IM Observatory

IM Observatory server report for niel.site

Test started 2021-01-28 23:25:24 UTC .

Show client to server result | Permalink to this report |

Score

niel.site:5269
Certificate score:
100
Key exchange score:
100
Protocol score:
100
Cipher score:
90
Grade:

A

General

niel.site:5269
StartTLS
REQUIRED
Peer certificate
The server requires incoming s2s connections to present a peer certificate.

DNS

SRV records _xmpp-server._tcp.niel.site NO DNSSEC

Priority Weight Port Server
10 0 5269 niel.site

TLSA records

_5269._tcp.niel.site NO DNSSEC

TLS

niel.site:5269

Certificates

#0 *.niel.site

Subject
commonName
*.niel.site
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2019-12-26 00:00:00 UTC
Valid to
2021-12-24 23:59:59 UTC
OCSP
http://ocsp.sectigo.com
Valid for niel.site
YES
73:42:72:68:11:4A:F6:1A:D0:78:CF:B4:2D:CC:F0:52:D6:61:64:E6
Subject Alternative Names
DNSName
*.niel.site
DNSName
niel.site Matches

#1 Sectigo RSA Domain Validation Secure Server CA

Subject
commonName
Sectigo RSA Domain Validation Secure Server CA
countryName
GB
localityName
Salford
organizationName
Sectigo Limited
stateOrProvinceName
Greater Manchester
Details
Signature algorithm
sha384WithRSAEncryption
Public key
2048 bit RSA
Valid from
2018-11-02 00:00:00 UTC
Valid to
2030-12-31 23:59:59 UTC
CRL
http://crl.usertrust.com/USERTrustRSACertificationAuthority.crl
OCSP
http://ocsp.usertrust.com
33:E4:E8:08:07:20:4C:2B:61:82:A3:A1:4B:59:1A:CD:25:B5:F0:DB

#2 USERTrust RSA Certification Authority

Subject
commonName
USERTrust RSA Certification Authority
countryName
US
localityName
Jersey City
organizationName
The USERTRUST Network
stateOrProvinceName
New Jersey
Details
Signature algorithm
sha384WithRSAEncryption
Public key
4096 bit RSA
Valid from
2019-03-12 00:00:00 UTC
Valid to
2028-12-31 23:59:59 UTC
CRL
http://crl.comodoca.com/AAACertificateServices.crl
OCSP
http://ocsp.comodoca.com
D8:9E:3B:D4:3D:5D:90:9B:47:A1:89:77:AA:9D:5C:E3:6C:EE:18:4C

AAA Certificate Services

Subject
commonName
AAA Certificate Services
countryName
GB
localityName
Salford
organizationName
Comodo CA Limited
stateOrProvinceName
Greater Manchester
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2004-01-01 00:00:00 UTC
Valid to
2028-12-31 23:59:59 UTC
CRL
http://crl.comodo.net/AAACertificateServices.crl
D1:EB:23:A4:6D:17:D6:8F:D9:25:64:C2:F1:F1:60:17:64:D8:E3:49

Protocols

SSLv2 No
SSLv3 No
TLSv1 No
TLSv1.1 No
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
DHE-RSA-AES256-GCM-SHA384 (0x9f) 256 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-AES256-SHA256 (0x6b) 256 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-AES256-SHA (0x39) 256 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-CAMELLIA256-SHA (0x88) 256 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-AES128-GCM-SHA256 (0x9e) 128 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-AES128-SHA256 (0x67) 128 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-CAMELLIA128-SHA (0x45) 128 Yes Diffie-Hellman:
Bitsize: 4096
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA384 (0xc028) 256 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: secp384r1
AES256-GCM-SHA384 (0x9d) 256 No -
AES256-SHA256 (0x3d) 256 No -
AES256-SHA (0x35) 256 No -
CAMELLIA256-SHA (0x84) 256 No -
AES128-GCM-SHA256 (0x9c) 128 No -
AES128-SHA256 (0x3c) 128 No -
AES128-SHA (0x2f) 128 No -
CAMELLIA128-SHA (0x41) 128 No -

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=niel.site&amp;type=server'><img src='https://xmpp.net/badge.php?domain=niel.site' alt='xmpp.net score' /></a>

Some rights reserved.