Certificate Information | ||
---|---|---|
signatureAlgorithm | OK | SHA256 with RSA |
keySize | INFO | RSA 2048 bits |
serialNumber | INFO | E35A2C6ACF47FBDB12EDC6BB388ACEC7 |
commonName | OK | sir.kr |
commonName wo SNI | INFO | sir.kr |
subjectAltName | INFO | sir.kr www.sir.kr |
caIssuers | INFO | Sectigo RSA Domain Validation Secure Server CA (Sectigo Limited from GB) |
trust | OK | Ok via SAN (same w/o SNI) |
chain of trust | OK | passed. |
certificatePolicies EV | INFO | no |
expirationStatus | OK | 71 >= 60 days |
notBefore | INFO | 2021-01-11 09:00 |
notAfter | OK | 2022-01-12 08:59 |
OCSP stapling | LOW | not offered |
DNS CAArecord | LOW | -- |
certificate transparency | OK | yes (certificate extension) |
Protocols Information | ||
---|---|---|
SSLv2 | OK | not offered |
SSLv3 | OK | not offered |
TLS1 TLS 1.0 was first defined in RFC 2246 in January 1999 as an upgrade of SSL Version 3.0, and written by Christopher Allen and Tim Dierks of Consensus Development. | INFO | offered |
TLS1.1 TLS 1.1 was defined in RFC 4346 in April 2006. It is an update from TLS version 1.0. Significant differences in this version include: | INFO | offered |
TLS1.2 TLS 1.2 was defined in RFC 5246 in August 2008. It is based on the earlier TLS 1.1 specification. | OK | offered |
TLS1.3 TLS 1.3 was defined in RFC 8446 in August 2018. It is based on the earlier TLS 1.2 specification. Major differences from TLS 1.2 include: | INFO | not offered and downgraded to a weaker protocol |
ALPN Application-Layer Protocol Negotiation (ALPN) is a Transport Layer Security (TLS) extension for application-layer protocol negotiation. | INFO | http/1.1 |
Server Information | ||
---|---|---|
cipher negotiated | OK | AES128-GCM-SHA256 (matching cipher in list missing) |
Vulnerability Information |
---|
Cipher List |
---|
Cipher order | ||
---|---|---|
TLSv1 | INFO | ECDHE-RSA-AES256-SHA at TLSv1 (matching cipher in list missing) |
TLSv1.1 | INFO | ECDHE-RSA-AES256-SHA at TLSv1.1 (matching cipher in list missing) |
TLSv1.2 | INFO | ECDHE-RSA-AES256-GCM-SHA384 at TLSv1.2 (matching cipher in list missing) |
Cipher Suite |
---|
Client Handshake Simulation | ||
---|---|---|
android 422 | INFO | TLSv1.0 ECDHE-RSA-AES256-SHA |
android 442 | INFO | TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 |
android 500 | INFO | TLSv1.2 ECDHE-RSA-AES256-SHA |
android 60 | INFO | TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 |
android 70 | INFO | TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305 |
android 81 | INFO | TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 |
android 90 | INFO | TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 |
chrome 65 win7 | INFO | TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 |
chrome 74 win10 | INFO | TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 |
firefox 62 win7 | INFO | TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 |
firefox 66 win81 | INFO | TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 |
ie 6 xp | INFO | No connection |
ie 7 vista | INFO | TLSv1.0 AES128-SHA |
ie 8 win7 | INFO | TLSv1.0 AES128-SHA |
ie 8 xp | INFO | No connection |
ie 11 win7 | INFO | TLSv1.2 ECDHE-RSA-AES256-SHA384 |
ie 11 win81 | INFO | TLSv1.2 ECDHE-RSA-AES256-SHA384 |
ie 11 winphone81 | INFO | TLSv1.2 AES128-SHA256 |
ie 11 win10 | INFO | TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 |
edge 15 win10 | INFO | TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 |
edge 17 win10 | INFO | TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 |
opera 60 win10 | INFO | TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 |
safari 9 ios9 | INFO | TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 |
safari 9 osx1011 | INFO | TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 |
safari 10 osx1012 | INFO | TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 |
apple ats 9 ios9 | INFO | TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 |
tor 1709 win7 | INFO | TLSv1.0 ECDHE-RSA-AES256-SHA |
java 6u45 | INFO | TLSv1.0 AES128-SHA |
java 7u25 | INFO | TLSv1.0 ECDHE-RSA-AES128-SHA |
java 8u161 | INFO | TLSv1.2 ECDHE-RSA-AES256-SHA384 |
java 904 | INFO | TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 |
openssl 101l | INFO | TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 |
openssl 102e | INFO | TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 |
openssl 110j | INFO | TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 |
openssl 111b | INFO | TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 |
thunderbird 60 6 1 | INFO | TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256 |