Check Detail
hloft.is · SSL
Passed
Grade A
100.0%
Result Detail
SSL| Check name | Status | Value |
|---|---|---|
| certificate chain is complete | ✅ Passed | 3 |
| root CA is trusted | ✅ Passed | Trusted |
| cert valid for | ✅ Passed | 80 |
| chain certs are valid until | ✅ Passed | 19.05.2026 |
| CN matches Domainname | ✅ Passed | hloft.is |
| certificate subject | ✅ Passed | CN=hloft.is |
| certificate issuer | ✅ Passed | C=US, O=Let's Encrypt, CN=R12 |
| signature algorithm | ✅ Passed | RSA-SHA256 |
| TLS protocol | ✅ Passed | TLSv1.3 TLS_AES_128_GCM_SHA256 |
| Subject Alternative Names | ✅ Passed | hloft.is |
| Public Key | ✅ Passed | RSA 2048 |
Certificate chain
| # | Common name | Issuer | Valid until | CA |
|---|---|---|---|---|
| 0 | hloft.is | C=US, O=Let's Encrypt, CN=R12 | 19.05.2026 10:23:11 | No |
| 1 | hloft.is | C=US, O=Let's Encrypt, CN=R12 | 19.05.2026 10:23:11 | No |
| 2 | R12 | C=US, O=Internet Security Research Group, CN=ISRG Root X1 | 13.03.2027 00:59:59 | Yes |
TLS details
| Negotiated protocol | TLSv1.3 |
|---|---|
| Cipher suite | TLS_AES_128_GCM_SHA256 (128 bit) |
| Cipher version | TLSv1.3 |
| Perfect Forward Secrecy | Attention |
| Earliest chain expiry | 19.05.2026 10:23 |
Fingerprints
| SHA-256 | E3:01:E4:E4:82:34:BD:FE:D1:DC:BB:39:98:A9:1B:F5:46:4F:06:63:4E:AF:26:CB:FD:69:F0:5E:9A:7D:05:E4 |
|---|---|
| SHA-1 | 79:1F:AC:86:38:A8:CD:7F:65:2D:E0:D5:DC:E9:A1:43:38:1A:F3:85 |
Revocation
OCSP URLs
—
CRL URLs
Full Name:
URI:http://r12.c.lencr.org/119.crl
Issuer URLs (AIA)
http://r12.i.lencr.org/
OCSP Must-Staple
No
Trust evaluation
Attempted: Yes
Trusted: Yes
OpenSSL diagnostic command
openssl s_client -connect hloft.is:443 -servername hloft.is