IM Observatory server report for dark-alexandr.net

Test started 2019-06-14 15:43:38 UTC .

Show client to server result | Permalink to this report |

dark-alexandr.net:5269
Grade T: Certificate is not trusted, but ignoring trust would score an A.
Server uses an RSA key with > 4096 bits. This has known incompatibility problems with many servers and clients.
dark-alexandr.net:5269
StartTLS
ALLOWED

SRV records _xmpp-server._tcp.dark-alexandr.net DNSSEC

Priority Weight Port Server
5 0 5269 dark-alexandr.net

TLSA records

Certificates

Subject
commonName
dark-alexandr.net
Details
Signature algorithm
sha512WithRSAEncryption
Public key
8192 bit RSA
Valid from
2019-03-24 22:35:34 UTC
Valid to
2019-09-20 22:35:34 UTC
CRL
http://crl.cacert.org/revoke.crl
OCSP
http://ocsp.cacert.org/
Valid for dark-alexandr.net
YES
DF:1C:08:CE:FA:F0:E4:42:8D:C3:44:F1:67:44:27:17:F1:8E:98:5C
Subject Alternative Names
DNSName
dark-alexandr.net Matches
XMPPAddr
dark-alexandr.net Matches
Subject
commonName
CA Cert Signing Authority
emailAddress
support@cacert.org
organizationalUnitName
http://www.cacert.org
organizationName
Root CA
Details
Error: self signed certificate in certificate chain.
Signature algorithm
md5WithRSAEncryption INSECURE
Public key
4096 bit RSA
Valid from
2003-03-30 12:29:49 UTC
Valid to
2033-03-29 12:29:49 UTC
CRL
https://www.cacert.org/revoke.crl
13:5C:EC:36:F4:9C:B8:E9:3B:1A:B2:70:CD:80:88:46:76:CE:8F:33

Protocols

SSLv2 No
SSLv3 No
TLSv1 No
TLSv1.1 No
TLSv1.2 Yes

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: secp384r1
DHE-RSA-AES256-GCM-SHA384 (0x9f) 256 Yes Diffie-Hellman:
Bitsize: 9998

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=dark-alexandr.net&amp;type=server'><img src='https://xmpp.net/badge.php?domain=dark-alexandr.net' alt='xmpp.net score' /></a>