IM Observatory client report for impfpush.de
Test started 2022-02-09 10:40:57 UTC .
Show server to server result | Permalink to this report |
Score
xmpp.impfpush.de:5222
Grade:
T
Grade T: Certificate is not trusted, but ignoring trust would score an A.
General
xmpp.impfpush.de:5222
- StartTLS
- REQUIRED
SASL
Pre-TLS
None
Post-TLS
| PLAIN |
| SCRAM-SHA-1 |
| SCRAM-SHA-1-PLUS |
DNS
SRV records _xmpp-client._tcp.impfpush.de DNSSEC
| Priority | Weight | Port | Server |
|---|---|---|---|
| 5 | 0 | 5222 | xmpp.impfpush.de |
TLSA records
_5222._tcp.xmpp.impfpush.de DNSSEC
| Verified | Usage | Selector | Match | Data |
|---|---|---|---|---|
| YES | domain-issued certificate | SPKI | SHA-256 | 78:4F:33:1E:B3:E6:2F:A0:74:E4:F8:0B:63:B7:89:0A:DF:6F:3E:45:C5:13:65:49:9E:4E:4F:01:03:87:62:4A |
TLS
xmpp.impfpush.de:5222
Certificates
#0 xmpp.impfpush.de
Subject
- commonName
- xmpp.impfpush.de
Details
Error: certificate has expired.
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 384 bit EC
- Valid from
- 2021-11-10 20:28:24 UTC
- Valid to
- 2022-02-08 20:28:23 UTC
- OCSP
- http://r3.o.lencr.org
- Valid for impfpush.de
- YES
3B:17:B9:42:9D:54:FC:6D:22:DC:02:64:38:DB:1F:E5:9C:83:EB:7C
Subject Alternative Names
- DNSName
- channels.grapetest.impfpush.de
- DNSName
- conference.impfpush.de
- DNSName
- grapetest.impfpush.de
- DNSName
- impfpush.de Matches
- DNSName
- xmpp.impfpush.de
#1 R3
Subject
- commonName
- R3
- countryName
- US
- organizationName
- Let's Encrypt
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2020-09-04 00:00:00 UTC
- Valid to
- 2025-09-15 16:00:00 UTC
- CRL
- http://x1.c.lencr.org/
A0:53:37:5B:FE:84:E8:B7:48:78:2C:7C:EE:15:82:7A:6A:F5:A4:05
#2 ISRG Root X1
Subject
- commonName
- ISRG Root X1
- countryName
- US
- organizationName
- Internet Security Research Group
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 4096 bit RSA
- Valid from
- 2021-01-20 19:14:03 UTC
- Valid to
- 2024-09-30 18:14:03 UTC
- CRL
- http://crl.identrust.com/DSTROOTCAX3CRL.crl
93:3C:6D:DE:E9:5C:9C:41:A4:0F:9F:50:49:3D:82:BE:03:AD:87:BF
DST Root CA X3
Subject
- commonName
- DST Root CA X3
- organizationName
- Digital Signature Trust Co.
Details
- Signature algorithm
- sha1WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2000-09-30 21:12:19 UTC
- Valid to
- 2021-09-30 14:01:15 UTC
DA:C9:02:4F:54:D8:F6:DF:94:93:5F:B1:73:26:38:CA:6A:D7:7C:13
Protocols
| SSLv2 | No |
| SSLv3 | No |
| TLSv1 | No |
| TLSv1.1 | No |
| TLSv1.2 | Yes |
Ciphers
Server does not respect the client's cipher ordering.
| Cipher suite | Bitsize | Forward secrecy | Info |
|---|---|---|---|
| ECDHE-ECDSA-AES256-GCM-SHA384 (0xc02c) | 256 | Yes | Curve: secp384r1 |
| ECDHE-ECDSA-AES128-GCM-SHA256 (0xc02b) | 128 | Yes | Curve: secp384r1 |
| ECDHE-ECDSA-AES256-SHA384 (0xc024) | 256 | Yes | Curve: secp384r1 |
| ECDHE-ECDSA-AES128-SHA256 (0xc023) | 128 | Yes | Curve: secp384r1 |
| ECDHE-ECDSA-AES256-SHA (0xc00a) | 256 | Yes | Curve: secp384r1 |
| ECDHE-ECDSA-AES128-SHA (0xc009) | 128 | Yes | Curve: secp384r1 |
Badge
Want to show this result on your webpage? Add this:
<a href='https://xmpp.net/result.php?domain=impfpush.de&type=client'><img src='https://xmpp.net/badge.php?domain=impfpush.de' alt='xmpp.net score' /></a>