Namecheap.com

SSL Checker

Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.

Report

Hostname: Matches Common Name or/and SAN
Expired: No (331 days till expiration)
Public Key: We were unable to find any issues in the public key of end-entity certificate
Trusted: Yes, we were able to verify the certificate
Self-Signed: No, the end-entity certificate is not self-signed
Chain Issues: No, we were unable to detect any issues in the certificate chain sent by the server
Weak signatures: No, certificates sent by the server were not signed utilizing a weak hash function
OCSP Status: OCSP Responder returned "good" status for the end-entity certificate

DNS Information

Resolves To: 141.211.243.251
Reverse IP lookup: No records found
Nameserver: umich-edu.dns.umich.com.
Nameserver: umich-edu.dns.umich.net.

General Information

Common Name: www.umich.edu
SANs: DNS:www.umich.eduDNS:umich.edu Total number of SANs: 2
Organization: University of Michigan
Signature Algorithm: sha384WithRSAEncryption
Key Type: RSA
Key size: 2048 bits
Serial Number: 78ff0a3187b6b3f4aa8ec4cd466e256a
Not Before: Jan 24, 2024 00:00:00 GMT
Not After: Feb 23, 2025 23:59:59 GMT
Number of certs: 2
Revocation Status: good
OCSP Stapling: Not Supported
Server: Apache
HSTS: Not Supported
HPKP: Not Supported

Chain Information

Certificate # 1 - Common Name: www.umich.edu

Decode this certificate for verbose information →
Subject Common Name www.umich.edu
Subject Organization University of Michigan
Issuer Common Name InCommon RSA Server CA 2
Issuer Organization Internet2
Not Before: Jan 24, 2024 00:00:00 GMT
Not After: Feb 23, 2025 23:59:59 GMT
Signature Algorithm: sha384WithRSAEncryption
Serial Number: 78ff0a3187b6b3f4aa8ec4cd466e256a
SHA1 Fingerprint: 6C:25:A2:43:C8:5C:F6:B7:E8:A6:4A:D9:9E:8D:E9:BE:2D:F3:70:7D
MD5 Fingerprint: F6:FA:FF:F6:0C:87:82:1A:34:00:03:0B:F3:5B:C1:66

Certificate # 2 - Common Name: InCommon RSA Server CA 2

Decode this certificate for verbose information →
In place? Yes, this certificate directly certifies the preceding one
Subject Common Name InCommon RSA Server CA 2
Subject Organization Internet2
Issuer Common Name USERTrust RSA Certification Authority
Issuer Organization The USERTRUST Network
Not Before: Nov 16, 2022 00:00:00 GMT
Not After: Nov 15, 2032 23:59:59 GMT
Signature Algorithm: sha384WithRSAEncryption
Serial Number: 835b7615206d2d6e097e0b6e409fefc0
SHA1 Fingerprint: 78:E5:02:62:E8:C4:75:71:FB:82:D5:06:3A:6C:9B:D9:1B:B8:A3:25
MD5 Fingerprint: 03:F6:E7:1F:A4:32:89:59:FC:11:DB:DA:6E:25:94:A0

OpenSSL Handshake

depth=2 C = US, ST = New Jersey, L = Jersey City, O = The USERTRUST Network, CN = USERTrust RSA Certification Authority
verify return:1
depth=1 C = US, O = Internet2, CN = InCommon RSA Server CA 2
verify return:1
depth=0 C = US, ST = Michigan, O = University of Michigan, CN = www.umich.edu
verify return:1
CONNECTED(00000003)
OCSP response: no response sent
---
Certificate chain
 0 s:C = US, ST = Michigan, O = University of Michigan, CN = www.umich.edu
   i:C = US, O = Internet2, CN = InCommon RSA Server CA 2
-----BEGIN CERTIFICATE-----
MIIGzzCCBTegAwIBAgIQeP8KMYe2s/SqjsTNRm4lajANBgkqhkiG9w0BAQwFADBE
MQswCQYDVQQGEwJVUzESMBAGA1UEChMJSW50ZXJuZXQyMSEwHwYDVQQDExhJbkNv
bW1vbiBSU0EgU2VydmVyIENBIDIwHhcNMjQwMTI0MDAwMDAwWhcNMjUwMjIzMjM1
OTU5WjBZMQswCQYDVQQGEwJVUzERMA8GA1UECBMITWljaGlnYW4xHzAdBgNVBAoT
FlVuaXZlcnNpdHkgb2YgTWljaGlnYW4xFjAUBgNVBAMTDXd3dy51bWljaC5lZHUw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeoEDwIeS4n7IzeMebBnpP
S0Un8bvOEPwbTSWKnBALszy0o3I8A8Id3SMJdN1sR0cRfb/i+2dZ5akEzkK8ivhR
rdz0Bgt376dKU1mS+y4fNhnAcpGjXNz1HfiJQek4mO2qhxeH0T8FlX6NZ9LN+vgC
9nGPDrEiWpEBamXFdu3IAllfkxzLbpGmakQeycIwtpjIWTUJzTAaB4GUT+DWV0RG
VyvTLa0MacbT4H1HyVcjg0LBu1eD0m17hvp/ev2bBuGEKvo03zXT9UYXGAHpsrVc
/e+7/Au4SaplJRH3v6l6vJ8PVahDzDSWjrfAqAp8VtRzbqpr2umBaOssV0gqB8cx
AgMBAAGjggMmMIIDIjAfBgNVHSMEGDAWgBTvTACSpvt2Ll6V4slfhxsZ1U3i2TAd
BgNVHQ4EFgQUamChBA0AT5B7hRzSLMaF5K4XzGkwDgYDVR0PAQH/BAQDAgWgMAwG
A1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEkGA1Ud
IARCMEAwNAYLKwYBBAGyMQECAmcwJTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0
aWdvLmNvbS9DUFMwCAYGZ4EMAQICMEAGA1UdHwQ5MDcwNaAzoDGGL2h0dHA6Ly9j
cmwuc2VjdGlnby5jb20vSW5Db21tb25SU0FTZXJ2ZXJDQTIuY3JsMHAGCCsGAQUF
BwEBBGQwYjA7BggrBgEFBQcwAoYvaHR0cDovL2NydC5zZWN0aWdvLmNvbS9JbkNv
bW1vblJTQVNlcnZlckNBMi5jcnQwIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLnNl
Y3RpZ28uY29tMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdQDPEVbu1S58r/OH
W9lpLpvpGnFnSrAX7KwB0lt3zsw7CAAAAY077TzoAAAEAwBGMEQCIE47KgF5IglC
QiWJHxzHCEFIgF9uu/p3k7XdfaC8Tw+pAiBiyMwdNOvdFVF8uTDcrYDHPhjy/0Vp
WHwvzvgiazYrXgB1AKLjCuRF772tm3447Udnd1PXgluElNcrXhssxLlQpEfnAAAB
jTvtPSgAAAQDAEYwRAIgIkwLXIyIZp9YB5YFzpzmwNE/OxzRo54/uQGYQxFOAh0C
IGoUp1YSMC90JYVK6SNnL0X/AJgkKXHTxTp7Knksc4nAAHcATnWjJ1yaEMM4W2zU
3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGNO+08xAAABAMASDBGAiEAzXgw0E/KEZOn
mgrVl06Ao6dEUaPY/O3L0SoYQ0m1FGkCIQC2SlJDAMDh7wvjh0iVZKnMo050X3Si
PK+3E6qiknvkkjAjBgNVHREEHDAagg13d3cudW1pY2guZWR1ggl1bWljaC5lZHUw
DQYJKoZIhvcNAQEMBQADggGBAIRpRxeByqJYN8s3/7Ncyse35v8OUG/eejMqlAn6
a3Xwrp3ipdXts87WV/BYbOiCQsje7DhxBtij6qHd8MiWuoYiv71lDNMiiseeHwzs
NGvut+x1Ug4s4oqYrMUG6uMst2S6mhNoM1hX4hZXp2F2/7AhicO9AV10SyIdsFwK
L1l/iLxPTxN3mfrb6Wlo7RzEOMCVLjzBpbqiRRJd9WkOGZlREwanuxduvAd1Ihcx
LNZFVZxBLUP1EjGFg+NVMwTaXyXZaRFzPJLSVuzGQggQ8LM1/6l3xYo8ZFsoPXI8
XnNlR/EcKJD130PuxV+xxqQjgXLEu6jK/COx81+wv9EsJJS3thF+9SU5qIzYyxHq
NEsKvaqhznz9dc5qqz2Kk5W5DQx1TvBBiX7wpfCNGzA9aT/DOZQbubds/tulq9MK
brjRPGIJb5cSnivrBE9/6eoI0vpCVEzeDbPOwG5GkIyb3pka+FNjga2+jWabaxyy
a9uJXCo97hjo9ykI+4P9M90E+Q==
-----END CERTIFICATE-----
 1 s:C = US, O = Internet2, CN = InCommon RSA Server CA 2
   i:C = US, ST = New Jersey, L = Jersey City, O = The USERTRUST Network, CN = USERTrust RSA Certification Authority
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=C = US, ST = Michigan, O = University of Michigan, CN = www.umich.edu

issuer=C = US, O = Internet2, CN = InCommon RSA Server CA 2

---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA
Server Temp Key: ECDH, P-256, 256 bits
---
SSL handshake has read 3873 bytes and written 446 bytes
Verification: OK
---
New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
    Protocol  : TLSv1.2
    Cipher    : ECDHE-RSA-AES128-GCM-SHA256
    Session-ID: 3E8421FF528954A2A7CD7CC839517CAA99507B55D1C01EE2A9CD1EF10AE1CCBB
    Session-ID-ctx: 
    Master-Key: 8D6A2D2D0B8D789677C71B108582AC892166F9B15CC9242A67C880327C4BE984AE365266EB55BD5359137021E0C565AC
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    Start Time: 1711702735
    Timeout   : 7200 (sec)
    Verify return code: 0 (ok)
    Extended master secret: yes
---
DONE