SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
Hostname: | done Matches Common Name or/and SAN |
Expired: | done No (31 days till expiration) |
Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
Trusted: | done Yes, we were able to verify the certificate |
Self-Signed: | done No, the end-entity certificate is not self-signed |
Chain Issues: | close The order of certificates is invalid or certificates cannot build certification path |
Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
Resolves To: | 93.213.245.222 |
Reverse IP lookup: | p5dd5f5de.dip0.t-ipconnect.de. |
Nameserver: | ns2.p201.dns.oraclecloud.net. |
Nameserver: | ns1.p201.dns.oraclecloud.net. |
Nameserver: | ns3.p201.dns.oraclecloud.net. |
Nameserver: | ns4.p201.dns.oraclecloud.net. |
General Information
Common Name: | wet-klb.dyndns.org |
SANs: | DNS:wet-klb.dyndns.org Total number of SANs: 1 |
Signature Algorithm: | sha256WithRSAEncryption |
Key Type: | RSA |
Key size: | 2048 bits |
Serial Number: | 46c1fadd0fec9c059c9b7695c3706edd853 |
Not Before: | Aug 08, 2024 10:03:14 GMT |
Not After: | Nov 06, 2024 10:03:13 GMT |
Number of certs: | 3 |
Revocation Status: | good |
OCSP Stapling: | Not Supported |
Server: | Apache |
HSTS: | max-age=31536000; includeSubDomains; preload |
HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: wet-klb.dyndns.org
Decode this certificate for verbose information → launchSubject Common Name | wet-klb.dyndns.org |
Issuer Common Name | R10 |
Issuer Organization | Let's Encrypt |
Not Before: | Aug 08, 2024 10:03:14 GMT |
Not After: | Nov 06, 2024 10:03:13 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 46c1fadd0fec9c059c9b7695c3706edd853 |
SHA1 Fingerprint: | 25:1C:7E:41:EC:04:B1:43:97:AA:2A:01:2F:2C:60:AC:97:49:9E:69 |
MD5 Fingerprint: | A8:49:C7:9C:DC:4B:18:F3:51:AE:35:A9:AA:2F:59:0D |
Certificate # 2 - Common Name: R10
Decode this certificate for verbose information → launchIn place? | Yes, this certificate directly certifies the preceding one |
Subject Common Name | R10 |
Subject Organization | Let's Encrypt |
Issuer Common Name | ISRG Root X1 |
Issuer Organization | Internet Security Research Group |
Not Before: | Mar 13, 2024 00:00:00 GMT |
Not After: | Mar 12, 2027 23:59:59 GMT |
Signature Algorithm: | sha256WithRSAEncryption |
Serial Number: | 4ba85293f79a2fa273064ba8048d75d0 |
SHA1 Fingerprint: | 00:AB:EF:D0:55:F9:A9:C7:84:FF:DE:AB:D1:DC:DD:8F:ED:74:14:36 |
MD5 Fingerprint: | AF:1C:77:AE:CC:8D:77:E9:AA:CB:0C:47:58:40:C3:92 |
Certificate # 3 - Common Name: DST Root CA X3
Decode this certificate for verbose information → launchIn place? | warning No, this certificate does not directly certify the preceding one |
Subject Common Name | DST Root CA X3 |
Subject Organization | Digital Signature Trust Co. |
Issuer Common Name | DST Root CA X3 |
Issuer Organization | Digital Signature Trust Co. |
Not Before: | Sep 30, 2000 21:12:19 GMT |
Not After: | Sep 30, 2021 14:01:15 GMT |
Signature Algorithm: | sha1WithRSAEncryption |
Serial Number: | 44afb080d6a327ba893039862ef8406b |
SHA1 Fingerprint: | DA:C9:02:4F:54:D8:F6:DF:94:93:5F:B1:73:26:38:CA:6A:D7:7C:13 |
MD5 Fingerprint: | 41:03:52:DC:0F:F7:50:1B:16:F0:02:8E:BA:6F:45:C5 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1 verify return:1 depth=1 C = US, O = Let's Encrypt, CN = R10 verify return:1 depth=0 CN = wet-klb.dyndns.org verify return:1 CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = wet-klb.dyndns.org i:C = US, O = Let's Encrypt, CN = R10 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgISBGwfrdD+ycBZybdpXDcG7dhTMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTAwHhcNMjQwODA4MTAwMzE0WhcNMjQxMTA2MTAwMzEzWjAdMRswGQYDVQQD ExJ3ZXQta2xiLmR5bmRucy5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDehAryMbQ++570pNxriAjeUS0Ghyg+rz0i9+Qw6W4KQ6zDjM4a261LaW9L JTJDr9OoBo2V/1bldzF/2t82J5POIjtkTlO6hBvr0mGoNduipm587tzHXiJ0Je28 I4Rew4APd8poUG4V4KUNMbp3Ij9Q8DSUrsJLst8Caxq2fY90ssrAQjS1fMif2pk3 cwnZ4ii8VUu7Rn65Pvg9lco6BrRtgy2dhLQB3XRwmv9iqiAo+rxKScqAj514bMuL oHqbMhEykEJ1f7awvrfV/dFOkbhCVXgOEvdXUZT5Z1Achah+XF26AKEGymeph8U+ 8XCx189FVeoNMInw3qCdk+LDRDujAgMBAAGjggIWMIICEjAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAw HQYDVR0OBBYEFFCBsg4yJHagsSqxW7yndn98iyJhMB8GA1UdIwQYMBaAFLu8w0el 5LypxsOkcgwQjaI14cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0 cDovL3IxMC5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMC5pLmxl bmNyLm9yZy8wHQYDVR0RBBYwFIISd2V0LWtsYi5keW5kbnMub3JnMBMGA1UdIAQM MAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHUAPxdLT9ciR1iU HWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGRMabffgAABAMARjBEAiBoKqJiB/5j vcpelFsN+2Ti7Ljq1M97prS4Z50WoCH0ygIgXVR9LbtRj5zsnHNzSvxIXu/sZWxf ncImRK5rFyLf+mkAdwDf4VbrqgWvtZwPhnGNqMAyTq5W2W6n9aVqAdHBO75SXAAA AZExpuBEAAAEAwBIMEYCIQCaaR3oW0K7hZ6uL+OYWrxPDT/63VUni/kTmdqwzNeY yQIhAKrwh7gytO02MfdAAfnNysDRUgH+sec8Pzrm+mWDLfGzMA0GCSqGSIb3DQEB CwUAA4IBAQA8mqYcm+zitybJO8+mYaCF1TOhCeA0kQWjmriU4YwPq32450qGFcDe SPUrYbbraA+ZziykdQSH/Qmn5uk7o1kGTtFoHEGBjJzkokCs/5K9Cr31QDeT9W6l igkm+QJtwTfMYZhGXQtk+Nk/Rn3SezKzniRvgdDtb2eBIFCgqO2gN+RG0pVsmo+M RQsRIhVV9rsp9+YbBeihBxManouY1KWTLmOy9llaqGRH08uo9u9GSrOscXPpfefR /WEyuWXuQmZkV1IkJZNXnt6QZV2O9Yi9BaVsrrm5IEU4o1bC5vlhjrwdm2YSEYbo I/LFmRJQtrr4OwxL0AqqkCFkZh/wEtfw -----END CERTIFICATE----- 1 s:C = US, O = Let's Encrypt, CN = R10 i:C = US, O = Internet Security Research Group, CN = ISRG Root X1 -----BEGIN CERTIFICATE----- MIIFBTCCAu2gAwIBAgIQS6hSk/eaL6JzBkuoBI110DANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFy Y2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yNDAzMTMwMDAwMDBa Fw0yNzAzMTIyMzU5NTlaMDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBF bmNyeXB0MQwwCgYDVQQDEwNSMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDPV+XmxFQS7bRH/sknWHZGUCiMHT6I3wWd1bUYKb3dtVq/+vbOo76vACFL YlpaPAEvxVgD9on/jhFD68G14BQHlo9vH9fnuoE5CXVlt8KvGFs3Jijno/QHK20a /6tYvJWuQP/py1fEtVt/eA0YYbwX51TGu0mRzW4Y0YCF7qZlNrx06rxQTOr8IfM4 FpOUurDTazgGzRYSespSdcitdrLCnF2YRVxvYXvGLe48E1KGAdlX5jgc3421H5KR mudKHMxFqHJV8LDmowfs/acbZp4/SItxhHFYyTr6717yW0QrPHTnj7JHwQdqzZq3 DZb3EoEmUVQK7GH29/Xi8orIlQ2NAgMBAAGjgfgwgfUwDgYDVR0PAQH/BAQDAgGG MB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATASBgNVHRMBAf8ECDAGAQH/ AgEAMB0GA1UdDgQWBBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAfBgNVHSMEGDAWgBR5 tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKG Fmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wEwYDVR0gBAwwCjAIBgZngQwBAgEwJwYD VR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzANBgkqhkiG9w0B AQsFAAOCAgEAkrHnQTfreZ2B5s3iJeE6IOmQRJWjgVzPw139vaBw1bGWKCIL0vIo zwzn1OZDjCQiHcFCktEJr59L9MhwTyAWsVrdAfYf+B9haxQnsHKNY67u4s5Lzzfd u6PUzeetUK29v+PsPmI2cJkxp+iN3epi4hKu9ZzUPSwMqtCceb7qPVxEbpYxY1p9 1n5PJKBLBX9eb9LU6l8zSxPWV7bK3lG4XaMJgnT9x3ies7msFtpKK5bDtotij/l0 GaKeA97pb5uwD9KgWvaFXMIEt8jVTjLEvwRdvCn294GPDF08U8lAkIv7tghluaQh 1QnlE4SEN4LOECj8dsIGJXpGUk3aU3KkJz9icKy+aUgA+2cP21uh6NcDIS3XyfaZ QjmDQ993ChII8SXWupQZVBiIpcWO4RqZk3lr7Bz5MUCwzDIA359e57SSq5CCkY0N 4B6Vulk7LktfwrdGNVI5BsC9qqxSwSKgRJeZ9wygIaehbHFHFhcBaMDKpiZlBHyz rsnnlFXCb5s8HKn5LsUgGvB24L7sGNZP2CX7dhHov+YhD+jozLW2p9W4959Bz2Ei RmqDtmiXLnzqTpXbI+suyCsohKRg6Un0RC47+cpiVwHiXZAW+cn8eiNIjqbVgXLx KPpdzvvtTnOPlC7SQZSYmdunr3Bf9b77AiC/ZidstK36dRILKz7OA54= -----END CERTIFICATE----- 2 s:O = Digital Signature Trust Co., CN = DST Root CA X3 i:O = Digital Signature Trust Co., CN = DST Root CA X3 -----BEGIN CERTIFICATE----- MIIDSjCCAjKgAwIBAgIQRK+wgNajJ7qJMDmGLvhAazANBgkqhkiG9w0BAQUFADA/ MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMT DkRTVCBSb290IENBIFgzMB4XDTAwMDkzMDIxMTIxOVoXDTIxMDkzMDE0MDExNVow PzEkMCIGA1UEChMbRGlnaXRhbCBTaWduYXR1cmUgVHJ1c3QgQ28uMRcwFQYDVQQD Ew5EU1QgUm9vdCBDQSBYMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AN+v6ZdQCINXtMxiZfaQguzH0yxrMMpb7NnDfcdAwRgUi+DoM3ZJKuM/IUmTrE4O rz5Iy2Xu/NMhD2XSKtkyj4zl93ewEnu1lcCJo6m67XMuegwGMoOifooUMM0RoOEq OLl5CjH9UL2AZd+3UWODyOKIYepLYYHsUmu5ouJLGiifSKOeDNoJjj4XLh7dIN9b xiqKqy69cK3FCxolkHRyxXtqqzTWMIn/5WgTe1QLyNau7Fqckh49ZLOMxt+/yUFw 7BZy1SbsOFU5Q9D8/RhcQPGX69Wam40dutolucbY38EVAjqr2m7xPi71XAicPNaD aeQQmxkqtilX4+U9m5/wAl0CAwEAAaNCMEAwDwYDVR0TAQH/BAUwAwEB/zAOBgNV HQ8BAf8EBAMCAQYwHQYDVR0OBBYEFMSnsaR7LHH62+FLkHX/xBVghYkQMA0GCSqG SIb3DQEBBQUAA4IBAQCjGiybFwBcqR7uKGY3Or+Dxz9LwwmglSBd49lZRNI+DT69 ikugdB/OEIKcdBodfpga3csTS7MgROSR6cz8faXbauX+5v3gTt23ADq1cEmv8uXr AvHRAosZy5Q6XkjEGB5YGV8eAlrwDPGxrancWYaLbumR9YbK+rlmM6pZW87ipxZz R8srzJmwN0jP41ZL9c8PDHIyh8bwRLtTcm1D9SZImlJnt1ir/md2cXjbDaJWFBM5 JDGFoqgCWjBH4d1QB7wCCZAA62RjYJsWvIjJEubSfZGL+T0yjWW06XyxV3bqxbYo Ob8VZRzI9neWagqNdwvYkQsEjgfbKbYK7p2CNTUQ -----END CERTIFICATE----- --- Server certificate subject=CN = wet-klb.dyndns.org issuer=C = US, O = Let's Encrypt, CN = R10 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 3973 bytes and written 409 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) --- DONE