SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
Hostname: | done Matches Common Name or/and SAN |
Expired: | done No (86 days till expiration) |
Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
Trusted: | done Yes, we were able to verify the certificate |
Self-Signed: | done No, the end-entity certificate is not self-signed |
Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
Resolves To: | 151.101.2.216 |
Reverse IP lookup: | No records found |
Nameserver: | ns39.domaincontrol.com. |
Nameserver: | ns40.domaincontrol.com. |
General Information
Common Name: | teach.org |
SANs: | DNS:*.teach.orgDNS:teach.org Total number of SANs: 2 |
Signature Algorithm: | sha256WithRSAEncryption |
Key Type: | RSA |
Key size: | 2048 bits |
Serial Number: | 4f6c0438b6b743168fe3bd935a2ad708fe8 |
Not Before: | Apr 22, 2024 23:12:58 GMT |
Not After: | Jul 21, 2024 23:12:57 GMT |
Number of certs: | 2 |
Revocation Status: | good |
OCSP Stapling: | Supported |
Server: | Not Provided |
HSTS: | max-age=31536000; includeSubdomains |
HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: teach.org
Decode this certificate for verbose information → launchSubject Common Name | teach.org |
Issuer Common Name | R3 |
Issuer Organization | Let's Encrypt |
Not Before: | Apr 22, 2024 23:12:58 GMT |
Not After: | Jul 21, 2024 23:12:57 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 4f6c0438b6b743168fe3bd935a2ad708fe8 |
SHA1 Fingerprint: | 8C:A0:7F:A9:C9:39:52:6F:08:B1:2B:A4:09:DF:B4:A6:CA:A4:1B:4E |
MD5 Fingerprint: | 40:12:88:F3:E5:8C:87:42:19:D6:DD:01:BE:17:97:37 |
Certificate # 2 - Common Name: R3
Decode this certificate for verbose information → launchIn place? | Yes, this certificate directly certifies the preceding one |
Subject Common Name | R3 |
Subject Organization | Let's Encrypt |
Issuer Common Name | ISRG Root X1 |
Issuer Organization | Internet Security Research Group |
Not Before: | Sep 04, 2020 00:00:00 GMT |
Not After: | Sep 15, 2025 16:00:00 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 912b084acf0c18a753f6d62e25a75f5a |
SHA1 Fingerprint: | A0:53:37:5B:FE:84:E8:B7:48:78:2C:7C:EE:15:82:7A:6A:F5:A4:05 |
MD5 Fingerprint: | E8:29:E6:5D:7C:43:07:D6:FB:C1:3C:17:9E:03:7A:36 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1 verify return:1 depth=1 C = US, O = Let's Encrypt, CN = R3 verify return:1 depth=0 CN = teach.org verify return:1 CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: C = US, O = Let's Encrypt, CN = R3 Produced At: Apr 23 00:13:00 2024 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: 48DAC9A0FB2BD32D4FF0DE68D2F567B735F9B3C4 Issuer Key Hash: 142EB317B75856CBAE500940E61FAF9D8B14C2C6 Serial Number: 04F6C0438B6B743168FE3BD935A2AD708FE8 Cert Status: good This Update: Apr 23 00:13:00 2024 GMT Next Update: Apr 30 00:12:58 2024 GMT Signature Algorithm: sha256WithRSAEncryption a1:00:63:7c:37:ce:03:99:50:7f:b2:94:f8:64:30:98:ab:78: bc:46:a3:17:ab:d9:37:fa:0e:4b:5a:6a:10:bb:cf:9d:13:a6: 61:7e:37:b4:47:f2:7a:34:c5:82:8b:4a:df:b3:3b:f9:d8:63: a1:0d:2c:9f:d9:2f:12:3d:0a:1b:2d:70:85:10:58:c7:35:bc: 7b:a8:04:cd:bd:ce:68:f4:11:a6:2c:26:7c:9e:47:69:f2:be: 7e:a2:19:37:84:87:a4:c5:df:ea:41:09:4a:18:a7:fc:ea:ae: da:f8:c4:50:d8:2f:f2:ba:be:e0:58:f2:38:1d:b2:d5:e0:41: 90:7f:3a:a6:fe:73:b1:39:88:12:df:0c:2e:96:a2:cb:74:d5: 84:2d:7c:3e:5b:d4:0d:05:52:f2:90:7a:9a:47:6a:af:23:25: 06:51:0e:27:ec:2c:84:15:14:aa:04:4c:c6:bc:3e:c7:d2:a8: 66:a6:a6:e8:e3:fe:b0:7d:fc:77:17:3e:5a:7a:d4:ab:19:27: 97:46:40:04:b6:79:fb:9d:59:14:9f:d7:2a:69:77:d3:31:13: 32:87:98:9e:a5:b8:fb:2f:9a:b9:f4:7a:3a:8e:b0:ab:f5:45: 7a:4f:22:c5:2b:ac:c3:81:bd:58:9d:fa:7a:24:bd:89:75:0a: f7:71:5e:13 ====================================== --- Certificate chain 0 s:CN = teach.org i:C = US, O = Let's Encrypt, CN = R3 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgISBPbAQ4trdDFo/jvZNaKtcI/oMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MjIyMzEyNThaFw0yNDA3MjEyMzEyNTdaMBQxEjAQBgNVBAMT CXRlYWNoLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALqduA2x pqZAkaO/QDWnoZe+FAEM9k5yP2NWflii/2W12fgdu1k8IqyW3qS+k2SABlkF2R/5 8I1/7XEjgzJCouI8G5CHiRaT7d/8Gtv3yP/ivMxWxHR2oDdIHKDc2aeEmQZXqP+S N8IZa+jknKzeIRfEQYw3FkEwqW8JXfP41dkgKBs3P0UQztQk37A/m6VRXwzQejqs 02BO3skiHZ8QK8kWsuSajfFQJmiKEMcmJntq/oWrPV6JPhZazk3iN2WxNdunJ1A1 T5QAWHR48ye3YXC7d+8YJSRKzuBuQfcOVB2FmMwJIrAVD/sUeLCPbBwGTgyz0wXX bJMAbMsdMkCaU0sCAwEAAaOCAhcwggITMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU Fu9tu5gxt610c/cAEKKAOVOAFqgwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+v nYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5s ZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wIQYD VR0RBBowGIILKi50ZWFjaC5vcmeCCXRlYWNoLm9yZzATBgNVHSAEDDAKMAgGBmeB DAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AEiw42vapkc0D+VqAvqdMOsc UgHLVt0sgdm7v6s52IRzAAABjwhMcU0AAAQDAEYwRAIgcmE9dtW7dSxIGmZusVGH O9M0sfESIEj8H7bWgXC0o88CIHmGFyhO26z0OzwpRwEqiY9fRD7BEcZfQJqqoYvr 0EB5AHYA3+FW66oFr7WcD4ZxjajAMk6uVtlup/WlagHRwTu+UlwAAAGPCExyKgAA BAMARzBFAiBBVz1LMbXYn3KhMjlqXVryoeBa2kpUSXrZXq2/4q2XUQIhAOS9sU1L SCAwXmvnjMMJc5rEHbHuuBkRqPaw3U+PbOOhMA0GCSqGSIb3DQEBCwUAA4IBAQB7 LqD29u1Icl8sbJSYjZFbEqWgc92loYVWeFi5EC/xNkn99KpUi9qJTw70wsrhgwxR QWWqzXKdl5u0ddmBWPAUrQaIkbY5jDw0fS5rTzFSUxcAzcT3oq9T03YkndpBKDW3 FJvACecx4Hrft61creX9vxUTcP1nwZaDI8fDSolLS5l0eW7FSjjhGRac2dso86wY fnPcm8LSOMf6XujeyIEuCggmvo5de9tkyNEd2o4SZlCSqDAVr8twfWokAPcfzH2r x1bdUljvKma+difJrzwvS4x72vPI2xWD/AD+ffR467D5xN/mu4DprHdFb0mGn7b+ 6GDnMYQ6Lrkikf2ePAgp -----END CERTIFICATE----- 1 s:C = US, O = Let's Encrypt, CN = R3 i:C = US, O = Internet Security Research Group, CN = ISRG Root X1 -----BEGIN CERTIFICATE----- MIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAw TzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2Vh cmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAw WhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3Mg RW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cP R5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdx sxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8Zutm NHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxg Z3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG /kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMC AYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYB Af8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaA FHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcw AoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRw Oi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQB gt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6W PTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wl ikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQz CkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BIm lJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4 avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2 yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1O yK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90Ids hCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+ HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6Zv MldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqX nLRbwHOoq7hHwg== -----END CERTIFICATE----- --- Server certificate subject=CN = teach.org issuer=C = US, O = Let's Encrypt, CN = R3 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 3629 bytes and written 384 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) --- DONE --- Post-Handshake New Session Ticket arrived: SSL-Session: Protocol : TLSv1.3 Cipher : TLS_AES_128_GCM_SHA256 Session-ID: A00422C80C938ED0C7070F8519BA55654F511D0DD2E568770FAD05E0D5B8A809 Session-ID-ctx: Resumption PSK: 0D1C0C2229CC34900FBBCEBE73A0CB77013298AF96BE0F7F6A4AAA16A2A716A7 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 3600 (seconds) TLS session ticket: 0000 - ad 50 ca ff 31 8c 5b a7-28 3a 9b cd 28 76 32 2e .P..1.[.(:..(v2. 0010 - d2 86 0b a4 6d e3 c7 60-d5 c4 8f bc 60 0a 23 76 ....m..`....`.#v 0020 - d6 e7 3d f0 62 ae 1c 52-28 ac 1f 9e 58 e8 c3 ea ..=.b..R(...X... 0030 - fc 82 a4 27 75 d4 fe e7-a9 e4 59 29 77 ea fa 27 ...'u.....Y)w..' 0040 - b5 25 18 84 a2 54 f3 89-fd 8c 96 00 08 1d 74 81 .%...T........t. 0050 - 5d dd 16 0a 6b 54 09 e6-06 6a 2e 4b 16 a9 6e f5 ]...kT...j.K..n. 0060 - 9a 16 fb 58 de 51 f2 90-28 e9 90 ad b3 07 d7 71 ...X.Q..(......q 0070 - c3 5e 2a 20 5e 94 ab ff-7e 85 b1 7f 85 ac 19 69 .^* ^...~......i 0080 - 93 59 7a 83 a2 40 a3 d9-c3 70 ab 25 40 68 ec dc .Yz..@...p.%@h.. 0090 - 37 a5 7e f4 69 76 01 02-e0 28 e8 d9 a9 e6 25 4a 7.~.iv...(....%J Start Time: 1714161747 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no Max Early Data: 0 --- read R BLOCK