IM Observatory server report for madavi.de

Test started 2018-07-15 00:23:13 UTC .

Show client to server result | Permalink to this report | Retest

madavi.de:5269
Grade T: Certificate is not trusted, but ignoring trust would score an A.
madavi.de:5269
Version
Prosody trunk nightly build 925 (2018-07-04, 76780f37028d)
StartTLS
ALLOWED
Peer certificate
The server requires incoming s2s connections to present a peer certificate.

SRV records _xmpp-server._tcp.madavi.de DNSSEC

Priority Weight Port Server
0 5 5269 madavi.de

TLSA records

Verified Usage Selector Match Data
NO domain-issued certificate full SHA-256
82:1B:63:47:90:BA:CA:1B:53:F6:E7:94:64:AA:21:0F:C0:A1:BC:67:F9:87:8B:15:57:38:77:6E:55:DB:58:6F
NO domain-issued certificate full SHA-256
B1:36:65:DF:DF:20:AC:33:FD:86:E9:64:BA:52:C3:35:B2:64:D7:82:02:D4:E9:61:E4:2D:21:39:A9:AE:65:BD
NO domain-issued certificate full SHA-256
C6:4A:64:68:41:14:55:B4:8A:42:38:5D:8B:28:88:9F:84:B6:0E:D6:A2:B4:F4:3C:7E:5B:6D:A7:8F:71:D4:F6
NO domain-issued certificate full SHA-256
CE:B4:34:62:45:5A:85:16:34:19:97:45:5B:D9:E3:FD:FA:42:46:CF:19:CC:D6:99:88:2A:53:33:A1:16:4D:C0

Certificates

Subject
commonName
www.madavi.de
countryName
DE
emailAddress
postmaster@madavi.de
Details
Error: certificate has expired.
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2015-02-20 19:14:16 UTC
Valid to
2016-02-22 10:19:17 UTC
CRL
http://crl.startssl.com/crt1-crl.crl
OCSP
http://ocsp.startssl.com/sub/class1/server/ca
Valid for madavi.de
YES
A4:C0:96:C4:A1:34:87:9E:CD:AB:AB:93:DC:3F:AF:0D:82:97:17:1E
Subject Alternative Names
DNSName
www.madavi.de
DNSName
madavi.de Matches
Subject
commonName
StartCom Class 1 Primary Intermediate Server CA
countryName
IL
organizationName
StartCom Ltd.
organizationalUnitName
Secure Digital Certificate Signing
Details
Error: unable to get local issuer certificate.
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2007-10-24 20:54:17 UTC
Valid to
2017-10-24 20:54:17 UTC
CRL
http://crl.startssl.com/sfsca.crl
OCSP
http://ocsp.startssl.com/ca
C9:B4:9E:76:BF:A9:AD:74:3A:E8:97:39:EC:B8:E4:87:C2:AC:67:5B
Subject
commonName
StartCom Certification Authority
countryName
IL
organizationName
StartCom Ltd.
organizationalUnitName
Secure Digital Certificate Signing
Details
Signature algorithm
sha1WithRSAEncryption
Public key
4096 bit RSA
Valid from
2006-09-17 19:46:36 UTC
Valid to
2036-09-17 19:46:36 UTC
CRL
http://crl.startcom.org/sfsca-crl.crl
3E:2B:F7:F2:03:1B:96:F3:8C:E6:C4:D8:A8:5D:3E:2D:58:47:6A:0F

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA384 (0xc028) 256 Yes Curve: secp384r1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: secp384r1
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: secp384r1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: secp384r1
AES256-GCM-SHA384 (0x9d) 256 No -
AES256-SHA256 (0x3d) 256 No -
AES256-SHA (0x35) 256 No -
CAMELLIA256-SHA (0x84) 256 No -
AES128-GCM-SHA256 (0x9c) 128 No -
AES128-SHA256 (0x3c) 128 No -
AES128-SHA (0x2f) 128 No -
CAMELLIA128-SHA (0x41) 128 No -

Badge

IM observatory score

Want to show this result on your webpage? Add this:

<a href='https://check.messaging.one/result.php?domain=madavi.de&amp;type=server'>
  <img src='https://check.messaging.one/badge.php?domain=madavi.de' alt='IM observatory score' />
</a>