SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
| Hostname: | done Matches Common Name or/and SAN |
| Expired: | done No (84 days till expiration) |
| Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
| Trusted: | close We were unable to verify this certificate |
| Self-Signed: | done No, the end-entity certificate is not self-signed |
| Chain Issues: | close The order of certificates is invalid or certificates cannot build certification path |
| Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
| OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
| Resolves To: | 103.140.42.220 |
| Reverse IP lookup: | No records found |
| Nameserver: | isp2.viapraga.cz. |
| Nameserver: | skoda3.skoda-auto.cz. |
| Nameserver: | skoda2.skoda-auto.cz. |
General Information
| Common Name: | skoda-quangninh.vn |
| SANs: | DNS:skoda-quangninh.vn Total number of SANs: 1 |
| Signature Algorithm: | sha384WithRSAEncryption |
| Key Type: | RSA |
| Key size: | 2048 bits |
| Serial Number: | da4d9a99b6cb8d845241d0ba4b1fb07e |
| Not Before: | Jan 23, 2025 00:00:00 GMT |
| Not After: | Apr 23, 2025 23:59:59 GMT |
| Number of certs: | 2 |
| Revocation Status: | good |
| OCSP Stapling: | Not Supported |
| Server: | LiteSpeed |
| HSTS: | Not Supported |
| HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: skoda-quangninh.vn
Decode this certificate for verbose information → launch| Subject Common Name | skoda-quangninh.vn |
| Issuer Common Name | ZeroSSL RSA Domain Secure Site CA |
| Issuer Organization | ZeroSSL |
| Not Before: | Jan 23, 2025 00:00:00 GMT |
| Not After: | Apr 23, 2025 23:59:59 GMT |
| Signature Algorithm: | sha384WithRSAEncryption |
| Serial Number: | da4d9a99b6cb8d845241d0ba4b1fb07e |
| SHA1 Fingerprint: | 26:CC:C7:4D:E9:9D:95:2B:93:87:63:0E:2A:E7:73:F5:97:C5:56:C1 |
| MD5 Fingerprint: | DC:21:E2:45:77:FC:0A:A5:9B:D3:6F:B6:2D:33:5D:CE |
Certificate # 2 - Common Name: R11
Decode this certificate for verbose information → launch| In place? | warning No, this certificate does not directly certify the preceding one |
| Subject Common Name | R11 |
| Subject Organization | Let's Encrypt |
| Issuer Common Name | ISRG Root X1 |
| Issuer Organization | Internet Security Research Group |
| Not Before: | Mar 13, 2024 00:00:00 GMT |
| Not After: | Mar 12, 2027 23:59:59 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 8a7d3e13d62f30ef2386bd29076b34f8 |
| SHA1 Fingerprint: | 69:6D:B3:AF:0D:FF:C1:7E:65:C6:A2:0D:92:5C:5A:7B:D2:4D:EC:7E |
| MD5 Fingerprint: | 2F:AC:04:55:31:47:F4:6A:49:DF:9B:4E:BE:A6:DF:43 |
OpenSSL Handshake
depth=0 CN = skoda-quangninh.vn verify error:num=20:unable to get local issuer certificate verify return:1 depth=0 CN = skoda-quangninh.vn verify error:num=21:unable to verify the first certificate verify return:1 depth=0 CN = skoda-quangninh.vn verify return:1 CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = skoda-quangninh.vn i:C = AT, O = ZeroSSL, CN = ZeroSSL RSA Domain Secure Site CA -----BEGIN CERTIFICATE----- MIIGczCCBFugAwIBAgIRANpNmpm2y42EUkHQuksfsH4wDQYJKoZIhvcNAQEMBQAw SzELMAkGA1UEBhMCQVQxEDAOBgNVBAoTB1plcm9TU0wxKjAoBgNVBAMTIVplcm9T U0wgUlNBIERvbWFpbiBTZWN1cmUgU2l0ZSBDQTAeFw0yNTAxMjMwMDAwMDBaFw0y NTA0MjMyMzU5NTlaMB0xGzAZBgNVBAMTEnNrb2RhLXF1YW5nbmluaC52bjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJea5z2Uo3zOrJyg0vNDIQu5DdkT rziL8w37fOyXuEtXTwPZ/QOYw/1wS13h/IGQadq/zj/kVLNIKiANevS0HIEz6rqc NTTkF5eQOM4SFMvc9ZwZaQ8UAAMcMt00D151Txqf/lGRlyTKHbTUSopatsNJKu7A 5NKC/Kg0RzDK2AnAQpMHuijenPvWevYXrvj8+RLEVCvR4eTLyY7whlEL7ICuAmpL NqGAWEsLL1fYIBRrenB0ajC1IU1PHWpFq8AWOY0i6N4NCVBCwFY6FqoCFDtpvtbO CHsa/Exbq6hfq2ezfqabVaj+Yw8QQQafzOkje1qGUsQ5t62Wl9NK/DZDCicCAwEA AaOCAn4wggJ6MB8GA1UdIwQYMBaAFMjZeGii2Rlo1T1y3l8KPty1hoamMB0GA1Ud DgQWBBQzc0C1pnpXnykKQVhg6q9FsCrZojAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0T AQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwSQYDVR0gBEIw QDA0BgsrBgEEAbIxAQICTjAlMCMGCCsGAQUFBwIBFhdodHRwczovL3NlY3RpZ28u Y29tL0NQUzAIBgZngQwBAgEwgYgGCCsGAQUFBwEBBHwwejBLBggrBgEFBQcwAoY/ aHR0cDovL3plcm9zc2wuY3J0LnNlY3RpZ28uY29tL1plcm9TU0xSU0FEb21haW5T ZWN1cmVTaXRlQ0EuY3J0MCsGCCsGAQUFBzABhh9odHRwOi8vemVyb3NzbC5vY3Nw LnNlY3RpZ28uY29tMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcAzxFW7tUufK/z h1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGUklqabAAABAMASDBGAiEAjX49QWOD 7ZcgSZPdpOZa0UCtMzIRgCg4hDfuFSQNOUYCIQD4KTB2t1REIxCq4i341csFFx/O r74BAfl6gXveWS0e8wB1AMz7D2qFcQll/pWbU87psnwi6YVcDZeNtql+VMD+TA2w AAABlJJamnQAAAQDAEYwRAIgOIP3qeJvyN86hKdujLh986gCJ/y9EGVaG2tfcqDz n78CIAZz4xUUlJku8P2FQOvImxo4sk23BB76tv5bBDIA+eppMB0GA1UdEQQWMBSC EnNrb2RhLXF1YW5nbmluaC52bjANBgkqhkiG9w0BAQwFAAOCAgEAHrcCoapLnj8a XfgHYbmyObvwC8zGax4C8Gr07uVKkLBPbF6RZ5jsCwY9Qvs5oUxGYqCFXGFwxbYv 6LCPVzEGgqFmfNqKP2TQ4G68mR6EEA+lXt+4wy/th/wR6vt/b6BqvaPzA7jsfWJU sOo2WEGhQfwDNp9mm0TE0BU/szsnl49sweezO023GOjZS2KFTnGB4bu3qqS7lzk3 lWERPcdLE7sGWeuUTmJBHWsP2ZDs3aHAYBjcIN3lKo/cKFBmvoTWDnDloAFJUihM F98kS9z9RzghmFcjojjP3fK0zbzWxD7SOSBB+KmDYbQHXVcOrBvmwYloIylOpHTR MjM9ZXTrdNbtGz7EniJYwc03GyNK5zz9k3sATT+w+3vr9FVR+3qg0X4uJKW9arfZ hVN4vA01C8yPasKwdADt9sb9ElMDh7yhRHYH8eW3/FhojjObVt5/w6VuRuz91vo3 7Z8n7C35i2L+NB/79++a06Ds+MlmEP06Q8peMDcD0JbILD775uiapvhrXcyM1YX5 HVW3aJ2awZzg4Cm9NxhV9HukzP3IhFLVJTVtycnmmD7ud2K2FChNoCT7tr/j2sha zML0mrbk83Yj1xP5hRdwbbA7C4H4rgZsxzml/srMXy/nxkBB49IbCYHlNQ4JONjq III3EbCUI1EnsjtymMQqEFPPG3Ryn4k= -----END CERTIFICATE----- 1 s:C = US, O = Let's Encrypt, CN = R11 i:C = US, O = Internet Security Research Group, CN = ISRG Root X1 -----BEGIN CERTIFICATE----- MIIFBjCCAu6gAwIBAgIRAIp9PhPWLzDvI4a9KQdrNPgwDQYJKoZIhvcNAQELBQAw TzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2Vh cmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjQwMzEzMDAwMDAw WhcNMjcwMzEyMjM1OTU5WjAzMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3Mg RW5jcnlwdDEMMAoGA1UEAxMDUjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAuoe8XBsAOcvKCs3UZxD5ATylTqVhyybKUvsVAbe5KPUoHu0nsyQYOWcJ DAjs4DqwO3cOvfPlOVRBDE6uQdaZdN5R2+97/1i9qLcT9t4x1fJyyXJqC4N0lZxG AGQUmfOx2SLZzaiSqhwmej/+71gFewiVgdtxD4774zEJuwm+UE1fj5F2PVqdnoPy 6cRms+EGZkNIGIBloDcYmpuEMpexsr3E+BUAnSeI++JjF5ZsmydnS8TbKF5pwnnw SVzgJFDhxLyhBax7QG0AtMJBP6dYuC/FXJuluwme8f7rsIU5/agK70XEeOtlKsLP Xzze41xNG/cLJyuqC0J3U095ah2H2QIDAQABo4H4MIH1MA4GA1UdDwEB/wQEAwIB hjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEgYDVR0TAQH/BAgwBgEB /wIBADAdBgNVHQ4EFgQUxc9GpOr0w8B6bJXELbBeki8m47kwHwYDVR0jBBgwFoAU ebRZ5nu25eQBc4AIiMgaWPbpm24wMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzAC hhZodHRwOi8veDEuaS5sZW5jci5vcmcvMBMGA1UdIAQMMAowCAYGZ4EMAQIBMCcG A1UdHwQgMB4wHKAaoBiGFmh0dHA6Ly94MS5jLmxlbmNyLm9yZy8wDQYJKoZIhvcN AQELBQADggIBAE7iiV0KAxyQOND1H/lxXPjDj7I3iHpvsCUf7b632IYGjukJhM1y v4Hz/MrPU0jtvfZpQtSlET41yBOykh0FX+ou1Nj4ScOt9ZmWnO8m2OG0JAtIIE38 01S0qcYhyOE2G/93ZCkXufBL713qzXnQv5C/viOykNpKqUgxdKlEC+Hi9i2DcaR1 e9KUwQUZRhy5j/PEdEglKg3l9dtD4tuTm7kZtB8v32oOjzHTYw+7KdzdZiw/sBtn UfhBPORNuay4pJxmY/WrhSMdzFO2q3Gu3MUBcdo27goYKjL9CTF8j/Zz55yctUoV aneCWs/ajUX+HypkBTA+c8LGDLnWO2NKq0YD/pnARkAnYGPfUDoHR9gVSp/qRx+Z WghiDLZsMwhN1zjtSC0uBWiugF3vTNzYIEFfaPG7Ws3jDrAMMYebQ95JQ+HIBD/R PBuHRTBpqKlyDnkSHDHYPiNX3adPoPAcgdF3H2/W0rmoswMWgTlLn1Wu0mrks7/q pdWfS6PJ1jty80r2VKsM/Dj3YIDfbjXKdaFU5C+8bhfJGqU3taKauuz0wHVGT3eo 6FlWkWYtbt4pgdamlwVeZEW+LM7qZEJEsMNPrfC03APKmZsJgpWCDWOKZvkZcvjV uYkQ4omYCTX5ohy+knMjdOmdH9c7SpqEWBDC86fiNex+O0XOMEZSa8DA -----END CERTIFICATE----- --- Server certificate subject=CN = skoda-quangninh.vn issuer=C = AT, O = ZeroSSL, CN = ZeroSSL RSA Domain Secure Site CA --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 3440 bytes and written 409 bytes Verification error: unable to verify the first certificate --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 21 (unable to verify the first certificate) --- DONE