Namecheap.com
SSL Checker SSL & CSR Decoder CSR Generator SSL Converter

SSL Checker

Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.

Report

Hostname: Matches Common Name or/and SAN
Expired: No (100 days till expiration)
Public Key: We were unable to find any issues in the public key of end-entity certificate
Trusted: Yes, we were able to verify the certificate
Self-Signed: No, the end-entity certificate is not self-signed
Chain Issues: No, we were unable to detect any issues in the certificate chain sent by the server
Weak signatures: No, certificates sent by the server were not signed utilizing a weak hash function
OCSP Status: OCSP Responder returned "good" status for the end-entity certificate

DNS Information

CNAME: e118552.dscx.akamaiedge.net.
Resolves To: 69.192.139.79
Reverse IP lookup: a69-192-139-79.deploy.static.akamaitechnologies.com.
Nameserver: a6-65.akam.net.
Nameserver: a12-64.akam.net.
Nameserver: a11-67.akam.net.
Nameserver: a9-67.akam.net.
Nameserver: a1-236.akam.net.
Nameserver: a8-66.akam.net.

General Information

Common Name: kohls.com
SANs: DNS:kohls.comDNS:*.kohls.comDNS:*.kpp.kohls.comDNS:crms.kohlsrewards.comDNS:csr.kohlsrewards.comDNS:k-lab.comDNS:kohlscorporation.comDNS:kohlsgreen.comDNS:kohlsgreenscene.comDNS:kohlsrealestate.comDNS:kohlsrewards.comDNS:kohlssuppliers.comDNS:kohlstravel.comDNS:laurenconradrunway.comDNS:lclaurenconradrunway.comDNS:lcrunway.comDNS:m.kohlsrewards.comDNS:media1.kohlsimg.comDNS:media2.kohlsimg.comDNS:mykohlscard.comDNS:mykohlscharge.comDNS:offaisle.comDNS:video.kohlsimg.comDNS:www.k-lab.comDNS:www.kohlscorporation.comDNS:www.kohlsgreen.comDNS:www.kohlsgreenscene.comDNS:www.kohlsrealestate.comDNS:www.kohlsrewards.comDNS:www.kohlssuppliers.comDNS:www.kohlstravel.comDNS:www.laurenconradrunway.comDNS:www.lclaurenconradrunway.comDNS:www.lcrunway.comDNS:www.mykohlscard.comDNS:www.mykohlscharge.comDNS:www.offaisle.com Total number of SANs: 37
Organization: Kohl's, Inc.
Locality: Aurora
Signature Algorithm: sha256WithRSAEncryption
Key Type: ECDSA (secp256r1)
Key size: 256 bits
Serial Number: 25334c7f7712fad033f9e5d73a038e6
Not Before: Aug 01, 2023 00:00:00 GMT
Not After: Aug 03, 2024 23:59:59 GMT
Number of certs: 2
Revocation Status: good
OCSP Stapling: Supported
Server: Not Provided
HSTS: Not Supported
HPKP: Not Supported

Chain Information

Certificate # 1 - Common Name: kohls.com

Decode this certificate for verbose information →
Subject Common Name kohls.com
Subject Organization Kohl's, Inc.
Issuer Common Name DigiCert TLS RSA SHA256 2020 CA1
Issuer Organization DigiCert Inc
Not Before: Aug 01, 2023 00:00:00 GMT
Not After: Aug 03, 2024 23:59:59 GMT
Signature Algorithm: sha256WithRSAEncryption
Serial Number: 25334c7f7712fad033f9e5d73a038e6
SHA1 Fingerprint: 01:C6:6F:EB:DB:AC:11:36:1E:41:D5:15:F9:BE:81:4E:A9:DD:B0:66
MD5 Fingerprint: 70:60:97:70:2E:A7:00:C3:78:E1:91:D7:D3:F4:13:0E

Certificate # 2 - Common Name: DigiCert TLS RSA SHA256 2020 CA1

Decode this certificate for verbose information →
In place? Yes, this certificate directly certifies the preceding one
Subject Common Name DigiCert TLS RSA SHA256 2020 CA1
Subject Organization DigiCert Inc
Issuer Common Name DigiCert Global Root CA
Issuer Organization DigiCert Inc
Not Before: Apr 14, 2021 00:00:00 GMT
Not After: Apr 13, 2031 23:59:59 GMT
Signature Algorithm: sha256WithRSAEncryption
Serial Number: 6d8d904d5584346f68a2fa754227ec4
SHA1 Fingerprint: 1C:58:A3:A8:51:8E:87:59:BF:07:5B:76:B7:50:D4:F2:DF:26:4F:CD
MD5 Fingerprint: E6:7B:58:6F:70:46:BF:E0:AA:51:F6:66:0B:11:9D:D9

OpenSSL Handshake

depth=2 C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA
verify return:1
depth=1 C = US, O = DigiCert Inc, CN = DigiCert TLS RSA SHA256 2020 CA1
verify return:1
depth=0 C = US, ST = Illinois, L = Aurora, O = "Kohl's, Inc.", CN = kohls.com
verify return:1
CONNECTED(00000003)
OCSP response: 
======================================
OCSP Response Data:
    OCSP Response Status: successful (0x0)
    Response Type: Basic OCSP Response
    Version: 1 (0x0)
    Responder Id: B76BA2EAA8AA848C79EAB4DA0F98B2C59576B9F4
    Produced At: Apr 24 08:06:27 2024 GMT
    Responses:
    Certificate ID:
      Hash Algorithm: sha1
      Issuer Name Hash: E4E395A229D3D4C1C31FF0980C0B4EC0098AABD8
      Issuer Key Hash: B76BA2EAA8AA848C79EAB4DA0F98B2C59576B9F4
      Serial Number: 025334C7F7712FAD033F9E5D73A038E6
    Cert Status: good
    This Update: Apr 24 07:51:02 2024 GMT
    Next Update: May  1 06:51:02 2024 GMT

    Signature Algorithm: sha256WithRSAEncryption
         4d:43:f4:be:b4:d5:30:8e:82:74:bc:ae:0a:00:92:3f:a6:2f:
         fe:38:22:82:05:af:8c:93:90:79:8b:d9:07:bd:36:e5:7c:e8:
         44:d3:d4:f4:4e:d5:42:75:02:25:15:dd:9b:84:a0:ca:2d:e8:
         0e:64:35:fc:44:e4:d8:46:5f:28:aa:d8:7d:98:6c:cb:39:5a:
         67:4f:ef:b2:4f:9e:ca:76:f9:b6:48:b0:a4:3b:fa:d5:10:6f:
         83:b1:6d:d7:b6:d7:f0:64:39:b7:57:dd:c1:2d:37:94:7a:11:
         b3:5a:c5:ea:8b:67:96:e5:1f:2c:cf:78:22:a7:df:9a:2d:1c:
         a2:2f:d2:87:56:d7:50:35:92:0e:a9:98:de:a4:f8:84:68:ba:
         1f:6b:8f:d4:61:c9:c0:df:e6:f6:7b:5d:43:13:f6:19:de:70:
         5e:b5:fb:cb:2d:ca:5f:a2:9a:1d:6b:c2:14:92:db:91:52:76:
         2e:da:3d:10:20:8b:8e:93:7a:20:53:2a:f5:91:3f:05:3d:d0:
         12:e9:be:41:b7:14:4d:ff:26:50:f3:0d:c9:47:cb:ca:6c:cb:
         59:79:e6:af:0f:8c:65:0c:7a:93:3b:9b:9a:c5:80:f5:cf:00:
         62:35:55:bc:e8:b5:41:7e:24:2f:d6:9c:6a:f6:05:f1:e3:e0:
         7e:52:84:99
======================================
---
Certificate chain
 0 s:C = US, ST = Illinois, L = Aurora, O = "Kohl's, Inc.", CN = kohls.com
   i:C = US, O = DigiCert Inc, CN = DigiCert TLS RSA SHA256 2020 CA1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
 1 s:C = US, O = DigiCert Inc, CN = DigiCert TLS RSA SHA256 2020 CA1
   i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=C = US, ST = Illinois, L = Aurora, O = "Kohl's, Inc.", CN = kohls.com

issuer=C = US, O = DigiCert Inc, CN = DigiCert TLS RSA SHA256 2020 CA1

---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: ECDSA
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 4323 bytes and written 407 bytes
Verification: OK
---
New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384
Server public key is 256 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
---
DONE