IM Observatory server report for cable.comcast.com

Test started 2018-09-17 02:51:57 UTC .

Show client to server result | Permalink to this report | Retest

nxpfs.ucfederationcloud.com:5269
Certificate is not trusted, grade capped to F. Ignoring trust: C.
Warning: Server allows RC4 when using TLS 1.1 and/or TLS 1.2. Grade capped to C.
Server uses Diffie-Hellman parameters of < 2048 bits. Grade capped to B.
nxpfs.ucfederationcloud.com:5269
StartTLS
ALLOWED

SRV records _xmpp-server._tcp.cable.comcast.com DNSSEC

Priority Weight Port Server
0 0 5269 nxpfs.ucfederationcloud.com

TLSA records

Certificates

Subject
commonName
nxpfs.ucfederationcloud.com
countryName
US
localityName
Sunnyvale
organizationName
NextPlane Inc
stateOrProvinceName
California
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2018-08-03 18:09:35 UTC
Valid to
2018-10-30 18:39:33 UTC
CRL
http://crl.entrust.net/level1k.crl
OCSP
http://ocsp.entrust.net
Valid for cable.comcast.com
NO
87:F0:14:AB:06:7D:11:BE:F3:9A:3F:89:AB:5A:68:34:50:81:9C:B2
Subject Alternative Names
DNSName
nxpfs.ucfederationcloud.com
DNSName
ntt.eu
DNSName
nxps4b.com
DNSName
imectechnologies.com
DNSName
mesa-air.com
DNSName
oneworld.com
DNSName
imec.ie
DNSName
Takeda.com
DNSName
compassairline.com
DNSName
gojetairlines.com
DNSName
skywest-inc.com
DNSName
transstates.net
DNSName
tshstl.com
DNSName
FINNAIR.COM
DNSName
test.ucapps.net
DNSName
nuance.com
DNSName
expressjet.com
DNSName
skywest.com
DNSName
iberia.es
DNSName
ba.com
DNSName
hcl.com
DNSName
qantas.com.au
DNSName
dxc.com
Subject
commonName
Entrust Certification Authority - L1K
countryName
US
organizationalUnitName
(c) 2012 Entrust, Inc. - for authorized use only
organizationalUnitName
See www.entrust.net/legal-terms
organizationName
Entrust, Inc.
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2014-10-22 17:05:14 UTC
Valid to
2024-10-23 07:33:22 UTC
CRL
http://crl.entrust.net/g2ca.crl
OCSP
http://ocsp.entrust.net
CC:A2:7D:33:C7:35:A7:D0:6D:1F:EC:AD:98:0E:49:8D:A6:81:C9:63
Subject
commonName
Entrust Root Certification Authority - G2
countryName
US
organizationalUnitName
(c) 2009 Entrust, Inc. - for authorized use only
organizationalUnitName
See www.entrust.net/legal-terms
organizationName
Entrust, Inc.
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2009-07-07 17:25:54 UTC
Valid to
2030-12-07 17:55:54 UTC
8C:F4:27:FD:79:0C:3A:D1:66:06:8D:E8:1E:57:EF:BB:93:22:72:D4

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: sect571r1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: sect571r1
ECDHE-RSA-RC4-SHA (0xc011) 128 Yes Curve: sect571r1
DHE-RSA-AES128-SHA256 (0x67) 128 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
RC4-MD5 (0x10080) 128 No -
AES128-SHA256 (0x3c) 128 No -
AES128-SHA (0x2f) 128 No -
RC4-SHA (0x5) 128 No -
ECDHE-RSA-DES-CBC3-SHA (0xc012) WEAK 112 Yes Curve: sect571r1
EDH-RSA-DES-CBC3-SHA (0x16) WEAK 112 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
DES-CBC3-SHA (0xa) WEAK 112 No -

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=cable.comcast.com&amp;type=server'><img src='https://xmpp.net/badge.php?domain=cable.comcast.com' alt='xmpp.net score' /></a>