IM Observatory client report for fritz.wtf

Test started 2018-05-16 18:16:01 UTC .

Show server to server result | Permalink to this report | Retest

fritz.wtf:5222
Grade T: Certificate is not trusted, but ignoring trust would score an A.
fritz.wtf:5222
StartTLS
REQUIRED

SASL

Pre-TLS

None

Post-TLS
PLAIN
SCRAM-SHA-1
SCRAM-SHA-1-PLUS

SRV records _xmpp-client._tcp.fritz.wtf NO DNSSEC

Priority Weight Port Server

TLSA records

Certificates

Subject
commonName
fritz.wtf
Details
Error: unable to get local issuer certificate.
Error: unable to verify the first certificate.
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2017-11-09 09:00:49 UTC
Valid to
2018-02-07 09:00:49 UTC
OCSP
http://ocsp.int-x3.letsencrypt.org
Valid for fritz.wtf
YES
9D:F2:16:B8:12:FC:DD:0B:74:5A:39:95:6E:95:4B:94:8C:C4:D0:A3
Subject Alternative Names
DNSName
amp-off.com
DNSName
fritz.wtf Matches
DNSName
mail.amp-off.com
Subject
commonName
Let's Encrypt Authority X3
countryName
US
organizationName
Let's Encrypt
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2016-10-06 15:43:55 UTC
Valid to
2021-10-06 15:43:55 UTC
CRL
http://crl.root-x1.letsencrypt.org
OCSP
http://ocsp.root-x1.letsencrypt.org/
1B:23:67:53:54:FC:AD:90:11:9D:88:07:50:15:EA:17:AD:D5:27:D8
Subject
commonName
ISRG Root X1
countryName
US
organizationName
Internet Security Research Group
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2015-06-04 11:04:38 UTC
Valid to
2035-06-04 11:04:38 UTC
CA:BD:2A:79:A1:07:6A:31:F2:1D:25:36:35:CB:03:9D:43:29:A5:E8

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA384 (0xc028) 256 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: secp384r1
AES256-GCM-SHA384 (0x9d) 256 No -
AES256-SHA256 (0x3d) 256 No -
AES256-SHA (0x35) 256 No -
CAMELLIA256-SHA (0x84) 256 No -
AES128-GCM-SHA256 (0x9c) 128 No -
AES128-SHA256 (0x3c) 128 No -
AES128-SHA (0x2f) 128 No -
CAMELLIA128-SHA (0x41) 128 No -

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=fritz.wtf&amp;type=client'><img src='https://xmpp.net/badge.php?domain=fritz.wtf' alt='xmpp.net score' /></a>