hipmiriau.org

Score 90/100

Web site information

Web Address

hipmiriau.org

IP Address

104.21.33.158

CDN

CloudFlare

SEO data

title

Hipmi Riau - Himpunan Pengusaha Muda Indonesia

viewport

width=device-width, initial-scale=1.0

description

Himpunan Pengusaha Muda Indonesia atau disingkat HIPMI adalah organisasi independen non-partisan para pengusaha muda Indonesia yang bergerak di bidang perekonomian khusus nya Hipmi Riau

keywords

Hipmi, Hipmi Riau, Himpunan Pengusaha Muda Indonesia

author

[email protected]

robots

index, follow, max-snippet:-1, max-video-preview:-1, max-image-preview:large

twitter:card

summary_large_image

twitter:title

Hipmi Riau - Himpunan Pengusaha Muda Indonesia

twitter:image

https://hipmiriau.org/assets/img/bg.webp

twitter:label1

Ditulis oleh

twitter:data1

[email protected]

twitter:label2

Waktunya membaca

twitter:data2

Kurang dari semenit

Protocols

SSLv2

not offered

SSLv3

not offered

TLS 1.0

offered (deprecated)

TLS 1.1

offered (deprecated)

TLS 1.2

offered

TLS 1.3

offered with final

ALPN HTTP2

ALPN

http/1.1

Vulnerabilities

heartbleed

not vulnerable, no heartbeat extension

CCS

not vulnerable

ticketbleed

not vulnerable

ROBOT

not vulnerable, no RSA key transport cipher

SSL renegotiation

OpenSSL handshake didn't succeed

SSL client renegotiation

not vulnerable

CRIME TLS

not vulnerable

BREACH

potentially VULNERABLE, br HTTP compression detected - only supplied '/' tested

POODLE SSL

not vulnerable, no SSLv3

fallback SCSV

supported

SWEET32

not vulnerable

FREAK

not vulnerable

DROWN

not vulnerable on this host and port

DROWN hint

no RSA certificate, can't be used with SSLv2 elsewhere

LOGJAM

not vulnerable, no DH EXPORT ciphers,

LOGJAM-common primes

no DH key with <= TLS 1.2

BEAST

VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)

LUCKY13

potentially vulnerable, uses TLS CBC ciphers

RC4

not vulnerable

Header Responses

Status code

200 OK ('/')

Clock skew

+131 seconds from localtime

HTTP headerAge

131 seconds

HSTS

not offered

HPKP

No support for HTTP Public Key Pinning

Web server software

cloudflare

banner application

No application banner found

Number of cookies

0 at '/'

security headers

banner reverseproxy

X-Cache: HIT

Server Defaults

TLS extensions

'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16'

TLS session ticket

valid for 64800 seconds only (<daily)

SSL sessionID support

yes

Session Ticket Resumption

not supported

Session ID Resumption

not supported

TLS timestamp

off by -1 seconds from your localtime

cert numbers

Signature algorithm

ECDSA with SHA256

Key size

EC 256 bits

Key usage

Digital Signature

Extended key usage

TLS Web Server Authentication

Serial number

6C17477FB559FD5C0EFDBA26529C3C39

cert serialNumberLen

Fingerprint SHA1

8A9F9515B01B6D118C0EFE9D84ECD1F323535ADD

Fingerprint SHA256

5D7DD57654A15BF60E5CFB31BD529FF907881577E6FCB80774A73C21012D43CB

Certificate details

Common names

hipmiriau.org

Service Name Indication

request w/o SNI didn't succeed, usual for EC certificates

SubjectAlternative Name

hipmiriau.org *.hipmiriau.org

Certificate authority issuers

WE1 (Google Trust Services from US)

Certificate trusted

Ok via SAN (SNI mandatory)

Certificate chain trusted

passed.

Is certificate Extended Validation

cert eTLS

not present

cert expirationStatus

82 >= 60 days

Valid from

2024-10-09 21:29

Valid until

2025-01-07 21:29

cert validityPeriod

No finding

Chain

certs list ordering problem

cert crlDistributionPoints

http://c.pki.goog/we1/AHWhP7ZvfeI.crl

Online Certificate Status Protocol URL

http://o.pki.goog/s/we1/bBc

OCSP stapling

offered

cert ocspRevoked

not revoked

cert mustStapleExtension

DNS CAArecord

certificate transparency

yes (certificate extension)

Server Preferences

order

server -- TLS 1.3 client determined

Which protocol negotiated

Default protocol TLS1.3

negotiated

TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519)

order TLSv1

ECDHE-ECDSA-AES128-SHA

order TLSv1 1

ECDHE-ECDSA-AES128-SHA

order TLSv1 2

ECDHE-ECDSA-AES128-GCM-SHA256

Perfect Forward Secrecy

PFS

offered

PFS s

ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD

PFS ECDHE curves

prime256v1

Ciphers

ECDHE-ECDSA-CHACHA20-POLY1305-OLD ECDH 256 ChaCha20 256 TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256_OLD

(0xcc14)

ECDHE-ECDSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384

(0xc02c)

ECDHE-ECDSA-AES256-SHA384 ECDH 256 AES 256 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384

(0xc024)

ECDHE-ECDSA-AES256-SHA ECDH 256 AES 256 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA

(0xc00a)

ECDHE-ECDSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256

(0xc02b)

ECDHE-ECDSA-AES128-SHA256 ECDH 256 AES 128 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256

(0xc023)

ECDHE-ECDSA-AES128-SHA ECDH 256 AES 128 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA

(0xc009)

Browser Simulations

Android 4.4.2

TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256

Android 5.0.0

TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD

Android 6.0

TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD

Android 7.0

TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256

clientsimulation-android 81

TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256

clientsimulation-android 90

TLSv1.3 TLS_AES_128_GCM_SHA256

clientsimulation-android X

TLSv1.3 TLS_AES_128_GCM_SHA256

clientsimulation-chrome 74 win10

TLSv1.3 TLS_AES_128_GCM_SHA256

clientsimulation-chrome 79 win10

TLSv1.3 TLS_AES_128_GCM_SHA256

clientsimulation-firefox 66 win81

TLSv1.3 TLS_AES_128_GCM_SHA256

clientsimulation-firefox 71 win10

TLSv1.3 TLS_AES_128_GCM_SHA256

Windows XP Internet Explorer 6

No connection

Windows 7 Internet Explorer 8

TLSv1.0 ECDHE-ECDSA-AES128-SHA

Windows XP Internet Explorer 8

No connection

Windows 7 Internet Explorer 11

TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256

Windows 8.1 Internet Explorer 11

TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256

clientsimulation-ie 11 winphone81

TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256

Windows 10 Internet Explorer 11

TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256

clientsimulation-edge 15 win10

TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256

clientsimulation-edge 17 win10

TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256

clientsimulation-opera 66 win10

TLSv1.3 TLS_AES_128_GCM_SHA256

clientsimulation-safari 9 ios9

TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256

MacOSX 10.11 Safari 9

TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256

MacOSX 10.12 Safari 10

TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256

clientsimulation-safari 121 ios 122

TLSv1.3 TLS_CHACHA20_POLY1305_SHA256

clientsimulation-safari 130 osx 10146

TLSv1.3 TLS_CHACHA20_POLY1305_SHA256

iOS 9 App Transport Security 9

TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256

Java 6 update 45

No connection

Java 7 update 25

TLSv1.0 ECDHE-ECDSA-AES128-SHA

clientsimulation-java 8u161

TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256

clientsimulation-java1102

TLSv1.3 TLS_AES_128_GCM_SHA256

clientsimulation-java1201

TLSv1.3 TLS_AES_128_GCM_SHA256

OpenSSL 1.0.2e

TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256

clientsimulation-openssl 110l

TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305

clientsimulation-openssl 111d

TLSv1.3 TLS_AES_256_GCM_SHA384

clientsimulation-thunderbird 68 3 1

TLSv1.3 TLS_AES_128_GCM_SHA256