TLS/SSL certificate check


Port to connect on:
Secure HTTP / HTTPS - port 443 Secured SMTP - port 465 Secured IMAP - port 993 Secured POP3 - port 995

TLS/SSL check of 'stackoverflow.com (172.64.155.249)'

Multiple A-records!

The domain 'stackoverflow.com' has severals A/AAAA-records - and thereby multiple IP's to check.

click to use
104.18.32.7

Summary


Host:
stackoverflow.com, 172.64.155.249, port 443


Protocols:
All good
 2 supported protocols: TLS 1.3, TLS 1.2


Certificate:
All good
 Certificate 'stackoverflow.com' is verified okay. Issued by 'E1'. Expires 09-08-2024.

Protocol support



Protocol support:
TLS 1.3
Supported
TLS 1.2
Supported
TLS 1.1
No support
TLS 1.0
No support
SSL 3.0
No support
SSL 2.0
No support

Verification:
TLS 1.3 is supported
 

Chain of certificates

3 of 3 - End-Entity
stackoverflow.com

Certificat:
stackoverflow.com

Issued by:
E1, Let's Encrypt, US

Valid:
From 11-05-2024 to 09-08-2024

Verification:
Certificate is verified okay

SAN's:
*.stackoverflow.com
stackoverflow.com

Key:
ECC
Signature algorithm:
sha384ECDSA

Serial:
03E7D57937F74FE13E7F950EC4C375A816DB

PEM format:
Click to see certificate as PEM (modal)

2 of 3 - Intermediate
E1

Certificat:
E1, Let's Encrypt, US

Issued by:
ISRG Root X2, Internet Security Research Group, US

Valid:
From 03-09-2020 to 15-09-2025

Verification:
Certificate is verified okay

Key:
ECC
Signature algorithm:
sha384ECDSA

Serial:
00B3BDDFF8A7845BBCE903A04135B34A45

PEM format:
Click to see certificate as PEM (modal)

1 of 3 - Root certificate
ISRG Root X2

Certificat:
ISRG Root X2, Internet Security Research Group, US

Issued by:
ISRG Root X2, Internet Security Research Group, US

Valid:
From 03-09-2020 to 17-09-2040

Verification:
Certificate is verified okay

Key:
ECC
Signature algorithm:
sha384ECDSA

Serial:
41D29DD172EAEEA780C12C6CE92F8752

PEM format:
Click to see certificate as PEM (modal)

Root Store trust

Root Certificat:
ISRG Root X2
Issued by:
Internet Security Research Group

Root Store trust:
The root certificte is trustet by ALL major trusted root certificate stores

Microsoft:
Root Certificate is fully trusted by Microsoft (Windows)

Apple:
Root Certificate is fully is trusted by Apple (iOS, iPadOS, macOS)

Android:
Root Certificate is fully is trusted by Android

API

You may perform this lookup using the API and get the results as easy-to-parse JSON data.

Read more on the API at https://iamroot.tech/about/api (regarding authentication and rate limits, among other things), or give it a go right away using the 'try it' button.

 
GET
 https://iamroot.tech/ssl-certificate-check/api/?host=stackoverflow.com+(172.64.155.249) copy try it
 

Log

232+232
  • Host 'stackoverflow.com' resolved in 229ms
232+000
  • INFMultiple A-records!
    Domain 'stackoverflow.com' has several A-records, and thereby multiple IPs to check. IP 172.64.155.249 will be used.
241+009
  • Check protocols
249+008
  • Start SSL 2.0 protocol check, stackoverflow.com (172.64.155.249), port 443
251+000
  • Start TLS 1.3 protocol check, stackoverflow.com (172.64.155.249), port 443
258+000
  • Start TLS 1.2 protocol check, stackoverflow.com (172.64.155.249), port 443
259+000
  • Start TLS 1.1 protocol check, stackoverflow.com (172.64.155.249), port 443
259+000
  • Start TLS 1.0 protocol check, stackoverflow.com (172.64.155.249), port 443
259+000
  • Start SSL 3.0 protocol check, stackoverflow.com (172.64.155.249), port 443
400+141
  • Protocol check of SSL 3.0 done in 138ms - failed
    Unable to authenticate connection using SSL 3.0
413+165
  • Protocol check of SSL 2.0 done in 163ms - failed
    Unable to authenticate connection using SSL 2.0
455+196
  • Protocol check of TLS 1.1 done in 195ms - failed
    Unable to authenticate connection using TLS 1.1
457+206
  • Protocol check of TLS 1.3 done in 205ms - all good
461+202
  • Protocol check of TLS 1.0 done in 201ms - failed
    Unable to authenticate connection using TLS 1.0
464+206
  • Protocol check of TLS 1.2 done in 205ms - all good
476+063
  • TLS 1.3 is supported
476+001
  • Done
477+001
  • Check certificate
495+018
  • Load and verify chain of certificates
694+200
  • Full chain of certificates has been loaded and verified in 199ms.
846+151
  • End-Entity certificate verification success
    Certificat 'stackoverflow.com' SUCCEDED the verification.
848+002
  • Host 'stackoverflow.com' is matching Subject/SAN 'stackoverflow.com' of certificate. All good!
848+000
  • Intermediate certificate verification success
    Certificat 'E1' SUCCEDED the verification.
848+000
  • Root certificate verification success
    Certificat 'ISRG Root X2' SUCCEDED the verification.
850+003
  • Check root store status of root certificate
854+003
  • Trustet by all major trusted root certificate stores
    The root certificte is trustet by ALL major trusted root certificate stores
854+000
  • Done
854+001
  • Done
854+000
  • Done
New features inbound 🚀
Within a couple of weeks, I'll launch a couple of new awesome features. Signup for the newsletter to stay updated, and get early access as a beta tester.

Signup using Google, Microsoft or Facebook .