SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
Hostname: | done Matches Common Name or/and SAN |
Expired: | done No (86 days till expiration) |
Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
Trusted: | done Yes, we were able to verify the certificate |
Self-Signed: | done No, the end-entity certificate is not self-signed |
Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
Resolves To: | 176.223.134.148 |
Reverse IP lookup: | najduzarec.rs. |
Nameserver: | ns1.najduzarec.rs. |
Nameserver: | ns2.najduzarec.rs. |
General Information
Common Name: | najduzarec.rs |
SANs: | DNS:najduzarec.rsDNS:webmail.najduzarec.rsDNS:www.najduzarec.rs Total number of SANs: 3 |
Signature Algorithm: | sha256WithRSAEncryption |
Key Type: | RSA |
Key size: | 2048 bits |
Serial Number: | 3fff5ba05806a4e276d7265d06a46001e0a |
Not Before: | Sep 15, 2024 13:41:03 GMT |
Not After: | Dec 14, 2024 13:41:02 GMT |
Number of certs: | 2 |
Revocation Status: | good |
OCSP Stapling: | Not Supported |
Server: | Microsoft-IIS/10.0 |
HSTS: | Not Supported |
HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: najduzarec.rs
Decode this certificate for verbose information → launchSubject Common Name | najduzarec.rs |
Issuer Common Name | R10 |
Issuer Organization | Let's Encrypt |
Not Before: | Sep 15, 2024 13:41:03 GMT |
Not After: | Dec 14, 2024 13:41:02 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 3fff5ba05806a4e276d7265d06a46001e0a |
SHA1 Fingerprint: | 1A:EF:36:10:15:C8:A4:6D:31:A9:2D:17:85:C0:E0:D5:51:F1:1D:C2 |
MD5 Fingerprint: | 60:57:47:77:05:04:2E:06:A9:E9:F2:06:12:64:D2:76 |
Certificate # 2 - Common Name: R10
Decode this certificate for verbose information → launchIn place? | Yes, this certificate directly certifies the preceding one |
Subject Common Name | R10 |
Subject Organization | Let's Encrypt |
Issuer Common Name | ISRG Root X1 |
Issuer Organization | Internet Security Research Group |
Not Before: | Mar 13, 2024 00:00:00 GMT |
Not After: | Mar 12, 2027 23:59:59 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 4ba85293f79a2fa273064ba8048d75d0 |
SHA1 Fingerprint: | 00:AB:EF:D0:55:F9:A9:C7:84:FF:DE:AB:D1:DC:DD:8F:ED:74:14:36 |
MD5 Fingerprint: | AF:1C:77:AE:CC:8D:77:E9:AA:CB:0C:47:58:40:C3:92 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1 verify return:1 depth=1 C = US, O = Let's Encrypt, CN = R10 verify return:1 depth=0 CN = najduzarec.rs verify return:1 CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = najduzarec.rs i:C = US, O = Let's Encrypt, CN = R10 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgISA//1ugWAak4nbXJl0GpGAB4KMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTAwHhcNMjQwOTE1MTM0MTAzWhcNMjQxMjE0MTM0MTAyWjAYMRYwFAYDVQQD Ew1uYWpkdXphcmVjLnJzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA miT+E8ixvd3CAZslWIjpktnCf8A7xhslDgho72fOBVcBx7GC3v1VtqJU+c2FvFBw boJQB78Nf1r1l0o1Baaj5J5XO+Lt6H47U1uDVLTYRmIKx/Rx22hxta51HEPLe30N 4PY5rYhsCm+j872KzRPOFgsnOGxVVvlkkv0KMOdGIpSNRlD9WhLipRPePAf/jyen u3+mZndtlbU1AHyjAY3zyuIA5uQQ0iOkd4wzLypy3MBvSLrOMrjbTq1PP9ZedyxH ca4XLJYfRnlhmyjp5SYcf8TdGZcdd0jOibuWcoL8M7ZcAtdwW84Owy3mXLdGFnCt UBi6ag1Q5Gbq22465zqb6wIDAQABo4ICOjCCAjYwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBRE5lGatIzLt73wrwnUa1AuFyOi3DAfBgNVHSMEGDAWgBS7vMNHpeS8qcbD pHIMEI2iNeHI6DBXBggrBgEFBQcBAQRLMEkwIgYIKwYBBQUHMAGGFmh0dHA6Ly9y MTAuby5sZW5jci5vcmcwIwYIKwYBBQUHMAKGF2h0dHA6Ly9yMTAuaS5sZW5jci5v cmcvMEIGA1UdEQQ7MDmCDW5hamR1emFyZWMucnOCFXdlYm1haWwubmFqZHV6YXJl Yy5yc4IRd3d3Lm5hamR1emFyZWMucnMwEwYDVR0gBAwwCjAIBgZngQwBAgEwggED BgorBgEEAdZ5AgQCBIH0BIHxAO8AdgA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvB vyiF7PhkbgAAAZH2H+6sAAAEAwBHMEUCIQDamkmdqlSHsO9y199SVqS7K5/aFJY8 6iw+HDnoaOnuSAIgfQU6p2TYvOgyNLObVnv21LaFLZ7uOoESBSzauqvQ8dUAdQB2 /4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAZH2H+7xAAAEAwBGMEQC IGo17h+vMf98sy91HJE9E72CPH2k6Aab9vh+wODrqEunAiAUc4QJp15bu8WXvNIb C/qSXhIeMjoS1qeAzejQPM99cDANBgkqhkiG9w0BAQsFAAOCAQEAovv8SBwwUz+l +dVMjrrG8N96hl8j4Ggpnu538n7Z/kWeJFTn7y8TRDJxI1C258Spsq7ocixm1o4U 38kewSUOMWWls9gHYYlgKhSAFfdiideLwPIP3sXWHtnJ2qyINnEYwvhjkrggKSEI hSzlEVFBNHwa3zRZ2boEseL9hE7goce6GR9SaW/92GjNJPE3QIrORN/DI2WV0IEB DlUHEcB4jPZx74it7yO1z0HJmQPkaLdwIuu6EIqR/Sz9azwR9rn0xfqbDMZ7Dhbd Deij6HA1Sfe4YnmCwfxRpRnDvgs3pFvNMN393ltQVGJq4R3aVhG2NFUhzTDI9b4H Whjhq683RA== -----END CERTIFICATE----- 1 s:C = US, O = Let's Encrypt, CN = R10 i:C = US, O = Internet Security Research Group, CN = ISRG Root X1 -----BEGIN CERTIFICATE----- MIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFy Y2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBa Fw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBF bmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFL YlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a /6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4 FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KR mudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3 DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGG MB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/ AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5 tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKG Fmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYD VR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0B AQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIo zwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfd u6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p9 1n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0 GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh 1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZ QjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N 4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyz rsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2Ei RmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLx KPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54= -----END CERTIFICATE----- --- Server certificate subject=CN = najduzarec.rs issuer=C = US, O = Let's Encrypt, CN = R10 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 3091 bytes and written 412 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) --- DONE