SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
| Hostname: | done Matches Common Name or/and SAN |
| Expired: | done No (86 days till expiration) |
| Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
| Trusted: | done Yes, we were able to verify the certificate |
| Self-Signed: | done No, the end-entity certificate is not self-signed |
| Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
| Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
| OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
| Resolves To: | 151.101.2.216 |
| Reverse IP lookup: | No records found |
| Nameserver: | ns39.domaincontrol.com. |
| Nameserver: | ns40.domaincontrol.com. |
General Information
| Common Name: | teach.org |
| SANs: | DNS:*.teach.orgDNS:teach.org Total number of SANs: 2 |
| Signature Algorithm: | sha256WithRSAEncryption |
| Key Type: | RSA |
| Key size: | 2048 bits |
| Serial Number: | 4f6c0438b6b743168fe3bd935a2ad708fe8 |
| Not Before: | Apr 22, 2024 23:12:58 GMT |
| Not After: | Jul 21, 2024 23:12:57 GMT |
| Number of certs: | 2 |
| Revocation Status: | good |
| OCSP Stapling: | Supported |
| Server: | Not Provided |
| HSTS: | max-age=31536000; includeSubdomains |
| HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: teach.org
Decode this certificate for verbose information → launch| Subject Common Name | teach.org |
| Issuer Common Name | R3 |
| Issuer Organization | Let's Encrypt |
| Not Before: | Apr 22, 2024 23:12:58 GMT |
| Not After: | Jul 21, 2024 23:12:57 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 4f6c0438b6b743168fe3bd935a2ad708fe8 |
| SHA1 Fingerprint: | 8C:A0:7F:A9:C9:39:52:6F:08:B1:2B:A4:09:DF:B4:A6:CA:A4:1B:4E |
| MD5 Fingerprint: | 40:12:88:F3:E5:8C:87:42:19:D6:DD:01:BE:17:97:37 |
Certificate # 2 - Common Name: R3
Decode this certificate for verbose information → launch| In place? | Yes, this certificate directly certifies the preceding one |
| Subject Common Name | R3 |
| Subject Organization | Let's Encrypt |
| Issuer Common Name | ISRG Root X1 |
| Issuer Organization | Internet Security Research Group |
| Not Before: | Sep 04, 2020 00:00:00 GMT |
| Not After: | Sep 15, 2025 16:00:00 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 912b084acf0c18a753f6d62e25a75f5a |
| SHA1 Fingerprint: | A0:53:37:5B:FE:84:E8:B7:48:78:2C:7C:EE:15:82:7A:6A:F5:A4:05 |
| MD5 Fingerprint: | E8:29:E6:5D:7C:43:07:D6:FB:C1:3C:17:9E:03:7A:36 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1
verify return:1
depth=1 C = US, O = Let's Encrypt, CN = R3
verify return:1
depth=0 CN = teach.org
verify return:1
CONNECTED(00000003)
OCSP response:
======================================
OCSP Response Data:
OCSP Response Status: successful (0x0)
Response Type: Basic OCSP Response
Version: 1 (0x0)
Responder Id: C = US, O = Let's Encrypt, CN = R3
Produced At: Apr 23 00:13:00 2024 GMT
Responses:
Certificate ID:
Hash Algorithm: sha1
Issuer Name Hash: 48DAC9A0FB2BD32D4FF0DE68D2F567B735F9B3C4
Issuer Key Hash: 142EB317B75856CBAE500940E61FAF9D8B14C2C6
Serial Number: 04F6C0438B6B743168FE3BD935A2AD708FE8
Cert Status: good
This Update: Apr 23 00:13:00 2024 GMT
Next Update: Apr 30 00:12:58 2024 GMT
Signature Algorithm: sha256WithRSAEncryption
a1:00:63:7c:37:ce:03:99:50:7f:b2:94:f8:64:30:98:ab:78:
bc:46:a3:17:ab:d9:37:fa:0e:4b:5a:6a:10:bb:cf:9d:13:a6:
61:7e:37:b4:47:f2:7a:34:c5:82:8b:4a:df:b3:3b:f9:d8:63:
a1:0d:2c:9f:d9:2f:12:3d:0a:1b:2d:70:85:10:58:c7:35:bc:
7b:a8:04:cd:bd:ce:68:f4:11:a6:2c:26:7c:9e:47:69:f2:be:
7e:a2:19:37:84:87:a4:c5:df:ea:41:09:4a:18:a7:fc:ea:ae:
da:f8:c4:50:d8:2f:f2:ba:be:e0:58:f2:38:1d:b2:d5:e0:41:
90:7f:3a:a6:fe:73:b1:39:88:12:df:0c:2e:96:a2:cb:74:d5:
84:2d:7c:3e:5b:d4:0d:05:52:f2:90:7a:9a:47:6a:af:23:25:
06:51:0e:27:ec:2c:84:15:14:aa:04:4c:c6:bc:3e:c7:d2:a8:
66:a6:a6:e8:e3:fe:b0:7d:fc:77:17:3e:5a:7a:d4:ab:19:27:
97:46:40:04:b6:79:fb:9d:59:14:9f:d7:2a:69:77:d3:31:13:
32:87:98:9e:a5:b8:fb:2f:9a:b9:f4:7a:3a:8e:b0:ab:f5:45:
7a:4f:22:c5:2b:ac:c3:81:bd:58:9d:fa:7a:24:bd:89:75:0a:
f7:71:5e:13
======================================
---
Certificate chain
0 s:CN = teach.org
i:C = US, O = Let's Encrypt, CN = R3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
1 s:C = US, O = Let's Encrypt, CN = R3
i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=CN = teach.org
issuer=C = US, O = Let's Encrypt, CN = R3
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3629 bytes and written 384 bytes
Verification: OK
---
New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
---
DONE
---
Post-Handshake New Session Ticket arrived:
SSL-Session:
Protocol : TLSv1.3
Cipher : TLS_AES_128_GCM_SHA256
Session-ID: A00422C80C938ED0C7070F8519BA55654F511D0DD2E568770FAD05E0D5B8A809
Session-ID-ctx:
Resumption PSK: 0D1C0C2229CC34900FBBCEBE73A0CB77013298AF96BE0F7F6A4AAA16A2A716A7
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 3600 (seconds)
TLS session ticket:
0000 - ad 50 ca ff 31 8c 5b a7-28 3a 9b cd 28 76 32 2e .P..1.[.(:..(v2.
0010 - d2 86 0b a4 6d e3 c7 60-d5 c4 8f bc 60 0a 23 76 ....m..`....`.#v
0020 - d6 e7 3d f0 62 ae 1c 52-28 ac 1f 9e 58 e8 c3 ea ..=.b..R(...X...
0030 - fc 82 a4 27 75 d4 fe e7-a9 e4 59 29 77 ea fa 27 ...'u.....Y)w..'
0040 - b5 25 18 84 a2 54 f3 89-fd 8c 96 00 08 1d 74 81 .%...T........t.
0050 - 5d dd 16 0a 6b 54 09 e6-06 6a 2e 4b 16 a9 6e f5 ]...kT...j.K..n.
0060 - 9a 16 fb 58 de 51 f2 90-28 e9 90 ad b3 07 d7 71 ...X.Q..(......q
0070 - c3 5e 2a 20 5e 94 ab ff-7e 85 b1 7f 85 ac 19 69 .^* ^...~......i
0080 - 93 59 7a 83 a2 40 a3 d9-c3 70 ab 25 40 68 ec dc .Yz..@...p.%@h..
0090 - 37 a5 7e f4 69 76 01 02-e0 28 e8 d9 a9 e6 25 4a 7.~.iv...(....%J
Start Time: 1714161747
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: no
Max Early Data: 0
---
read R BLOCK