TLS/SSL certificate check


Port to connect on:
Secure HTTP / HTTPS - port 443 Secured SMTP - port 465 Secured IMAP - port 993 Secured POP3 - port 995

TLS/SSL check of 'googledomains.com (216.239.32.29)'

Multiple A-records!

The domain 'googledomains.com' has severals A/AAAA-records - and thereby multiple IP's to check.

Summary


Host:
googledomains.com, 216.239.32.29, port 443


Protocols:
All good
 4 supported protocols: TLS 1.3, TLS 1.2, TLS 1.1, TLS 1.0


Certificate:
All good
 Certificate '*.googledomains.com' is verified okay. Issued by 'GTS CA 1C3'. Expires 08-07-2024.

Protocol support



Protocol support:
TLS 1.3
Supported
TLS 1.2
Supported
TLS 1.1
Supported
TLS 1.0
Supported
SSL 3.0
No support
SSL 2.0
No support

Verification:
TLS 1.3 is supported
 
Please consider disableing TLS 1.1, 1.0, SSL3 and SSL2 - as of March 2021, TLS 1.1 and 1.0 was oficially depricated, and as of June 2015 SSL3 and SSL2 was depricated. Use of either protocol is not recomended

Chain of certificates

3 of 3 - End-Entity
*.googledomains.com

Certificat:
*.googledomains.com

Issued by:
GTS CA 1C3, Google Trust Services LLC, US

Valid:
From 15-04-2024 to 08-07-2024

Verification:
Certificate is verified okay

SAN's:
*.googledomains.com
googledomains.com
goldenhour.camera
*.goldenhour.camera
goldenhourcamera.com
*.goldenhourcamera.com
google.domains
*.google.domains
gregandglorias.pizza
*.gregandglorias.pizza
gregandgloriaspizza.com
*.gregandgloriaspizza.com
rightlane.bike
*.rightlane.bike
rightlanebikeshop.com
*.rightlanebikeshop.com
toastedbeans.coffee
*.toastedbeans.coffee
toastedbeanscoffee.com
*.toastedbeanscoffee.com

Key:
ECC
Signature algorithm:
sha256RSA

Serial:
00A1F7F19234318AE410132126287AE5FD

PEM format:
Click to see certificate as PEM (modal)

2 of 3 - Intermediate
GTS CA 1C3

Certificat:
GTS CA 1C3, Google Trust Services LLC, US

Issued by:
GTS Root R1, Google Trust Services LLC, US

Valid:
From 12-08-2020 to 29-09-2027

Verification:
Certificate is verified okay

Key:
RSA, 2048 bit
Signature algorithm:
sha256RSA

Serial:
0203BC53596B34C718F5015066

PEM format:
Click to see certificate as PEM (modal)

1 of 3 - Root certificate
GTS Root R1

Certificat:
GTS Root R1, Google Trust Services LLC, US

Issued by:
GTS Root R1, Google Trust Services LLC, US

Valid:
From 21-06-2016 to 21-06-2036

Verification:
Certificate is verified okay

Key:
RSA, 4096 bit
Signature algorithm:
sha384RSA

Serial:
6E47A9C54B470C0DEC33D089B91CF4E1

PEM format:
Click to see certificate as PEM (modal)

Root Store trust

Root Certificat:
GTS Root R1
Issued by:
Google Trust Services LLC

Root Store trust:
The root certificte is trustet by ALL major trusted root certificate stores

Microsoft:
Root Certificate is fully trusted by Microsoft (Windows)

Apple:
Root Certificate is fully is trusted by Apple (iOS, iPadOS, macOS)

Android:
Root Certificate is fully is trusted by Android

API

You may perform this lookup using the API and get the results as easy-to-parse JSON data.

Read more on the API at https://iamroot.tech/about/api (regarding authentication and rate limits, among other things), or give it a go right away using the 'try it' button.

 
GET
 https://iamroot.tech/ssl-certificate-check/api/?host=googledomains.com copy try it
 

Log

060+060
  • Host 'googledomains.com' resolved in 59ms
060+000
  • INFMultiple A-records!
    Domain 'googledomains.com' has several A-records, and thereby multiple IPs to check. IP 216.239.32.29 will be used.
060+000
  • Check protocols
061+000
  • Start SSL 2.0 protocol check, googledomains.com (216.239.32.29), port 443
061+000
  • Start TLS 1.3 protocol check, googledomains.com (216.239.32.29), port 443
061+000
  • Start TLS 1.2 protocol check, googledomains.com (216.239.32.29), port 443
061+000
  • Start TLS 1.1 protocol check, googledomains.com (216.239.32.29), port 443
061+000
  • Start TLS 1.0 protocol check, googledomains.com (216.239.32.29), port 443
061+000
  • Start SSL 3.0 protocol check, googledomains.com (216.239.32.29), port 443
071+010
  • Protocol check of SSL 3.0 done in 9ms - failed
    Unable to authenticate connection using SSL 3.0
071+010
  • Protocol check of SSL 2.0 done in 9ms - failed
    Unable to authenticate connection using SSL 2.0
093+033
  • Protocol check of TLS 1.3 done in 32ms - all good
100+039
  • Protocol check of TLS 1.1 done in 39ms - all good
100+040
  • Protocol check of TLS 1.2 done in 39ms - all good
100+039
  • Protocol check of TLS 1.0 done in 39ms - all good
100+030
  • TLS 1.3 is supported
    Please consider disableing TLS 1.1, 1.0, SSL3 and SSL2 - as of March 2021, TLS 1.1 and 1.0 was oficially depricated, and as of June 2015 SSL3 and SSL2 was depricated. Use of either protocol is not recomended
101+000
  • Done
101+000
  • Check certificate
101+000
  • Load and verify chain of certificates
247+146
  • Full chain of certificates has been loaded and verified in 145ms.
247+000
  • End-Entity certificate verification success
    Certificat '*.googledomains.com' SUCCEDED the verification.
247+000
  • Host 'googledomains.com' is matching Subject/SAN 'googledomains.com' of certificate. All good!
247+000
  • Intermediate certificate verification success
    Certificat 'GTS CA 1C3' SUCCEDED the verification.
247+000
  • Root certificate verification success
    Certificat 'GTS Root R1' SUCCEDED the verification.
247+000
  • Check root store status of root certificate
248+001
  • Trustet by all major trusted root certificate stores
    The root certificte is trustet by ALL major trusted root certificate stores
248+000
  • Done
248+000
  • Done
248+000
  • Done