IM Observatory client report for atfg.org

Test started 2018-06-16 23:36:44 UTC .

Show server to server result | Permalink to this report | Retest

xmpp.arien.atfg.org:5222
Grade T: Certificate is not trusted, but ignoring trust would score an A.
xmpp.arien.atfg.org:5222
StartTLS
REQUIRED

SASL

Pre-TLS

None

Post-TLS
PLAIN
SCRAM-SHA-1
SCRAM-SHA-1-PLUS

SRV records _xmpp-client._tcp.atfg.org DNSSEC

Priority Weight Port Server
20 0 5222 xmpp.arien.atfg.org

TLSA records

Certificates

Subject
commonName
atfg.org
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2015-08-28 08:16:02 UTC
Valid to
2018-08-28 08:16:02 UTC
CRL
http://crls6.wosign.com/ca6-server1-free.crl
OCSP
http://ocsp6.wosign.com/ca6/server1/free
Valid for atfg.org
YES
00:B6:8A:45:A3:C4:71:69:44:72:3A:36:92:F4:C6:32:9F:6D:B4:13
Subject Alternative Names
DNSName
atfg.org Matches
DNSName
jabber.atfg.org
Subject
commonName
WoSign CA Free SSL Certificate G2
countryName
CN
organizationName
WoSign CA Limited
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2014-11-08 00:58:58 UTC
Valid to
2029-11-08 00:58:58 UTC
CRL
http://crls1.wosign.com/ca1.crl
OCSP
http://ocsp1.wosign.com/ca1
F4:DB:6D:02:81:F2:04:D3:6E:2D:2F:BF:A7:2F:79:40:ED:9D:1A:DC
Subject
commonName
Certification Authority of WoSign
countryName
CN
organizationName
WoSign CA Limited
Details
Error: unable to get local issuer certificate.
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2006-09-17 22:46:36 UTC
Valid to
2019-12-31 23:59:59 UTC
CRL
http://crl.startssl.com/sfsca.crl
OCSP
http://ocsp.startssl.com/ca
B0:B6:8A:E9:7C:FE:2A:FA:CD:0D:C2:01:0B:9D:70:AC:E5:93:E8:A6
Subject
commonName
StartCom Certification Authority
countryName
IL
organizationalUnitName
Secure Digital Certificate Signing
organizationName
StartCom Ltd.
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2006-09-17 19:46:37 UTC
Valid to
2036-09-17 19:46:36 UTC
A3:F1:33:3F:E2:42:BF:CF:C5:D1:4E:8F:39:42:98:40:68:10:D1:A0

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
DHE-RSA-AES256-GCM-SHA384 (0x9f) 256 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-AES256-SHA256 (0x6b) 256 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-AES256-SHA (0x39) 256 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-CAMELLIA256-SHA (0x88) 256 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-AES128-GCM-SHA256 (0x9e) 128 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-AES128-SHA256 (0x67) 128 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-CAMELLIA128-SHA (0x45) 128 Yes Diffie-Hellman:
Bitsize: 2048
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA384 (0xc028) 256 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: secp384r1

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=atfg.org&amp;type=client'><img src='https://xmpp.net/badge.php?domain=atfg.org' alt='xmpp.net score' /></a>