IM Observatory client report for jabber.calyxinstitute.org
Test started 2022-01-23 21:50:46 UTC .
Show server to server result | Permalink to this report |
Score
ijeeynrc6x2uy5ob.onion:5222
Grade:
T
Grade T: Certificate is not trusted, but ignoring trust would score an A.
jabber.calyxinstitute.org:5222
Grade:
T
Grade T: Certificate is not trusted, but ignoring trust would score an A.
General
ijeeynrc6x2uy5ob.onion:5222
- StartTLS
- REQUIRED
SASL
Pre-TLS
None
Post-TLS
| DIGEST-MD5 |
| SCRAM-SHA-1 |
| SCRAM-SHA-1-PLUS |
jabber.calyxinstitute.org:5222
- StartTLS
- REQUIRED
SASL
Pre-TLS
None
Post-TLS
| DIGEST-MD5 |
| SCRAM-SHA-1 |
| SCRAM-SHA-1-PLUS |
DNS
SRV records _xmpp-client._tcp.jabber.calyxinstitute.org DNSSEC
| Priority | Weight | Port | Server |
|---|---|---|---|
| 4 | 0 | 5222 | ijeeynrc6x2uy5ob.onion |
| 5 | 1 | 5222 | jabber.calyxinstitute.org |
TLSA records
_5222._tcp.ijeeynrc6x2uy5ob.onion NO DNSSEC
_5222._tcp.jabber.calyxinstitute.org DNSSEC
TLS
ijeeynrc6x2uy5ob.onion:5222
Certificates
#0 jabber.calyxinstitute.org
Subject
- commonName
- jabber.calyxinstitute.org
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2021-12-20 06:42:45 UTC
- Valid to
- 2022-03-20 06:42:44 UTC
- OCSP
- http://r3.o.lencr.org
- Valid for jabber.calyxinstitute.org
- YES
8A:21:E9:AF:F1:CC:E5:C1:2D:DE:7D:B1:38:FF:F3:E9:54:C8:F8:A7
Subject Alternative Names
- DNSName
- jabber.calyxinstitute.org Matches
#1 R3
Subject
- commonName
- R3
- countryName
- US
- organizationName
- Let's Encrypt
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2020-09-04 00:00:00 UTC
- Valid to
- 2025-09-15 16:00:00 UTC
- CRL
- http://x1.c.lencr.org/
A0:53:37:5B:FE:84:E8:B7:48:78:2C:7C:EE:15:82:7A:6A:F5:A4:05
#2 ISRG Root X1
Subject
- commonName
- ISRG Root X1
- countryName
- US
- organizationName
- Internet Security Research Group
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 4096 bit RSA
- Valid from
- 2021-01-20 19:14:03 UTC
- Valid to
- 2024-09-30 18:14:03 UTC
- CRL
- http://crl.identrust.com/DSTROOTCAX3CRL.crl
93:3C:6D:DE:E9:5C:9C:41:A4:0F:9F:50:49:3D:82:BE:03:AD:87:BF
DST Root CA X3
Subject
- commonName
- DST Root CA X3
- organizationName
- Digital Signature Trust Co.
Details
- Signature algorithm
- sha1WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2000-09-30 21:12:19 UTC
- Valid to
- 2021-09-30 14:01:15 UTC
DA:C9:02:4F:54:D8:F6:DF:94:93:5F:B1:73:26:38:CA:6A:D7:7C:13
Protocols
| SSLv2 | No |
| SSLv3 | No |
| TLSv1 | Yes |
| TLSv1.1 | Yes |
| TLSv1.2 | Yes |
Ciphers
Server does not respect the client's cipher ordering.
| Cipher suite | Bitsize | Forward secrecy | Info |
|---|---|---|---|
| ECDHE-RSA-AES256-SHA (0xc014) | 256 | Yes | Curve: secp521r1 |
| ECDHE-RSA-AES128-SHA256 (0xc027) | 128 | Yes | Curve: secp521r1 |
| AES128-GCM-SHA256 (0x9c) | 128 | No | - |
| AES256-SHA (0x35) | 256 | No | - |
jabber.calyxinstitute.org:5222
Certificates
#0 jabber.calyxinstitute.org
Subject
- commonName
- jabber.calyxinstitute.org
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2021-12-20 06:42:45 UTC
- Valid to
- 2022-03-20 06:42:44 UTC
- OCSP
- http://r3.o.lencr.org
8A:21:E9:AF:F1:CC:E5:C1:2D:DE:7D:B1:38:FF:F3:E9:54:C8:F8:A7
Subject Alternative Names
- DNSName
- jabber.calyxinstitute.org
#1 R3
Subject
- commonName
- R3
- countryName
- US
- organizationName
- Let's Encrypt
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2020-09-04 00:00:00 UTC
- Valid to
- 2025-09-15 16:00:00 UTC
- CRL
- http://x1.c.lencr.org/
A0:53:37:5B:FE:84:E8:B7:48:78:2C:7C:EE:15:82:7A:6A:F5:A4:05
#2 ISRG Root X1
Subject
- commonName
- ISRG Root X1
- countryName
- US
- organizationName
- Internet Security Research Group
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 4096 bit RSA
- Valid from
- 2021-01-20 19:14:03 UTC
- Valid to
- 2024-09-30 18:14:03 UTC
- CRL
- http://crl.identrust.com/DSTROOTCAX3CRL.crl
93:3C:6D:DE:E9:5C:9C:41:A4:0F:9F:50:49:3D:82:BE:03:AD:87:BF
DST Root CA X3
Subject
- commonName
- DST Root CA X3
- organizationName
- Digital Signature Trust Co.
Details
- Signature algorithm
- sha1WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2000-09-30 21:12:19 UTC
- Valid to
- 2021-09-30 14:01:15 UTC
DA:C9:02:4F:54:D8:F6:DF:94:93:5F:B1:73:26:38:CA:6A:D7:7C:13
Protocols
| SSLv2 | No |
| SSLv3 | No |
| TLSv1 | Yes |
| TLSv1.1 | Yes |
| TLSv1.2 | Yes |
Ciphers
Server does not respect the client's cipher ordering.
| Cipher suite | Bitsize | Forward secrecy | Info |
|---|---|---|---|
| ECDHE-RSA-AES256-SHA (0xc014) | 256 | Yes | Curve: secp521r1 |
| ECDHE-RSA-AES128-SHA256 (0xc027) | 128 | Yes | Curve: secp521r1 |
| AES128-GCM-SHA256 (0x9c) | 128 | No | - |
| AES256-SHA (0x35) | 256 | No | - |
Badge
Want to show this result on your webpage? Add this:
<a href='https://xmpp.net/result.php?domain=jabber.calyxinstitute.org&type=client'><img src='https://xmpp.net/badge.php?domain=jabber.calyxinstitute.org' alt='xmpp.net score' /></a>