Check Detail
kras.is · SSL
Passed
Grade A
100.0%
Result Detail
SSL| Check name | Status | Value |
|---|---|---|
| certificate chain is complete | ✅ Passed | 4 |
| root CA is trusted | ✅ Passed | Trusted |
| cert valid for | ✅ Passed | 64 |
| chain certs are valid until | ✅ Passed | 02.05.2026 |
| CN matches Domainname | ✅ Passed | kras.is |
| certificate subject | ✅ Passed | CN=kras.is |
| certificate issuer | ✅ Passed | C=US, O=Google Trust Services, CN=WE1 |
| signature algorithm | ✅ Passed | ecdsa-with-SHA256 |
| TLS protocol | ✅ Passed | TLSv1.3 TLS_AES_256_GCM_SHA384 |
| Subject Alternative Names | ✅ Passed | kras.is |
| Public Key | ✅ Passed | EC 256 |
Certificate chain
| # | Common name | Issuer | Valid until | CA |
|---|---|---|---|---|
| 0 | kras.is | C=US, O=Google Trust Services, CN=WE1 | 02.05.2026 22:36:04 | No |
| 1 | kras.is | C=US, O=Google Trust Services, CN=WE1 | 02.05.2026 22:36:04 | No |
| 2 | WE1 | C=US, O=Google Trust Services LLC, CN=GTS Root R4 | 20.02.2029 15:00:00 | Yes |
| 3 | GTS Root R4 | C=BE, O=GlobalSign nv-sa, OU=Root CA, CN=GlobalSign Root CA | 28.01.2028 01:00:42 | Yes |
TLS details
| Negotiated protocol | TLSv1.3 |
|---|---|
| Cipher suite | TLS_AES_256_GCM_SHA384 (256 bit) |
| Cipher version | TLSv1.3 |
| Perfect Forward Secrecy | Attention |
| Earliest chain expiry | 02.05.2026 22:36 |
Fingerprints
| SHA-256 | 32:B1:03:3F:85:22:73:B8:3E:F7:CA:FB:CB:87:41:0F:07:FE:76:1A:AB:68:B1:D2:53:11:FE:06:6D:A0:23:CB |
|---|---|
| SHA-1 | 0B:C6:7D:C6:6D:F7:98:2A:DB:64:BD:25:8C:05:98:CE:94:E8:7D:E9 |
Revocation
OCSP URLs
http://o.pki.goog/s/we1/ET4
CRL URLs
Full Name:
URI:http://c.pki.goog/we1/uCglcmwwftc.crl
Issuer URLs (AIA)
http://i.pki.goog/we1.crt
OCSP Must-Staple
No
Trust evaluation
Attempted: Yes
Trusted: Yes
OpenSSL diagnostic command
openssl s_client -connect kras.is:443 -servername kras.is