IM Observatory server report for blackshift.org

Test started 2018-06-11 11:04:46 UTC .

Show client to server result | Permalink to this report | Retest

xmpp.blackshift.org:5269
Grade T: Certificate is not trusted, but ignoring trust would score an A.
xmpp.blackshift.org:5269
StartTLS
REQUIRED

SRV records _xmpp-server._tcp.blackshift.org DNSSEC

Priority Weight Port Server
10 0 5269 xmpp.blackshift.org

TLSA records

Certificates

Subject
commonName
xmpp.blackshift.org
countryName
DE
emailAddress
hostmaster@blackshift.org
Details
Error: certificate has expired.
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2015-09-05 08:32:59 UTC
Valid to
2016-09-05 01:19:22 UTC
CRL
http://crl.startssl.com/crt1-crl.crl
OCSP
http://ocsp.startssl.com/sub/class1/server/ca
Valid for blackshift.org
YES
48:95:81:A4:1C:3B:A3:B7:95:A4:83:BE:28:3C:40:6B:58:5A:8D:F4
Subject Alternative Names
DNSName
xmpp.blackshift.org
DNSName
blackshift.org Matches
SRVName
xmpp.blackshift.org
SRVName
blackshift.org
XMPPAddr
xmpp.blackshift.org
XMPPAddr
blackshift.org Matches
Subject
commonName
StartCom Class 1 Primary Intermediate Server CA
countryName
IL
organizationalUnitName
Secure Digital Certificate Signing
organizationName
StartCom Ltd.
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2007-10-14 20:54:17 UTC
Valid to
2022-10-14 20:54:17 UTC
CRL
http://crl.startssl.com/sfsca.crl
OCSP
http://ocsp.startssl.com/ca
0A:D3:8A:30:AB:C0:F0:B6:05:B4:5C:72:7A:90:81:9E:7F:F9:DA:F4
Subject
commonName
StartCom Certification Authority
countryName
IL
organizationalUnitName
Secure Digital Certificate Signing
organizationName
StartCom Ltd.
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2006-09-17 19:46:37 UTC
Valid to
2036-09-17 19:46:37 UTC
CRL
http://crl.startssl.com/ca-g2.crl
OCSP
http://ocsp.startssl.com/ca-g2
14:E8:0D:AF:47:BB:F6:44:5D:21:F2:2F:C1:8C:B4:56:93:3F:56:8D
Subject
commonName
StartCom Certification Authority G2
countryName
IL
organizationName
StartCom Ltd.
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2010-01-01 01:00:00 UTC
Valid to
2039-12-31 23:59:00 UTC
BB:25:A3:D8:49:30:0F:2E:87:9F:74:36:43:6D:12:94:4A:F5:5A:DA
Subject
commonName
StartCom Certification Authority
countryName
IL
organizationalUnitName
Secure Digital Certificate Signing
organizationName
StartCom Ltd.
Details
Warning: Certificate is unused.
Error: self signed certificate in certificate chain.
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2006-09-17 19:46:37 UTC
Valid to
2036-09-17 19:46:36 UTC
A3:F1:33:3F:E2:42:BF:CF:C5:D1:4E:8F:39:42:98:40:68:10:D1:A0

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA384 (0xc028) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: secp384r1
AES256-GCM-SHA384 (0x9d) 256 No -
AES128-GCM-SHA256 (0x9c) 128 No -
AES256-SHA256 (0x3d) 256 No -
AES128-SHA256 (0x3c) 128 No -
AES256-SHA (0x35) 256 No -
CAMELLIA256-SHA (0x84) 256 No -
AES128-SHA (0x2f) 128 No -
CAMELLIA128-SHA (0x41) 128 No -

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=blackshift.org&amp;type=server'><img src='https://xmpp.net/badge.php?domain=blackshift.org' alt='xmpp.net score' /></a>