IM Observatory client report for lain.church
Test started 2022-05-17 17:49:20 UTC .
Show server to server result | Permalink to this report |
Score
lain.church:5222
Grade:
T
Grade T: Certificate is not trusted, but ignoring trust would score an A.
General
lain.church:5222
- StartTLS
- REQUIRED
SASL
Pre-TLS
None
Post-TLS
| PLAIN |
| SCRAM-SHA-1 |
| SCRAM-SHA-1-PLUS |
DNS
SRV records _xmpp-client._tcp.lain.church NO DNSSEC
| Priority | Weight | Port | Server |
|---|
TLSA records
_5222._tcp.lain.church NO DNSSEC
TLS
lain.church:5222
Certificates
#0 lain.church
Subject
- commonName
- lain.church
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2022-04-06 06:31:32 UTC
- Valid to
- 2022-07-05 06:31:31 UTC
- OCSP
- http://r3.o.lencr.org
- Valid for lain.church
- YES
9D:BE:21:26:80:E1:36:FF:09:61:C1:09:49:43:6E:30:CE:AF:C0:31
Subject Alternative Names
- DNSName
- git.lain.church
- DNSName
- irc.lain.church
- DNSName
- lain.church Matches
#1 R3
Subject
- commonName
- R3
- countryName
- US
- organizationName
- Let's Encrypt
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2020-09-04 00:00:00 UTC
- Valid to
- 2025-09-15 16:00:00 UTC
- CRL
- http://x1.c.lencr.org/
A0:53:37:5B:FE:84:E8:B7:48:78:2C:7C:EE:15:82:7A:6A:F5:A4:05
ISRG Root X1
Subject
- commonName
- ISRG Root X1
- countryName
- US
- organizationName
- Internet Security Research Group
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 4096 bit RSA
- Valid from
- 2015-06-04 11:04:38 UTC
- Valid to
- 2035-06-04 11:04:38 UTC
CA:BD:2A:79:A1:07:6A:31:F2:1D:25:36:35:CB:03:9D:43:29:A5:E8
#2 ISRG Root X1
Subject
- commonName
- ISRG Root X1
- countryName
- US
- organizationName
- Internet Security Research Group
Details
Warning: Certificate is unused.
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 4096 bit RSA
- Valid from
- 2021-01-20 19:14:03 UTC
- Valid to
- 2024-09-30 18:14:03 UTC
- CRL
- http://crl.identrust.com/DSTROOTCAX3CRL.crl
93:3C:6D:DE:E9:5C:9C:41:A4:0F:9F:50:49:3D:82:BE:03:AD:87:BF
Protocols
| SSLv2 | No |
| SSLv3 | No |
| TLSv1 | Yes |
| TLSv1.1 | Yes |
| TLSv1.2 | Yes |
Ciphers
Server does not respect the client's cipher ordering.
| Cipher suite | Bitsize | Forward secrecy | Info |
|---|---|---|---|
| ECDHE-RSA-AES256-GCM-SHA384 (0xc030) | 256 | Yes | Curve: secp384r1 |
| ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) | 128 | Yes | Curve: secp384r1 |
| ECDHE-RSA-AES256-SHA384 (0xc028) | 256 | Yes | Curve: secp384r1 |
| ECDHE-RSA-AES128-SHA256 (0xc027) | 128 | Yes | Curve: secp384r1 |
| ECDHE-RSA-AES256-SHA (0xc014) | 256 | Yes | Curve: secp384r1 |
| ECDHE-RSA-AES128-SHA (0xc013) | 128 | Yes | Curve: secp384r1 |
| AES256-GCM-SHA384 (0x9d) | 256 | No | - |
| AES128-GCM-SHA256 (0x9c) | 128 | No | - |
| AES256-SHA256 (0x3d) | 256 | No | - |
| AES128-SHA256 (0x3c) | 128 | No | - |
| AES256-SHA (0x35) | 256 | No | - |
| CAMELLIA256-SHA (0x84) | 256 | No | - |
| AES128-SHA (0x2f) | 128 | No | - |
| CAMELLIA128-SHA (0x41) | 128 | No | - |
Badge
Want to show this result on your webpage? Add this:
<a href='https://xmpp.net/result.php?domain=lain.church&type=client'><img src='https://xmpp.net/badge.php?domain=lain.church' alt='xmpp.net score' /></a>