IM Observatory server report for kode.im

Test started 2019-05-19 01:57:55 UTC .

Show client to server result | Permalink to this report |

venus.kode.im:5269
io.kode.im:5269
Grade T: Certificate is not trusted, but ignoring trust would score an A.

Show all 2 SRV targets

venus.kode.im:5269
StartTLS
REQUIRED
Peer certificate
The server requires incoming s2s connections to present a peer certificate.

io.kode.im:5269
StartTLS
REQUIRED
Peer certificate
The server requires incoming s2s connections to present a peer certificate.

Show all 2 SRV targets

SRV records _xmpp-server._tcp.kode.im NO DNSSEC

Priority Weight Port Server
10 5 5269 venus.kode.im
10 0 5269 io.kode.im

TLSA records

Show all 2 SRV targets

Certificates

Subject
commonName
kode.im
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2019-03-31 06:12:15 UTC
Valid to
2019-06-29 06:12:15 UTC
OCSP
http://ocsp.int-x3.letsencrypt.org
Valid for kode.im
YES
16:FC:6B:12:44:C1:28:4F:42:B0:32:A3:DC:73:CB:CE:3B:8B:59:13
Subject Alternative Names
DNSName
*.kode.im
DNSName
kode.im Matches
Subject
commonName
Let's Encrypt Authority X3
countryName
US
organizationName
Let's Encrypt
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2016-03-17 16:40:46 UTC
Valid to
2021-03-17 16:40:46 UTC
CRL
http://crl.identrust.com/DSTROOTCAX3CRL.crl
OCSP
http://isrg.trustid.ocsp.identrust.com
E6:A3:B4:5B:06:2D:50:9B:33:82:28:2D:19:6E:FE:97:D5:95:6C:CB
Subject
commonName
DST Root CA X3
organizationName
Digital Signature Trust Co.
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2000-09-30 21:12:19 UTC
Valid to
2021-09-30 14:01:15 UTC
DA:C9:02:4F:54:D8:F6:DF:94:93:5F:B1:73:26:38:CA:6A:D7:7C:13

Protocols

SSLv2 No
SSLv3 No
TLSv1 No
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
DHE-RSA-AES256-GCM-SHA384 (0x9f) 256 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-AES128-GCM-SHA256 (0x9e) 128 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-AES256-SHA256 (0x6b) 256 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-AES128-SHA256 (0x67) 128 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-AES256-SHA (0x39) 256 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-CAMELLIA256-SHA (0x88) 256 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-CAMELLIA128-SHA (0x45) 128 Yes Diffie-Hellman:
Bitsize: 2048
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA384 (0xc028) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: secp384r1
AES256-GCM-SHA384 (0x9d) 256 No -
AES128-GCM-SHA256 (0x9c) 128 No -
AES256-SHA256 (0x3d) 256 No -
AES128-SHA256 (0x3c) 128 No -
AES256-SHA (0x35) 256 No -
CAMELLIA256-SHA (0x84) 256 No -
AES128-SHA (0x2f) 128 No -
CAMELLIA128-SHA (0x41) 128 No -

Certificates

Subject
commonName
kode.im
Details
Error: certificate has expired.
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2018-12-01 20:01:12 UTC
Valid to
2019-03-01 20:01:12 UTC
OCSP
http://ocsp.int-x3.letsencrypt.org
42:66:54:A5:DE:FE:E1:F1:A7:A0:C5:E0:8A:B9:6E:FC:2B:56:AE:EB
Subject Alternative Names
DNSName
*.kode.im
DNSName
kode.im
Subject
commonName
Let's Encrypt Authority X3
countryName
US
organizationName
Let's Encrypt
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2016-03-17 16:40:46 UTC
Valid to
2021-03-17 16:40:46 UTC
CRL
http://crl.identrust.com/DSTROOTCAX3CRL.crl
OCSP
http://isrg.trustid.ocsp.identrust.com
E6:A3:B4:5B:06:2D:50:9B:33:82:28:2D:19:6E:FE:97:D5:95:6C:CB
Subject
commonName
DST Root CA X3
organizationName
Digital Signature Trust Co.
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2000-09-30 21:12:19 UTC
Valid to
2021-09-30 14:01:15 UTC
DA:C9:02:4F:54:D8:F6:DF:94:93:5F:B1:73:26:38:CA:6A:D7:7C:13

Protocols

SSLv2 No
SSLv3 No
TLSv1 No
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
DHE-RSA-AES256-GCM-SHA384 (0x9f) 256 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-AES128-GCM-SHA256 (0x9e) 128 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-AES256-SHA256 (0x6b) 256 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-AES128-SHA256 (0x67) 128 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-AES256-SHA (0x39) 256 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-CAMELLIA256-SHA (0x88) 256 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Bitsize: 2048
DHE-RSA-CAMELLIA128-SHA (0x45) 128 Yes Diffie-Hellman:
Bitsize: 2048
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA384 (0xc028) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: secp384r1
AES256-GCM-SHA384 (0x9d) 256 No -
AES128-GCM-SHA256 (0x9c) 128 No -
AES256-SHA256 (0x3d) 256 No -
AES128-SHA256 (0x3c) 128 No -
AES256-SHA (0x35) 256 No -
CAMELLIA256-SHA (0x84) 256 No -
AES128-SHA (0x2f) 128 No -
CAMELLIA128-SHA (0x41) 128 No -

Show all 2 SRV targets

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=kode.im&amp;type=server'><img src='https://xmpp.net/badge.php?domain=kode.im' alt='xmpp.net score' /></a>