IM Observatory client report for gmail.com

Test started 2021-10-23 19:45:50 UTC .

Show server to server result | Permalink to this report |

xmpp.l.google.com:5222
alt1.xmpp.l.google.com:5222
alt2.xmpp.l.google.com:5222
alt3.xmpp.l.google.com:5222
alt4.xmpp.l.google.com:5222

Show all 5 SRV targets

xmpp.l.google.com:5222
StartTLS
REQUIRED

SASL

Pre-TLS
X-GOOGLE-TOKEN
X-OAUTH2
Post-TLS
PLAIN
X-GOOGLE-TOKEN
X-OAUTH2

alt1.xmpp.l.google.com:5222
StartTLS
REQUIRED

SASL

Pre-TLS
X-GOOGLE-TOKEN
X-OAUTH2
Post-TLS
PLAIN
X-GOOGLE-TOKEN
X-OAUTH2

alt2.xmpp.l.google.com:5222
StartTLS
REQUIRED

SASL

Pre-TLS
X-GOOGLE-TOKEN
X-OAUTH2
Post-TLS
PLAIN
X-GOOGLE-TOKEN
X-OAUTH2

alt3.xmpp.l.google.com:5222
StartTLS
REQUIRED

SASL

Pre-TLS
X-GOOGLE-TOKEN
X-OAUTH2
Post-TLS
PLAIN
X-GOOGLE-TOKEN
X-OAUTH2

alt4.xmpp.l.google.com:5222
StartTLS
REQUIRED

SASL

Pre-TLS
X-GOOGLE-TOKEN
X-OAUTH2
Post-TLS
PLAIN
X-GOOGLE-TOKEN
X-OAUTH2

Show all 5 SRV targets

SRV records _xmpp-client._tcp.gmail.com NO DNSSEC

Priority Weight Port Server
5 0 5222 xmpp.l.google.com
20 0 5222 alt1.xmpp.l.google.com
20 0 5222 alt2.xmpp.l.google.com
20 0 5222 alt3.xmpp.l.google.com
20 0 5222 alt4.xmpp.l.google.com

TLSA records

Show all 5 SRV targets

Certificates

Subject
commonName
gmail.com
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2021-10-04 02:11:39 UTC
Valid to
2021-12-27 02:11:38 UTC
CRL
http://crls.pki.goog/gts1c3/QOvJ0N1sT2A.crl
OCSP
http://ocsp.pki.goog/gts1c3
Valid for gmail.com
YES
51:F7:D6:02:E9:D6:35:F5:1B:24:8F:A0:DF:8E:81:51:59:14:33:6A
Subject Alternative Names
DNSName
gmail.com Matches
DNSName
*.gmail.com
Subject
commonName
GTS CA 1C3
countryName
US
organizationName
Google Trust Services LLC
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2020-08-13 00:00:42 UTC
Valid to
2027-09-30 00:00:42 UTC
CRL
http://crl.pki.goog/gtsr1/gtsr1.crl
OCSP
http://ocsp.pki.goog/gtsr1
1E:7E:F6:47:CB:A1:50:28:1C:60:89:72:57:10:28:78:C4:BD:8C:DC
Subject
commonName
GTS Root R1
countryName
US
organizationName
Google Trust Services LLC
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2020-06-19 00:00:42 UTC
Valid to
2028-01-28 00:00:42 UTC
CRL
http://crl.pki.goog/gsr1/gsr1.crl
OCSP
http://ocsp.pki.goog/gsr1
08:74:54:87:E8:91:C1:9E:30:78:C1:F2:A0:7E:45:29:50:EF:36:F6
Subject
commonName
GlobalSign Root CA
countryName
BE
organizationalUnitName
Root CA
organizationName
GlobalSign nv-sa
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
1998-09-01 12:00:00 UTC
Valid to
2028-01-28 12:00:00 UTC
B1:BC:96:8B:D4:F4:9D:62:2A:A8:9A:81:F2:15:01:52:A4:1D:82:9C

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: prime256v1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: prime256v1
AES128-GCM-SHA256 (0x9c) 128 No -
AES256-GCM-SHA384 (0x9d) 256 No -
AES128-SHA (0x2f) 128 No -
AES256-SHA (0x35) 256 No -
DES-CBC3-SHA (0xa) WEAK 112 No -

Certificates

Subject
commonName
gmail.com
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2021-10-04 02:11:39 UTC
Valid to
2021-12-27 02:11:38 UTC
CRL
http://crls.pki.goog/gts1c3/QOvJ0N1sT2A.crl
OCSP
http://ocsp.pki.goog/gts1c3
51:F7:D6:02:E9:D6:35:F5:1B:24:8F:A0:DF:8E:81:51:59:14:33:6A
Subject Alternative Names
DNSName
gmail.com
DNSName
*.gmail.com
Subject
commonName
GTS CA 1C3
countryName
US
organizationName
Google Trust Services LLC
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2020-08-13 00:00:42 UTC
Valid to
2027-09-30 00:00:42 UTC
CRL
http://crl.pki.goog/gtsr1/gtsr1.crl
OCSP
http://ocsp.pki.goog/gtsr1
1E:7E:F6:47:CB:A1:50:28:1C:60:89:72:57:10:28:78:C4:BD:8C:DC
Subject
commonName
GTS Root R1
countryName
US
organizationName
Google Trust Services LLC
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2020-06-19 00:00:42 UTC
Valid to
2028-01-28 00:00:42 UTC
CRL
http://crl.pki.goog/gsr1/gsr1.crl
OCSP
http://ocsp.pki.goog/gsr1
08:74:54:87:E8:91:C1:9E:30:78:C1:F2:A0:7E:45:29:50:EF:36:F6
Subject
commonName
GlobalSign Root CA
countryName
BE
organizationalUnitName
Root CA
organizationName
GlobalSign nv-sa
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
1998-09-01 12:00:00 UTC
Valid to
2028-01-28 12:00:00 UTC
B1:BC:96:8B:D4:F4:9D:62:2A:A8:9A:81:F2:15:01:52:A4:1D:82:9C

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: prime256v1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: prime256v1
AES128-GCM-SHA256 (0x9c) 128 No -
AES256-GCM-SHA384 (0x9d) 256 No -
AES128-SHA (0x2f) 128 No -
AES256-SHA (0x35) 256 No -
DES-CBC3-SHA (0xa) WEAK 112 No -

Certificates

Subject
commonName
gmail.com
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2021-10-04 02:11:39 UTC
Valid to
2021-12-27 02:11:38 UTC
CRL
http://crls.pki.goog/gts1c3/QOvJ0N1sT2A.crl
OCSP
http://ocsp.pki.goog/gts1c3
51:F7:D6:02:E9:D6:35:F5:1B:24:8F:A0:DF:8E:81:51:59:14:33:6A
Subject Alternative Names
DNSName
gmail.com
DNSName
*.gmail.com
Subject
commonName
GTS CA 1C3
countryName
US
organizationName
Google Trust Services LLC
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2020-08-13 00:00:42 UTC
Valid to
2027-09-30 00:00:42 UTC
CRL
http://crl.pki.goog/gtsr1/gtsr1.crl
OCSP
http://ocsp.pki.goog/gtsr1
1E:7E:F6:47:CB:A1:50:28:1C:60:89:72:57:10:28:78:C4:BD:8C:DC
Subject
commonName
GTS Root R1
countryName
US
organizationName
Google Trust Services LLC
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2020-06-19 00:00:42 UTC
Valid to
2028-01-28 00:00:42 UTC
CRL
http://crl.pki.goog/gsr1/gsr1.crl
OCSP
http://ocsp.pki.goog/gsr1
08:74:54:87:E8:91:C1:9E:30:78:C1:F2:A0:7E:45:29:50:EF:36:F6

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: prime256v1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: prime256v1
AES128-GCM-SHA256 (0x9c) 128 No -
AES256-GCM-SHA384 (0x9d) 256 No -
AES128-SHA (0x2f) 128 No -
AES256-SHA (0x35) 256 No -
DES-CBC3-SHA (0xa) WEAK 112 No -

Certificates

Subject
commonName
gmail.com
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2021-10-04 02:11:39 UTC
Valid to
2021-12-27 02:11:38 UTC
CRL
http://crls.pki.goog/gts1c3/QOvJ0N1sT2A.crl
OCSP
http://ocsp.pki.goog/gts1c3
51:F7:D6:02:E9:D6:35:F5:1B:24:8F:A0:DF:8E:81:51:59:14:33:6A
Subject Alternative Names
DNSName
gmail.com
DNSName
*.gmail.com
Subject
commonName
GTS Root R1
countryName
US
organizationName
Google Trust Services LLC
Details
Warning: Certificate is unused.
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2020-06-19 00:00:42 UTC
Valid to
2028-01-28 00:00:42 UTC
CRL
http://crl.pki.goog/gsr1/gsr1.crl
OCSP
http://ocsp.pki.goog/gsr1
08:74:54:87:E8:91:C1:9E:30:78:C1:F2:A0:7E:45:29:50:EF:36:F6

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: prime256v1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: prime256v1
AES128-GCM-SHA256 (0x9c) 128 No -
AES256-GCM-SHA384 (0x9d) 256 No -
AES128-SHA (0x2f) 128 No -
AES256-SHA (0x35) 256 No -
DES-CBC3-SHA (0xa) WEAK 112 No -

Certificates

Subject
commonName
gmail.com
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2021-10-04 02:11:39 UTC
Valid to
2021-12-27 02:11:38 UTC
CRL
http://crls.pki.goog/gts1c3/QOvJ0N1sT2A.crl
OCSP
http://ocsp.pki.goog/gts1c3
51:F7:D6:02:E9:D6:35:F5:1B:24:8F:A0:DF:8E:81:51:59:14:33:6A
Subject Alternative Names
DNSName
gmail.com
DNSName
*.gmail.com
Subject
commonName
GTS Root R1
countryName
US
organizationName
Google Trust Services LLC
Details
Warning: Certificate is unused.
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2020-06-19 00:00:42 UTC
Valid to
2028-01-28 00:00:42 UTC
CRL
http://crl.pki.goog/gsr1/gsr1.crl
OCSP
http://ocsp.pki.goog/gsr1
08:74:54:87:E8:91:C1:9E:30:78:C1:F2:A0:7E:45:29:50:EF:36:F6

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: prime256v1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: prime256v1
AES128-GCM-SHA256 (0x9c) 128 No -
AES256-GCM-SHA384 (0x9d) 256 No -
AES128-SHA (0x2f) 128 No -
AES256-SHA (0x35) 256 No -
DES-CBC3-SHA (0xa) WEAK 112 No -

Show all 5 SRV targets

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=gmail.com&amp;type=client'><img src='https://xmpp.net/badge.php?domain=gmail.com' alt='xmpp.net score' /></a>