IM Observatory client report for gmail.com

Test started 2018-04-20 08:12:49 UTC .

Show server to server result | Permalink to this report | Retest

xmpp.l.google.com:5222
alt1.xmpp.l.google.com:5222
alt2.xmpp.l.google.com:5222
alt4.xmpp.l.google.com:5222
alt3.xmpp.l.google.com:5222
Error: Test failed.

Show all 5 SRV targets

xmpp.l.google.com:5222
Version
unknown unknown
StartTLS
REQUIRED

SASL

Pre-TLS
X-GOOGLE-TOKEN
X-OAUTH2
Post-TLS
PLAIN
X-GOOGLE-TOKEN
X-OAUTH2

alt1.xmpp.l.google.com:5222
Version
unknown unknown
StartTLS
REQUIRED

SASL

Pre-TLS
X-GOOGLE-TOKEN
X-OAUTH2
Post-TLS
PLAIN
X-GOOGLE-TOKEN
X-OAUTH2

alt2.xmpp.l.google.com:5222
Version
unknown unknown
StartTLS
REQUIRED

SASL

Pre-TLS
X-GOOGLE-TOKEN
X-OAUTH2
Post-TLS
PLAIN
X-GOOGLE-TOKEN
X-OAUTH2

alt4.xmpp.l.google.com:5222
Version
unknown unknown
StartTLS
REQUIRED

SASL

Pre-TLS
X-GOOGLE-TOKEN
X-OAUTH2
Post-TLS
PLAIN
X-GOOGLE-TOKEN
X-OAUTH2

alt3.xmpp.l.google.com:5222
Version
unknown unknown
StartTLS
REQUIRED

SASL

Pre-TLS
X-GOOGLE-TOKEN
X-OAUTH2
Post-TLS
PLAIN
X-GOOGLE-TOKEN
X-OAUTH2

Show all 5 SRV targets

SRV records _xmpp-client._tcp.gmail.com NO DNSSEC

Priority Weight Port Server
5 0 5222 xmpp.l.google.com
20 0 5222 alt1.xmpp.l.google.com
20 0 5222 alt2.xmpp.l.google.com
20 0 5222 alt4.xmpp.l.google.com
20 0 5222 alt3.xmpp.l.google.com

TLSA records

Show all 5 SRV targets

Certificates

Subject
commonName
gmail.com
countryName
US
localityName
Mountain View
organizationName
Google Inc
stateOrProvinceName
California
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2018-03-28 13:37:43 UTC
Valid to
2018-06-20 13:23:00 UTC
CRL
http://pki.google.com/GIAG2.crl
OCSP
http://clients1.google.com/ocsp
Valid for gmail.com
YES
FC:12:3A:BF:19:3E:C4:BA:17:98:73:EC:56:56:44:BF:F9:93:9F:C0
Subject Alternative Names
DNSName
gmail.com Matches
DNSName
*.gmail.com
Subject
commonName
Google Internet Authority G2
countryName
US
organizationName
Google Inc
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2017-05-22 11:32:37 UTC
Valid to
2018-12-31 23:59:59 UTC
CRL
http://g.symcb.com/crls/gtglobal.crl
OCSP
http://g.symcd.com
A6:12:0F:C0:B4:66:4F:AD:0B:3B:6F:FD:5F:7A:33:E5:61:DD:B8:7D
Subject
commonName
GeoTrust Global CA
countryName
US
organizationName
GeoTrust Inc.
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2002-05-21 04:00:00 UTC
Valid to
2018-08-21 04:00:00 UTC
CRL
http://crl.geotrust.com/crls/secureca.crl
73:59:75:5C:6D:F9:A0:AB:C3:06:0B:CE:36:95:64:C8:EC:45:42:A3
Subject
countryName
US
organizationName
Equifax
organizationalUnitName
Equifax Secure Certificate Authority
Details
Signature algorithm
sha1WithRSAEncryption
Public key
1024 bit RSA WEAK
Valid from
1998-08-22 16:41:51 UTC
Valid to
2018-08-22 16:41:51 UTC
D2:32:09:AD:23:D3:14:23:21:74:E4:0D:7F:9D:62:13:97:86:63:3A

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: prime256v1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: prime256v1
AES128-GCM-SHA256 (0x9c) 128 No -
AES256-GCM-SHA384 (0x9d) 256 No -
AES128-SHA (0x2f) 128 No -
AES256-SHA (0x35) 256 No -
DES-CBC3-SHA (0xa) WEAK 112 No -

Certificates

Subject
commonName
gmail.com
countryName
US
localityName
Mountain View
organizationName
Google Inc
stateOrProvinceName
California
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2018-03-28 13:37:43 UTC
Valid to
2018-06-20 13:23:00 UTC
CRL
http://pki.google.com/GIAG2.crl
OCSP
http://clients1.google.com/ocsp
FC:12:3A:BF:19:3E:C4:BA:17:98:73:EC:56:56:44:BF:F9:93:9F:C0
Subject Alternative Names
DNSName
gmail.com
DNSName
*.gmail.com
Subject
commonName
Google Internet Authority G2
countryName
US
organizationName
Google Inc
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2017-05-22 11:32:37 UTC
Valid to
2018-12-31 23:59:59 UTC
CRL
http://g.symcb.com/crls/gtglobal.crl
OCSP
http://g.symcd.com
A6:12:0F:C0:B4:66:4F:AD:0B:3B:6F:FD:5F:7A:33:E5:61:DD:B8:7D
Subject
commonName
GeoTrust Global CA
countryName
US
organizationName
GeoTrust Inc.
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2002-05-21 04:00:00 UTC
Valid to
2018-08-21 04:00:00 UTC
CRL
http://crl.geotrust.com/crls/secureca.crl
73:59:75:5C:6D:F9:A0:AB:C3:06:0B:CE:36:95:64:C8:EC:45:42:A3
Subject
countryName
US
organizationName
Equifax
organizationalUnitName
Equifax Secure Certificate Authority
Details
Signature algorithm
sha1WithRSAEncryption
Public key
1024 bit RSA WEAK
Valid from
1998-08-22 16:41:51 UTC
Valid to
2018-08-22 16:41:51 UTC
D2:32:09:AD:23:D3:14:23:21:74:E4:0D:7F:9D:62:13:97:86:63:3A

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: prime256v1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: prime256v1
AES128-GCM-SHA256 (0x9c) 128 No -
AES256-GCM-SHA384 (0x9d) 256 No -
AES128-SHA (0x2f) 128 No -
AES256-SHA (0x35) 256 No -
DES-CBC3-SHA (0xa) WEAK 112 No -

Certificates

Subject
commonName
gmail.com
countryName
US
localityName
Mountain View
organizationName
Google Inc
stateOrProvinceName
California
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2018-03-28 13:37:43 UTC
Valid to
2018-06-20 13:23:00 UTC
CRL
http://pki.google.com/GIAG2.crl
OCSP
http://clients1.google.com/ocsp
FC:12:3A:BF:19:3E:C4:BA:17:98:73:EC:56:56:44:BF:F9:93:9F:C0
Subject Alternative Names
DNSName
gmail.com
DNSName
*.gmail.com
Subject
commonName
Google Internet Authority G2
countryName
US
organizationName
Google Inc
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2017-05-22 11:32:37 UTC
Valid to
2018-12-31 23:59:59 UTC
CRL
http://g.symcb.com/crls/gtglobal.crl
OCSP
http://g.symcd.com
A6:12:0F:C0:B4:66:4F:AD:0B:3B:6F:FD:5F:7A:33:E5:61:DD:B8:7D
Subject
commonName
GeoTrust Global CA
countryName
US
organizationName
GeoTrust Inc.
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2002-05-21 04:00:00 UTC
Valid to
2018-08-21 04:00:00 UTC
CRL
http://crl.geotrust.com/crls/secureca.crl
73:59:75:5C:6D:F9:A0:AB:C3:06:0B:CE:36:95:64:C8:EC:45:42:A3

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: prime256v1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: prime256v1
AES128-GCM-SHA256 (0x9c) 128 No -
AES256-GCM-SHA384 (0x9d) 256 No -
AES128-SHA (0x2f) 128 No -
AES256-SHA (0x35) 256 No -
DES-CBC3-SHA (0xa) WEAK 112 No -

Certificates

Subject
commonName
gmail.com
countryName
US
localityName
Mountain View
organizationName
Google Inc
stateOrProvinceName
California
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2018-03-28 13:37:43 UTC
Valid to
2018-06-20 13:23:00 UTC
CRL
http://pki.google.com/GIAG2.crl
OCSP
http://clients1.google.com/ocsp
FC:12:3A:BF:19:3E:C4:BA:17:98:73:EC:56:56:44:BF:F9:93:9F:C0
Subject Alternative Names
DNSName
gmail.com
DNSName
*.gmail.com
Subject
commonName
GeoTrust Global CA
countryName
US
organizationName
GeoTrust Inc.
Details
Warning: Certificate is unused.
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2002-05-21 04:00:00 UTC
Valid to
2018-08-21 04:00:00 UTC
CRL
http://crl.geotrust.com/crls/secureca.crl
73:59:75:5C:6D:F9:A0:AB:C3:06:0B:CE:36:95:64:C8:EC:45:42:A3

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: prime256v1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: prime256v1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: prime256v1
AES128-GCM-SHA256 (0x9c) 128 No -
AES256-GCM-SHA384 (0x9d) 256 No -
AES128-SHA (0x2f) 128 No -
AES256-SHA (0x35) 256 No -
DES-CBC3-SHA (0xa) WEAK 112 No -

Certificates

Subject
commonName
gmail.com
countryName
US
localityName
Mountain View
organizationName
Google Inc
stateOrProvinceName
California
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2018-03-28 13:37:43 UTC
Valid to
2018-06-20 13:23:00 UTC
CRL
http://pki.google.com/GIAG2.crl
OCSP
http://clients1.google.com/ocsp
FC:12:3A:BF:19:3E:C4:BA:17:98:73:EC:56:56:44:BF:F9:93:9F:C0
Subject Alternative Names
DNSName
gmail.com
DNSName
*.gmail.com
Subject
commonName
GeoTrust Global CA
countryName
US
organizationName
GeoTrust Inc.
Details
Warning: Certificate is unused.
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2002-05-21 04:00:00 UTC
Valid to
2018-08-21 04:00:00 UTC
CRL
http://crl.geotrust.com/crls/secureca.crl
73:59:75:5C:6D:F9:A0:AB:C3:06:0B:CE:36:95:64:C8:EC:45:42:A3

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Warning: Still in progress.

Show all 5 SRV targets

Badge

IM observatory score

Want to show this result on your webpage? Add this:

<a href='https://check.messaging.one/result.php?domain=gmail.com&amp;type=client'>
  <img src='https://check.messaging.one/badge.php?domain=gmail.com' alt='IM observatory score' />
</a>