RrE96k4bywTepfAT j1a5CD1g7vJszwa3vpDbKGjuer6kLSMdqfUPxKStklptvcDceG1NvDmDm96LRI+X xiqhqq+k0QIDAQABo4IDGTCCAxUwHwYDVR0jBBgwFoAUDNtsgkkPSmcKuBTuesRI UojrVjgwHQYDVR0OBBYEFLDgaytY0NBD7BvZQpUZbUqnPHyRMB0GA1UdEQQWMBSC CSouc2hvcC5wZYIHc2hvcC5wZTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMD8GA1UdHwQ4MDYwNKAyoDCGLmh0dHA6Ly9jZHAu cmFwaWRzc2wuY29tL1JhcGlkU1NMVExTUlNBQ0FHMS5jcmwwPgYDVR0gBDcwNTAz BgZngQwBAgEwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdpY2VydC5jb20v Q1BTMHYGCCsGAQUFBwEBBGowaDAmBggrBgEFBQcwAYYaaHR0cDovL3N0YXR1cy5y YXBpZHNzbC5jb20wPgYIKwYBBQUHMAKGMmh0dHA6Ly9jYWNlcnRzLnJhcGlkc3Ns LmNvbS9SYXBpZFNTTFRMU1JTQUNBRzEuY3J0MAkGA1UdEwQCMAAwggF/BgorBgEE AdZ5AgQCBIIBbwSCAWsBaQB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZx H7WbAAABiU8GZrUAAAQDAEcwRQIgRL9heS79v2w91sivh0doFTyYQFU4kNF2qqZa JosITt4CIQCJEC7Tvb4oJzoletOiz/ILctq43SEB1DGw+P4mtnUmZAB2AEiw42va pkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABiU8GZpYAAAQDAEcwRQIgHxqM tTx35DNHsbmk/ca/Had2cJ8lxm2Csq69wKugAHwCIQCWel13WkK6785UVmMKGHhX KWdrTbqXZgMR+JZruaHkEgB3ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI 1/urAAABiU8GZmIAAAQDAEgwRgIhANWYliPY826f7YdoQsrVyezQ/LyiEeKbuQln WoIDdxkPAiEAsvtYZZejvVGpkVJm5KcnT1US9Rdq/xQuOX6KOHLNhxswDQYJKoZI hvcNAQELBQADggEBAL85DSn1ZCd4920MNg/h9QjphzKEW6ioNlLrGHwolONiZZZH sB22gz+khz+3inRHkG4g9LPBH8TeJ4sVhIGFmFNAXA/hH1fkSTo16eMTnQYaCU2q eJmp3IjMeL7QBTlA1Hhbh4EaxrCTPoBBg7GRV6bpGkcnyY46/UVntEqTniXybKxT ir6NO/xaNjoWoXI0AYoDtU3XphpkVclGolNELO45eIPg1wkap9yxtRx658HGf6yQ UbVysybDtXM5UtMi7OQAbkfCNtREAxGn/ts2qWZGDMXbW8aS95RHDlMiARpsWBHt dcn8YqtMjwI/mQ7JzA18TQH+AXxyxY/EGdeECwA= -----END CERTIFICATE----- 1 s:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1 i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root G2 -----BEGIN CERTIFICATE----- MIIEszCCA5ugAwIBAgIQCyWUIs7ZgSoVoE6ZUooO+jANBgkqhkiG9w0BAQsFADBh MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMSAwHgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBH MjAeFw0xNzExMDIxMjI0MzNaFw0yNzExMDIxMjI0MzNaMGAxCzAJBgNVBAYTAlVT MRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5j b20xHzAdBgNVBAMTFlJhcGlkU1NMIFRMUyBSU0EgQ0EgRzEwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQC/uVklRBI1FuJdUEkFCuDL/I3aJQiaZ6aibRHj ap/ap9zy1aYNrphe7YcaNwMoPsZvXDR+hNJOo9gbgOYVTPq8gXc84I75YKOHiVA4 NrJJQZ6p2sJQyqx60HkEIjzIN+1LQLfXTlpuznToOa1hyTD0yyitFyOYwURM+/CI 8FNFMpBhw22hpeAQkOOLmsqT5QZJYeik7qlvn8gfD+XdDnk3kkuuu0eG+vuyrSGr 5uX5LRhFWlv1zFQDch/EKmd163m6z/ycx/qLa9zyvILc7cQpb+k7TLra9WE17YPS n9ANjG+ECo9PDW3N9lwhKQCNvw1gGoguyCQu7HE7BnW8eSSFAgMBAAGjggFmMIIB YjAdBgNVHQ4EFgQUDNtsgkkPSmcKuBTuesRIUojrVjgwHwYDVR0jBBgwFoAUTiJU IBiV5uNu5g/6+rkS7QYXjzkwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjASBgNVHRMBAf8ECDAGAQH/AgEAMDQGCCsGAQUFBwEB BCgwJjAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMEIGA1Ud HwQ7MDkwN6A1oDOGMWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEds b2JhbFJvb3RHMi5jcmwwYwYDVR0gBFwwWjA3BglghkgBhv1sAQEwKjAoBggrBgEF BQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzALBglghkgBhv1sAQIw CAYGZ4EMAQIBMAgGBmeBDAECAjANBgkqhkiG9w0BAQsFAAOCAQEAGUSlOb4K3Wtm SlbmE50UYBHXM0SKXPqHMzk6XQUpCheF/4qU8aOhajsyRQFDV1ih/uPIg7YHRtFi CTq4G+zb43X1T77nJgSOI9pq/TqCwtukZ7u9VLL3JAq3Wdy2moKLvvC8tVmRzkAe 0xQCkRKIjbBG80MSyDX/R4uYgj6ZiNT/Zg6GI6RofgqgpDdssLc0XIRQEotxIZcK zP3pGJ9FCbMHmMLLyuBd+uCWvVcF2ogYAawufChS/PT61D9rqzPRS5I2uqa3tmIT 44JhJgWhBnFMb7AGQkvNq9KNS9dd3GWc17H/dXa1enoxzWjE0hBdFjxPhUb0W3wi 8o34/m8Fxw== -----END CERTIFICATE----- --- Server certificate subject=CN = *.shop.pe issuer=C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 3267 bytes and written 398 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) --- DONE