SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
| Hostname: | done Matches Common Name or/and SAN |
| Expired: | close Yes (expired 102 days ago) |
| Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
| Trusted: | done Yes, we were able to verify the certificate |
| Self-Signed: | done No, the end-entity certificate is not self-signed |
| Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
| Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
DNS Information
| Resolves To: | 185.151.30.188 |
| Reverse IP lookup: | 185-151-30-188.ptr4.stackcp.net. |
| Nameserver: | ns0.swiftinter.net. |
| Nameserver: | ns1.swiftinter.net. |
| Nameserver: | ns2.swiftinternet.co.uk. |
| Nameserver: | ns.stephanelustig.com. |
General Information
| Common Name: | stephanelustig.com |
| SANs: | DNS:stephanelustig.comDNS:www.stephanelustig.com Total number of SANs: 2 |
| Signature Algorithm: | sha384WithRSAEncryption |
| Key Type: | RSA |
| Key size: | 2048 bits |
| Serial Number: | 949e13bb52eada580a013751852c7040 |
| Not Before: | Jan 17, 2024 00:00:00 GMT |
| Not After: | Apr 16, 2024 23:59:59 GMT |
| Number of certs: | 2 |
| Revocation Status: | This check is not applicable to expired certificates |
| OCSP Stapling: | Not Supported |
| Server: | Apache |
| HSTS: | Not Supported |
| HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: stephanelustig.com
Decode this certificate for verbose information → launch| Subject Common Name | stephanelustig.com |
| Issuer Common Name | ZeroSSL RSA Domain Secure Site CA |
| Issuer Organization | ZeroSSL |
| Not Before: | Jan 17, 2024 00:00:00 GMT |
| Not After: | Apr 16, 2024 23:59:59 GMT |
| Signature Algorithm: | sha384WithRSAEncryption |
| Serial Number: | 949e13bb52eada580a013751852c7040 |
| SHA1 Fingerprint: | DF:BF:DC:3B:57:07:1F:A0:AF:87:E9:28:71:E6:84:B8:FE:F5:9F:01 |
| MD5 Fingerprint: | 04:65:30:B5:90:95:9A:8C:4A:A4:9A:32:C0:92:61:61 |
Certificate # 2 - Common Name: ZeroSSL RSA Domain Secure Site CA
Decode this certificate for verbose information → launch| In place? | Yes, this certificate directly certifies the preceding one |
| Subject Common Name | ZeroSSL RSA Domain Secure Site CA |
| Subject Organization | ZeroSSL |
| Issuer Common Name | USERTrust RSA Certification Authority |
| Issuer Organization | The USERTRUST Network |
| Not Before: | Jan 30, 2020 00:00:00 GMT |
| Not After: | Jan 29, 2030 23:59:59 GMT |
| Signature Algorithm: | sha384WithRSAEncryption |
| Serial Number: | 6c55abdbd00792c79d070cd8119ed6bf |
| SHA1 Fingerprint: | C8:1A:8B:D1:F9:CF:6D:84:C5:25:F3:78:CA:1D:3F:8C:30:77:0E:34 |
| MD5 Fingerprint: | 58:AA:23:10:7C:8D:5A:ED:EA:BD:0D:5E:32:57:85:92 |
OpenSSL Handshake
depth=2 C = US, ST = New Jersey, L = Jersey City, O = The USERTRUST Network, CN = USERTrust RSA Certification Authority verify return:1 depth=1 C = AT, O = ZeroSSL, CN = ZeroSSL RSA Domain Secure Site CA verify return:1 depth=0 CN = stephanelustig.com verify error:num=10:certificate has expired notAfter=Apr 16 23:59:59 2024 GMT verify return:1 depth=0 CN = stephanelustig.com notAfter=Apr 16 23:59:59 2024 GMT verify return:1 CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = stephanelustig.com i:C = AT, O = ZeroSSL, CN = ZeroSSL RSA Domain Secure Site CA -----BEGIN CERTIFICATE----- MIIGijCCBHKgAwIBAgIRAJSeE7tS6tpYCgE3UYUscEAwDQYJKoZIhvcNAQEMBQAw SzELMAkGA1UEBhMCQVQxEDAOBgNVBAoTB1plcm9TU0wxKjAoBgNVBAMTIVplcm9T U0wgUlNBIERvbWFpbiBTZWN1cmUgU2l0ZSBDQTAeFw0yNDAxMTcwMDAwMDBaFw0y NDA0MTYyMzU5NTlaMB0xGzAZBgNVBAMTEnN0ZXBoYW5lbHVzdGlnLmNvbTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKptI3OCD2m+8pdzOVR41DbUA8yp /yF3Zq44IIgE5TTTV4qhB0ZZDCDcllpI+k13tzBg2V1SpMcwDAw/d9/mlDXyv7mZ I4hjBhIjdu3Zdao8R3CXjblp+byY6QbvOqndisjlclOKSwklKpvzGOfj+PJjs59P JoayiEfDYDmlFzYfgJ9mF8erUfzCUh3t3JkjwxAJf7TxSnzchoPWd2wx8EZeb5gk GqZAgnWTQvqGtkrn+fQ7gx5gGr+NUFNKFdWSg4GVA9S7LdJJHSjMrCyXBcy0Xipl Ux8u4TvQfgcvKKjIb29E3gTLczgk5SjqOQ2YorQ591iPKSgdgj0QxfDOLE8CAwEA AaOCApUwggKRMB8GA1UdIwQYMBaAFMjZeGii2Rlo1T1y3l8KPty1hoamMB0GA1Ud DgQWBBT6AIIO93unhJkrBocxhUNJctXqtzAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0T AQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwSQYDVR0gBEIw QDA0BgsrBgEEAbIxAQICTjAlMCMGCCsGAQUFBwIBFhdodHRwczovL3NlY3RpZ28u Y29tL0NQUzAIBgZngQwBAgEwgYgGCCsGAQUFBwEBBHwwejBLBggrBgEFBQcwAoY/ aHR0cDovL3plcm9zc2wuY3J0LnNlY3RpZ28uY29tL1plcm9TU0xSU0FEb21haW5T ZWN1cmVTaXRlQ0EuY3J0MCsGCCsGAQUFBzABhh9odHRwOi8vemVyb3NzbC5vY3Nw LnNlY3RpZ28uY29tMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAdv+IPwq2+5VR wmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGNF4XPoAAABAMARzBFAiEA79QxwBBa CFVL6CbN1UjwqSacPKxASVh/Mi8XagN4Q50CIDCn6RBSkmw7s9V3zQWEPqdYClyh hQpnnZmYnLFQ9l/kAHUAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcA AAGNF4XQcgAABAMARjBEAiAFK4t5CLVoHkxlwh+aVIKc2ri+Rmhzw8zXzrhLG7l9 1gIgK6iublrw8WZrquBxfYzxfzpD69jt14zGH1qFZPFv/RowNQYDVR0RBC4wLIIS c3RlcGhhbmVsdXN0aWcuY29tghZ3d3cuc3RlcGhhbmVsdXN0aWcuY29tMA0GCSqG SIb3DQEBDAUAA4ICAQASkmTf6qFhNo0Vz3qWDeglPg+tJ+3AlOWaiNp1V7kHBw5t VMHt51y+eM8SrlzjVggLrI98BRmZd3uxxbW1Akbj5nQ96VdFmi2YK2K59MQQjj4I 8vGgdehcqMKpjTU/kJ7bTujD8HbxKpY1Q4MKuQAdTSE7R4XnbNC6I+bWRQ+fmO5P Pj7Xr61Z1OD/KNFY7vvNguCPg86j/qPuI9pjxGfgN9Lw8PZhoy2oWL3AnLde+Mvm jldxbYmh7WVPhAYtQaB/88YvBgJ7wp6CbyXL5NVWXmSV59MDUpx3up7tQI9bNtig QrG7zu4T7PTYopVbZJ0o+tZ3dIkXWGlMVEZJXvDWflOunbbowTZsQY7+WkvNmdZH nq5lxi/QFO5eRB1S0KeuMXo/QHpxmygXQphhqFyXUAkKzA18Rchxpj9As5AKP6Qi 6IlzMybZRsbQcqjfaIxr7d7jlfgMshxr6ueCxWsJod+aQljWjKkkOD6oJCoeQfVA sutQDMZN9Wi3Uyop6CUQDvJDMA+XgHi/0kQWfoArag9YeaWF4o7UmIsfVMzQTAQo HOHBFGRCLMvbPGUUDA5EUurjfWe/yXvUpizYdY0AUs4VRUJkizt0arVR4RYWGE26 jvLm1kiDdUPfDnKGMqEzOPkr65T5SJP66+PXxXyy9nPaZfrtB896QNo8YqGt8Q== -----END CERTIFICATE----- 1 s:C = AT, O = ZeroSSL, CN = ZeroSSL RSA Domain Secure Site CA i:C = US, ST = New Jersey, L = Jersey City, O = The USERTRUST Network, CN = USERTrust RSA Certification Authority -----BEGIN CERTIFICATE----- MIIG1TCCBL2gAwIBAgIQbFWr29AHksedBwzYEZ7WvzANBgkqhkiG9w0BAQwFADCB iDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCk5ldyBKZXJzZXkxFDASBgNVBAcTC0pl cnNleSBDaXR5MR4wHAYDVQQKExVUaGUgVVNFUlRSVVNUIE5ldHdvcmsxLjAsBgNV BAMTJVVTRVJUcnVzdCBSU0EgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkwHhcNMjAw MTMwMDAwMDAwWhcNMzAwMTI5MjM1OTU5WjBLMQswCQYDVQQGEwJBVDEQMA4GA1UE ChMHWmVyb1NTTDEqMCgGA1UEAxMhWmVyb1NTTCBSU0EgRG9tYWluIFNlY3VyZSBT aXRlIENBMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAhmlzfqO1Mdgj 4W3dpBPTVBX1AuvcAyG1fl0dUnw/MeueCWzRWTheZ35LVo91kLI3DDVaZKW+TBAs JBjEbYmMwcWSTWYCg5334SF0+ctDAsFxsX+rTDh9kSrG/4mp6OShubLaEIUJiZo4 t873TuSd0Wj5DWt3DtpAG8T35l/v+xrN8ub8PSSoX5Vkgw+jWf4KQtNvUFLDq8mF WhUnPL6jHAADXpvs4lTNYwOtx9yQtbpxwSt7QJY1+ICrmRJB6BuKRt/jfDJF9Jsc RQVlHIxQdKAJl7oaVnXgDkqtk2qddd3kCDXd74gv813G91z7CjsGyJ93oJIlNS3U gFbD6V54JMgZ3rSmotYbz98oZxX7MKbtCm1aJ/q+hTv2YK1yMxrnfcieKmOYBbFD hnW5O6RMA703dBK92j6XRN2EttLkQuujZgy+jXRKtaWMIlkNkWJmOiHmErQngHvt iNkIcjJumq1ddFX4iaTI40a6zgvIBtxFeDs2RfcaH73er7ctNUUqgQT5rFgJhMmF x76rQgB5OZUkodb5k2ex7P+Gu4J86bS15094UuYcV09hVeknmTh5Ex9CBKipLS2W 2wKBakf+aVYnNCU6S0nASqt2xrZpGC1v7v6DhuepyyJtn3qSV2PoBiU5Sql+aARp wUibQMGm44gjyNDqDlVp+ShLQlUH9x8CAwEAAaOCAXUwggFxMB8GA1UdIwQYMBaA FFN5v1qqK0rPVIDh2JvAnfKyA2bLMB0GA1UdDgQWBBTI2XhootkZaNU9ct5fCj7c tYaGpjAOBgNVHQ8BAf8EBAMCAYYwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwIgYDVR0gBBswGTANBgsrBgEEAbIxAQIC TjAIBgZngQwBAgEwUAYDVR0fBEkwRzBFoEOgQYY/aHR0cDovL2NybC51c2VydHJ1 c3QuY29tL1VTRVJUcnVzdFJTQUNlcnRpZmljYXRpb25BdXRob3JpdHkuY3JsMHYG CCsGAQUFBwEBBGowaDA/BggrBgEFBQcwAoYzaHR0cDovL2NydC51c2VydHJ1c3Qu Y29tL1VTRVJUcnVzdFJTQUFkZFRydXN0Q0EuY3J0MCUGCCsGAQUFBzABhhlodHRw Oi8vb2NzcC51c2VydHJ1c3QuY29tMA0GCSqGSIb3DQEBDAUAA4ICAQAVDwoIzQDV ercT0eYqZjBNJ8VNWwVFlQOtZERqn5iWnEVaLZZdzxlbvz2Fx0ExUNuUEgYkIVM4 YocKkCQ7hO5noicoq/DrEYH5IuNcuW1I8JJZ9DLuB1fYvIHlZ2JG46iNbVKA3ygA Ez86RvDQlt2C494qqPVItRjrz9YlJEGT0DrttyApq0YLFDzf+Z1pkMhh7c+7fXeJ qmIhfJpduKc8HEQkYQQShen426S3H0JrIAbKcBCiyYFuOhfyvuwVCFDfFvrjADjd 4jX1uQXd161IyFRbm89s2Oj5oU1wDYz5sx+hoCuh6lSs+/uPuWomIq3y1GDFNafW +LsHBU16lQo5Q2yh25laQsKRgyPmMpHJ98edm6y2sHUabASmRHxvGiuwwE25aDU0 2SAeepyImJ2CzB80YG7WxlynHqNhpE7xfC7PzQlLgmfEHdU+tHFeQazRQnrFkW2W kqRGIq7cKRnyypvjPMkjeiV9lRdAM9fSJvsB3svUuu1coIG1xxI1yegoGM4r5QP4 RGIVvYaiI76C0djoSbQ/dkIUUXQuB8AL5jyH34g3BZaaXyvpmnV4ilppMXVAnAYG ON51WhJ6W0xNdNJwzYASZYH+tmCWI+N60Gv2NNMGHwMZ7e9bXgzUCZH5FaBFDGR5 S9VWqHB73Q+OyIVvIbKYcSc2w/aSuFKGSA== -----END CERTIFICATE----- --- Server certificate subject=CN = stephanelustig.com issuer=C = AT, O = ZeroSSL, CN = ZeroSSL RSA Domain Secure Site CA --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 3996 bytes and written 409 bytes Verification error: certificate has expired --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 10 (certificate has expired) --- DONE