TLS/SSL certificate check

Port to connect on:
Secure HTTP / HTTPS - port 443 Secured SMTP - port 465 Secured IMAP - port 993 Secured POP3 - port 995

Related tools

DNS lookup

www.bing.com

DNS propagation check

TLS/SSL check of 'www.bing.com (13.107.21.200)'

Multiple A-records!

The domain 'www.bing.com' has severals A/AAAA-records - and thereby multiple IP's to check.

selected
13.107.21.200

click to use
204.79.197.200

click to use
2620:1ec:c11::200

Summary

Host:

www.bing.com, 13.107.21.200, port 443

Protocols:

All good

1 supported protocols: TLS 1.2

Certificate:

All good

Certificate 'www.bing.com, Microsoft Corporation, US' is verified okay. Issued by 'Microsoft Azure TLS Issuing CA 02'. Expires 27-06-2024.

Protocol support

Protocol support:

TLS 1.3

No support

TLS 1.2

Supported

TLS 1.1

No support

TLS 1.0

No support

SSL 3.0

No support

SSL 2.0

No support

Verification:

TLS 1.2 is supported

It is noticable, that TLS 1.3 is not supported.

Chain of certificates

3 of 3 - End-Entity

www.bing.com

Certificat:

www.bing.com, Microsoft Corporation, US

Issued by:

Microsoft Azure TLS Issuing CA 02, Microsoft Corporation, US

Valid:

From 17-04-2024 to 27-06-2024

Verification:

Certificate is verified okay

SAN's:

*.platform.bing.com

*.bing.com

bing.com

ieonline.microsoft.com

*.windowssearch.com

cn.ieonline.microsoft.com

*.origin.bing.com

*.mm.bing.net

*.api.bing.com

*.cn.bing.net

*.cn.bing.com

ssl-api.bing.com

ssl-api.bing.net

*.api.bing.net

*.bingapis.com

bingsandbox.com

feedback.microsoft.com

insertmedia.bing.office.net

r.bat.bing.com

*.r.bat.bing.com

*.dict.bing.com

*.ssl.bing.com

*.appex.bing.com

*.platform.cn.bing.com

wp.m.bing.com

*.m.bing.com

global.bing.com

windowssearch.com

search.msn.com

*.bingsandbox.com

*.api.tiles.ditu.live.com

*.t0.tiles.ditu.live.com

*.t1.tiles.ditu.live.com

*.t2.tiles.ditu.live.com

*.t3.tiles.ditu.live.com

3d.live.com

api.search.live.com

beta.search.live.com

cnweb.search.live.com

ditu.live.com

farecast.live.com

image.live.com

images.live.com

local.live.com.au

localsearch.live.com

ls4d.search.live.com

mail.live.com

mapindia.live.com

local.live.com

maps.live.com

maps.live.com.au

mindia.live.com

news.live.com

origin.cnweb.search.live.com

preview.local.live.com

search.live.com

test.maps.live.com

video.live.com

videos.live.com

virtualearth.live.com

wap.live.com

webmaster.live.com

www.local.live.com.au

www.maps.live.com.au

webmasters.live.com

ecn.dev.virtualearth.net

www.bing.com

Key:

RSA, 2048 bit

Signature algorithm:

sha384RSA

Serial:

3300EE9E4ECA19E1F6B632C5FF000000EE9E4E

SHA1 thumbprint:

777D3C1C6FBE034650D971BC6C5FA0361C351F02

SHA256 thumbprint:

8C8ECDB9398516CB7856082CDBD97833929FC974898362AE6D184F7173868FF0

PEM format:

Click to see certificate as PEM (modal)

2 of 3 - Intermediate

Microsoft Azure TLS Issuing CA 02

Certificat:

Microsoft Azure TLS Issuing CA 02, Microsoft Corporation, US

Issued by:

DigiCert Global Root G2, DigiCert Inc, US

Valid:

From 29-07-2020 to 27-06-2024

Verification:

Certificate is verified okay

Key:

RSA, 4096 bit

Signature algorithm:

sha384RSA

Serial:

0C6AE97CCED599838690A00A9EA53214

SHA1 thumbprint:

E7EEA674CA718E3BEFD90858E09F8372AD0AE2AA

SHA256 thumbprint:

15A98761EBE011554DA3A46D206B0812CB2EB69AE87AAA11A6DD4CB84ED5142A

PEM format:

Click to see certificate as PEM (modal)

1 of 3 - Root certificate

DigiCert Global Root G2

Certificat:

DigiCert Global Root G2, DigiCert Inc, US

Issued by:

DigiCert Global Root G2, DigiCert Inc, US

Valid:

From 01-08-2013 to 15-01-2038

Verification:

Certificate is verified okay

Key:

RSA, 2048 bit

Signature algorithm:

sha256RSA

Serial:

033AF1E6A711A9A0BB2864B11D09FAE5

SHA1 thumbprint:

DF3C24F9BFD666761B268073FE06D1CC8D4F82A4

SHA256 thumbprint:

CB3CCBB76031E5E0138F8DD39A23F9DE47FFC35E43C1144CEA27D46A5AB1CB5F

PEM format:

Click to see certificate as PEM (modal)

Root Store trust

Root Certificat:

DigiCert Global Root G2

Issued by:

DigiCert

SHA256 thumbprint:

CB3CCBB76031E5E0138F8DD39A23F9DE47FFC35E43C1144CEA27D46A5AB1CB5F

Root Store trust:

The root certificte is trustet by ALL major trusted root certificate stores

Microsoft:

Root Certificate is fully trusted by Microsoft (Windows)

Apple:

Root Certificate is fully is trusted by Apple (iOS, iPadOS, macOS)

Android:

Root Certificate is fully is trusted by Android

API

You may perform this lookup using the API and get the results as easy-to-parse JSON data.

Read more on the API at https://iamroot.tech/about/api (regarding authentication and rate limits, among other things), or give it a go right away using the 'try it' button.

GET

https://iamroot.tech/ssl-certificate-check/api/?host=www.bing.com

copy try it

Log

098	+098	Host 'www.bing.com' resolved in 97ms
098	+000	INFMultiple A-records! Domain 'www.bing.com' has several A-records, and thereby multiple IPs to check. IP 13.107.21.200 will be used.
098	+000	Check protocols
098	+000	Start TLS 1.3 protocol check, www.bing.com (13.107.21.200), port 443
098	+000	Start SSL 2.0 protocol check, www.bing.com (13.107.21.200), port 443
098	+000	Start TLS 1.2 protocol check, www.bing.com (13.107.21.200), port 443
098	+000	Start TLS 1.0 protocol check, www.bing.com (13.107.21.200), port 443
098	+000	Start TLS 1.1 protocol check, www.bing.com (13.107.21.200), port 443
108	+010	Protocol check of SSL 2.0 done in 9ms - failed Unable to authenticate connection using SSL 2.0
108	+000	Start SSL 3.0 protocol check, www.bing.com (13.107.21.200), port 443
114	+016	Protocol check of TLS 1.0 done in 16ms - failed Unable to authenticate connection using TLS 1.0
115	+016	Protocol check of TLS 1.1 done in 15ms - failed Unable to authenticate connection using TLS 1.1
115	+017	Protocol check of TLS 1.3 done in 16ms - failed Unable to authenticate connection using TLS 1.3
118	+009	Protocol check of SSL 3.0 done in 9ms - failed Unable to authenticate connection using SSL 3.0
130	+032	Protocol check of TLS 1.2 done in 32ms - all good
131	+013	TLS 1.2 is supported It is noticable, that TLS 1.3 is not supported.
131	+000	Done
131	+000	Check certificate
131	+000	Load and verify chain of certificates
239	+108	Full chain of certificates has been loaded and verified in 107ms.
239	+000	End-Entity certificate verification success Certificat 'www.bing.com' SUCCEDED the verification.
239	+000	Host 'www.bing.com' is matching Subject/SAN 'www.bing.com' of certificate. All good!
239	+000	Intermediate certificate verification success Certificat 'Microsoft Azure TLS Issuing CA 02' SUCCEDED the verification.
239	+000	Root certificate verification success Certificat 'DigiCert Global Root G2' SUCCEDED the verification.
239	+000	Check root store status of root certificate
240	+001	Trustet by all major trusted root certificate stores The root certificte is trustet by ALL major trusted root certificate stores
240	+000	Done
240	+000	Done
240	+000	Done

TLS/SSL certificate check

Related tools

TLS/SSL check of 'www.bing.com (13.107.21.200)'

Multiple A-records!

Summary

Protocol support

Chain of certificates

www.bing.com

Microsoft Azure TLS Issuing CA 02

DigiCert Global Root G2

Root Store trust

API

Log

The tools of iamroot.tech

Changelog

Newsletter