IM Observatory

IM Observatory server report for nigma.city

Test started 2021-07-10 09:53:07 UTC .

Show client to server result | Permalink to this report |

Score

conference.nigma.city:5269
Certificate score:
0
Key exchange score:
90
Protocol score:
95
Cipher score:
90
Grade:

T

Grade T: Certificate is not trusted, but ignoring trust would score an A.
nigma.city:5269
Certificate score:
0
Key exchange score:
90
Protocol score:
95
Cipher score:
90
Grade:

T

Grade T: Certificate is not trusted, but ignoring trust would score an A.

Show all 2 SRV targets

General

conference.nigma.city:5269
StartTLS
ALLOWED

nigma.city:5269
StartTLS
ALLOWED

Show all 2 SRV targets

DNS

SRV records _xmpp-server._tcp.nigma.city DNSSEC

Priority Weight Port Server
5 1 5269 conference.nigma.city
5 1 5269 nigma.city

TLSA records

_5269._tcp.conference.nigma.city DNSSEC

_5269._tcp.nigma.city DNSSEC

Show all 2 SRV targets

TLS

conference.nigma.city:5269

Certificates

#0 nigma.city

Subject
commonName
nigma.city
Details
Error: certificate has expired.
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2021-04-11 04:43:44 UTC
Valid to
2021-07-10 04:43:44 UTC
OCSP
http://r3.o.lencr.org
Valid for nigma.city
YES
53:16:FF:D0:71:DB:8F:B1:BA:F8:75:7C:5E:F9:65:94:64:2E:36:42
Subject Alternative Names
DNSName
*.nigma.city
DNSName
nigma.city Matches

#1 R3

Subject
commonName
R3
countryName
US
organizationName
Let's Encrypt
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2020-10-07 19:21:40 UTC
Valid to
2021-09-29 19:21:40 UTC
CRL
http://crl.identrust.com/DSTROOTCAX3CRL.crl
48:50:4E:97:4C:0D:AC:5B:5C:D4:76:C8:20:22:74:B2:4C:8C:71:72

DST Root CA X3

Subject
commonName
DST Root CA X3
organizationName
Digital Signature Trust Co.
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2000-09-30 21:12:19 UTC
Valid to
2021-09-30 14:01:15 UTC 
DA:C9:02:4F:54:D8:F6:DF:94:93:5F:B1:73:26:38:CA:6A:D7:7C:13

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA384 (0xc028) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: secp384r1
DHE-RSA-AES256-GCM-SHA384 (0x9f) 256 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-AES128-GCM-SHA256 (0x9e) 128 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-AES256-SHA256 (0x6b) 256 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-AES128-SHA256 (0x67) 128 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-AES256-SHA (0x39) 256 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-CAMELLIA256-SHA (0x88) 256 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-CAMELLIA128-SHA (0x45) 128 Yes Diffie-Hellman:
Bitsize: 4096
AES256-GCM-SHA384 (0x9d) 256 No -
AES128-GCM-SHA256 (0x9c) 128 No -
AES256-SHA256 (0x3d) 256 No -
AES128-SHA256 (0x3c) 128 No -
AES256-SHA (0x35) 256 No -
CAMELLIA256-SHA (0x84) 256 No -
AES128-SHA (0x2f) 128 No -
CAMELLIA128-SHA (0x41) 128 No -

nigma.city:5269

Certificates

#0 nigma.city

Subject
commonName
nigma.city
Details
Error: certificate has expired.
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2021-04-11 04:43:44 UTC
Valid to
2021-07-10 04:43:44 UTC
OCSP
http://r3.o.lencr.org
53:16:FF:D0:71:DB:8F:B1:BA:F8:75:7C:5E:F9:65:94:64:2E:36:42
Subject Alternative Names
DNSName
*.nigma.city
DNSName
nigma.city

#1 R3

Subject
commonName
R3
countryName
US
organizationName
Let's Encrypt
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2020-10-07 19:21:40 UTC
Valid to
2021-09-29 19:21:40 UTC
CRL
http://crl.identrust.com/DSTROOTCAX3CRL.crl
48:50:4E:97:4C:0D:AC:5B:5C:D4:76:C8:20:22:74:B2:4C:8C:71:72

DST Root CA X3

Subject
commonName
DST Root CA X3
organizationName
Digital Signature Trust Co.
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2000-09-30 21:12:19 UTC
Valid to
2021-09-30 14:01:15 UTC 
DA:C9:02:4F:54:D8:F6:DF:94:93:5F:B1:73:26:38:CA:6A:D7:7C:13

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA384 (0xc028) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: secp384r1
DHE-RSA-AES256-GCM-SHA384 (0x9f) 256 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-AES128-GCM-SHA256 (0x9e) 128 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-AES256-SHA256 (0x6b) 256 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-AES128-SHA256 (0x67) 128 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-AES256-SHA (0x39) 256 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-CAMELLIA256-SHA (0x88) 256 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Bitsize: 4096
DHE-RSA-CAMELLIA128-SHA (0x45) 128 Yes Diffie-Hellman:
Bitsize: 4096
AES256-GCM-SHA384 (0x9d) 256 No -
AES128-GCM-SHA256 (0x9c) 128 No -
AES256-SHA256 (0x3d) 256 No -
AES128-SHA256 (0x3c) 128 No -
AES256-SHA (0x35) 256 No -
CAMELLIA256-SHA (0x84) 256 No -
AES128-SHA (0x2f) 128 No -
CAMELLIA128-SHA (0x41) 128 No -

Show all 2 SRV targets

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=nigma.city&amp;type=server'><img src='https://xmpp.net/badge.php?domain=nigma.city' alt='xmpp.net score' /></a>

Some rights reserved.