SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
| Hostname: | done Matches Common Name or/and SAN |
| Expired: | done No (69 days till expiration) |
| Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
| Trusted: | close We were unable to verify this certificate |
| Self-Signed: | done No, the end-entity certificate is not self-signed |
| Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
| Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
| OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
| Resolves To: | 199.59.243.225 |
| Reverse IP lookup: | No records found |
| Nameserver: | ns2.bodis.com. |
| Nameserver: | ns1.bodis.com. |
General Information
| Common Name: | uploadable.ch |
| SANs: | DNS:*.uploadable.chDNS:uploadable.ch Total number of SANs: 2 |
| Signature Algorithm: | ecdsa-with-SHA384 |
| Key Type: | ECDSA (secp256r1) |
| Key size: | 256 bits |
| Serial Number: | 4632276e27d549c66d77b8e47be78626e21 |
| Not Before: | Mar 30, 2024 07:14:21 GMT |
| Not After: | Jun 28, 2024 07:14:20 GMT |
| Number of certs: | 2 |
| Revocation Status: | good |
| OCSP Stapling: | Not Supported |
| Server: | Not Provided |
| HSTS: | Not Supported |
| HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: uploadable.ch
Decode this certificate for verbose information → launch| Subject Common Name | uploadable.ch |
| Issuer Common Name | E1 |
| Issuer Organization | Let's Encrypt |
| Not Before: | Mar 30, 2024 07:14:21 GMT |
| Not After: | Jun 28, 2024 07:14:20 GMT |
| Signature Algorithm: | ecdsa-with-SHA384 |
| Serial Number: | 4632276e27d549c66d77b8e47be78626e21 |
| SHA1 Fingerprint: | 25:C5:D5:C2:7A:72:AE:22:37:05:8E:2C:58:5D:0D:ED:52:AF:CB:ED |
| MD5 Fingerprint: | 57:13:C6:11:DC:D8:47:B1:97:D7:44:C9:E5:FA:1F:C5 |
Certificate # 2 - Common Name: E1
Decode this certificate for verbose information → launch| In place? | Yes, this certificate directly certifies the preceding one |
| Subject Common Name | E1 |
| Subject Organization | Let's Encrypt |
| Issuer Common Name | ISRG Root X2 |
| Issuer Organization | Internet Security Research Group |
| Not Before: | Sep 04, 2020 00:00:00 GMT |
| Not After: | Sep 15, 2025 16:00:00 GMT |
| Signature Algorithm: | ecdsa-with-SHA384 |
| Serial Number: | b3bddff8a7845bbce903a04135b34a45 |
| SHA1 Fingerprint: | 09:1E:8E:A1:B2:56:A3:12:96:2A:F6:C1:40:C0:FB:F0:79:A4:07:B3 |
| MD5 Fingerprint: | 90:D3:66:64:04:88:FC:F8:76:BD:BD:3A:19:C5:FB:F1 |
OpenSSL Handshake
depth=1 C = US, O = Let's Encrypt, CN = E1
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 CN = uploadable.ch
verify return:1
CONNECTED(00000003)
OCSP response: no response sent
---
Certificate chain
0 s:CN = uploadable.ch
i:C = US, O = Let's Encrypt, CN = E1
-----BEGIN CERTIFICATE-----
MIIDjTCCAxOgAwIBAgISBGMiduJ9VJxm13uOR754Ym4hMAoGCCqGSM49BAMDMDIx
CzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJF
MTAeFw0yNDAzMzAwNzE0MjFaFw0yNDA2MjgwNzE0MjBaMBgxFjAUBgNVBAMTDXVw
bG9hZGFibGUuY2gwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAQUIm7vgjAPVbEr
2bkvg+HgwSoQQ6h3OilRpkWWislDFwxhz8P6xTRFNt/Mj/9H4O2REKFpq+4y1m3I
1qTE9tzEo4ICITCCAh0wDgYDVR0PAQH/BAQDAgeAMB0GA1UdJQQWMBQGCCsGAQUF
BwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBReX2UXeY+tD1SS
umuEiggF9dghVjAfBgNVHSMEGDAWgBRa8+0r/DbCN3m5UjDqVG/PVcsurDBVBggr
BgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9lMS5vLmxlbmNyLm9yZzAi
BggrBgEFBQcwAoYWaHR0cDovL2UxLmkubGVuY3Iub3JnLzApBgNVHREEIjAggg8q
LnVwbG9hZGFibGUuY2iCDXVwbG9hZGFibGUuY2gwEwYDVR0gBAwwCjAIBgZngQwB
AgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgBIsONr2qZHNA/lagL6nTDrHFIB
y1bdLIHZu7+rOdiEcwAAAY6ObIn8AAAEAwBHMEUCIQDtaMIzpaVMCLYfy/dTgAMk
IOeE3oN1oj9m74bRrg6xxgIgbzO55A37H3Yyg2jTNFWkjQFftboV6IHWwpYWptLB
dXYAdwCi4r/WHt4vLweg1k5tN6fcZUOwxrUuotq3iviabfUX2AAAAY6ObIqcAAAE
AwBIMEYCIQCPzBh7rLXYo001/lTcJQL5OjzIBqD/3wR9CWImi6uhbgIhAKi0RUek
vvLzGVB+wenn8HcTn8BTa8mr9fj96D3AbwskMAoGCCqGSM49BAMDA2gAMGUCMBCK
5i1QGIc9CpllaAMNtfbOjQxvIiiKN/xZMVSr1pF8edHjXV17Z4zrzZ+KCSov9gIx
ANgJI3eAxlwPXiYOWss1eCwps/qqYVrAHcyEzCRoTfWE0brNAY+LZwrRcIT8Luyp
Zw==
-----END CERTIFICATE-----
1 s:C = US, O = Let's Encrypt, CN = E1
i:C = US, O = Internet Security Research Group, CN = ISRG Root X2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=CN = uploadable.ch
issuer=C = US, O = Let's Encrypt, CN = E1
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: ECDSA
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 1987 bytes and written 388 bytes
Verification error: unable to get local issuer certificate
---
New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256
Server public key is 256 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 20 (unable to get local issuer certificate)
---
DONE
---
Post-Handshake New Session Ticket arrived:
SSL-Session:
Protocol : TLSv1.3
Cipher : TLS_AES_128_GCM_SHA256
Session-ID: 229595DC690262073367081F117E2DA9A11334BF624F9F4D4D5BB15DFF24F754
Session-ID-ctx:
Resumption PSK: 42FD1F91F25ADD769C8348FDC2F6C1DFE3C718C659F5E7F4F9CE22FC85A8002E
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 604800 (seconds)
TLS session ticket:
0000 - 0e 56 2d 61 d0 a1 48 81-46 8a 08 c8 99 04 00 24 .V-a..H.F......$
0010 - aa 2f 75 b3 a6 67 cb a8-62 86 cb ae 30 cc 5d af ./u..g..b...0.].
0020 - 9d b6 f3 77 bf 29 1a 20-7d 63 fb ef 2d 05 fd cb ...w.). }c..-...
0030 - 5e 63 e7 10 17 b2 79 37-76 58 26 b2 b8 99 dc 59 ^c....y7vX&....Y
0040 - 1e 4e b6 f7 2d 64 67 71-e7 4d 5c d6 7f 67 5b 41 .N..-dgq.M\..g[A
0050 - 0a 64 50 39 5c 21 26 59-c9 6b 27 32 46 e7 17 4f .dP9\!&Y.k'2F..O
0060 - c1 1b 37 79 2f da 5f 05-35 ..7y/._.5
Start Time: 1713525729
Timeout : 7200 (sec)
Verify return code: 20 (unable to get local issuer certificate)
Extended master secret: no
Max Early Data: 0
---
read R BLOCK