TLS/SSL check of 'facebook.com (2a03:2880:f175:181:face:b00c:0:25de)'

Multiple A-records!

The domain 'facebook.com' has severals A/AAAA-records - and thereby multiple IP's to check.

click to use
157.240.254.35

Summary


Host:
facebook.com, 2a03:2880:f175:181:face:b00c:0:25de, port 443


Protocols:
All good
 4 supported protocols: TLS 1.3, TLS 1.2, TLS 1.1, TLS 1.0


Certificate:
All good
 Certificate '*.facebook.com, Meta Platforms, US' is verified okay. Issued by 'DigiCert SHA2 High Assurance Server CA'. Expires 11-03-2024.

Protocol support



Protocol support:
TLS 1.3
Supported
TLS 1.2
Supported
TLS 1.1
Supported
TLS 1.0
Supported
SSL 3.0
No support
SSL 2.0
No support

Verification:
TLS 1.3 is supported
 
Please consider disableing TLS 1.1, 1.0, SSL3 and SSL2 - as of March 2021, TLS 1.1 and 1.0 was oficially depricated, and as of June 2015 SSL3 and SSL2 was depricated. Use of either protocol is not recomended

Chain of certificates

3 of 3 - End-Entity
*.facebook.com


Certificat:
*.facebook.com, Meta Platforms, US

Issued by:
DigiCert SHA2 High Assurance Server CA, DigiCert Inc, US

Valid:
From 11-12-2023 to 11-03-2024

Verification:
Certificate is verified okay

SAN's:
*.facebook.com
*.facebook.net
*.fbcdn.net
*.fbsbx.com
*.m.facebook.com
*.messenger.com
*.xx.fbcdn.net
*.xy.fbcdn.net
*.xz.fbcdn.net
facebook.com
messenger.com

Key:
ECC
Signature algorithm:
sha256RSA

Serial:
0275416C221363F29984A60E11E79C23

PEM format:

2 of 3 - Intermediate
DigiCert SHA2 High Assurance Server CA


Certificat:
DigiCert SHA2 High Assurance Server CA, DigiCert Inc, US

Issued by:
DigiCert High Assurance EV Root CA, DigiCert Inc, US

Valid:
From 22-10-2013 to 22-10-2028

Verification:
Certificate is verified okay

Key:
RSA, 2048 bit
Signature algorithm:
sha256RSA

Serial:
04E1E7A4DC5CF2F36DC02B42B85D159F

PEM format:

1 of 3 - Root certificate
DigiCert High Assurance EV Root CA


Certificat:
DigiCert High Assurance EV Root CA, DigiCert Inc, US

Issued by:
DigiCert High Assurance EV Root CA, DigiCert Inc, US

Valid:
From 09-11-2006 to 09-11-2031

Verification:
Certificate is verified okay

Key:
RSA, 2048 bit
Signature algorithm:
sha1RSA

Serial:
02AC5C266A0B409B8F0B79F2AE462577

PEM format:

Root Store trust


Root Certificat:
DigiCert High Assurance EV Root CA
Issued by:
DigiCert

Root Store trust:
The root certificte is trustet by ALL major trusted root certificate stores

Microsoft:
Root Certificate is fully trusted by Microsoft (Windows)

Apple:
Root Certificate is fully is trusted by Apple (iOS, iPadOS, macOS)

Android:
Root Certificate is fully is trusted by Android

API

You may perform this lookup using the API and get the results as easy-to-parse JSON data.

Read more on the API at https://iamroot.tech/about/api (regarding authentication and rate limits, among other things), or give it a go right away using the 'try it' button.

 
GET
https://iamroot.tech/ssl-certificate-check/api/?host=facebook.com+(2a03%3a2880%3af175%3a181%3aface%3ab00c%3a0%3a25de) copy try it
 

Log

067+067
  • Host 'facebook.com' resolved in 66ms
067+000
  • INFMultiple A-records!
    Domain 'facebook.com' has several A-records, and thereby multiple IPs to check. IP 2a03:2880:f175:181:face:b00c:0:25de will be used.
067+000
  • Check protocols
068+000
  • Start TLS 1.1 protocol check, facebook.com (2a03:2880:f175:181:face:b00c:0:25de), port 443
068+000
  • Start SSL 2.0 protocol check, facebook.com (2a03:2880:f175:181:face:b00c:0:25de), port 443
068+000
  • Start TLS 1.3 protocol check, facebook.com (2a03:2880:f175:181:face:b00c:0:25de), port 443
068+000
  • Start TLS 1.2 protocol check, facebook.com (2a03:2880:f175:181:face:b00c:0:25de), port 443
068+000
  • Start SSL 3.0 protocol check, facebook.com (2a03:2880:f175:181:face:b00c:0:25de), port 443
068+000
  • Start TLS 1.0 protocol check, facebook.com (2a03:2880:f175:181:face:b00c:0:25de), port 443
078+010
  • Protocol check of SSL 3.0 done in 10ms - failed
    Unable to authenticate connection using SSL 3.0
078+011
  • Protocol check of SSL 2.0 done in 10ms - failed
    Unable to authenticate connection using SSL 2.0
090+022
  • Protocol check of TLS 1.0 done in 21ms - all good
090+022
  • Protocol check of TLS 1.1 done in 22ms - all good
090+022
  • Protocol check of TLS 1.2 done in 22ms - all good
093+025
  • Protocol check of TLS 1.3 done in 25ms - all good
099+020
  • TLS 1.3 is supported
    Please consider disableing TLS 1.1, 1.0, SSL3 and SSL2 - as of March 2021, TLS 1.1 and 1.0 was oficially depricated, and as of June 2015 SSL3 and SSL2 was depricated. Use of either protocol is not recomended
099+000
  • Done
099+000
  • Check certificate
099+000
  • Load and verify chain of certificates
205+106
  • Full chain of certificates has been loaded and verified in 105ms.
205+000
  • End-Entity certificate verification success
    Certificat '*.facebook.com' SUCCEDED the verification.
205+000
  • Host 'facebook.com' is matching Subject/SAN 'facebook.com' of certificate. All good!
205+000
  • Intermediate certificate verification success
    Certificat 'DigiCert SHA2 High Assurance Server CA' SUCCEDED the verification.
205+000
  • Root certificate verification success
    Certificat 'DigiCert High Assurance EV Root CA' SUCCEDED the verification.
205+000
  • Check root store status of root certificate
210+005
  • Trustet by all major trusted root certificate stores
    The root certificte is trustet by ALL major trusted root certificate stores
210+000
  • Done
210+000
  • Done
210+000
  • Done