www.rekini.lv

Score 90/100

Web site information

Website image www.rekini.lv
Web Address
IP Address
Font Scripts
Google Font API
Tag Managers
Google Tag Manager
Web Frameworks
Bootstrap

SEO data

title
Rekini.lv
viewport
width=device-width, initial-scale=1, shrink-to-fit=no
description
Rekini.lv ir digitāla rēķinu nosūtīšanas un aprites platforma, kas ļauj sagatavot un nosūtīt rēķinus dažādos formātos un piegādes kanālos.
twitter:card
summary
twitter:title
rekini.lv
twitter:image
fitek/img/og-image.png
google-site-verification
NMGig-sAmXnmY3KtIYK-VdhN72YGc8GhK-sV0GCXc6Y

Web site external calls

maxcdn.bootstrapcdn.com
use.fontawesome.com
fonts.googleapis.com
www.googletagmanager.com
fonts.gstatic.com
www.google-analytics.com
www.googleadservices.com
snap.licdn.com
connect.facebook.net
track.adform.net
px.ads.linkedin.com
s2.adform.net
googleads.g.doubleclick.net
www.facebook.com
stats.g.doubleclick.net
www.google.com
www.google.de
www.linkedin.com
px4.ads.linkedin.com

Protocols

SSLv2
not offered
SSLv3
not offered
TLS 1.0
not offered
TLS 1.1
is not offered
TLS 1.2
offered
TLS 1.3
not offered and downgraded to a weaker protocol
ALPN
not offered

Vulnerabilities

heartbleed
not vulnerable, no heartbeat extension
CCS
not vulnerable
ticketbleed
no session ticket extension
ROBOT
not vulnerable, no RSA key transport cipher
SSL renegotiation
not vulnerable
SSL client renegotiation
likely not vulnerable (timed out)
CRIME TLS
not vulnerable
BREACH
potentially VULNERABLE, uses gzip HTTP compression - only supplied '/' tested
POODLE SSL
not vulnerable
fallback SCSV
no protocol below TLS 1.2 offered
SWEET32
not vulnerable
FREAK
not vulnerable
DROWN
not vulnerable to DROWN on this host and port
DROWN
Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://censys.io/ipv4?q=6E661F3F3D821B07618309F37FE0AE3FC72B14C53330749FCB2ABA37BC4F80C1
LOGJAM
not vulnerable, no DH EXPORT ciphers,
LOGJAM-common primes
--
BEAST
not vulnerable, no SSL3 or TLS1
LUCKY13
not vulnerable
RC4
not vulnerable

Header Responses

Status code
200 ('/')
Clock skew
0 seconds from localtime
HSTS
not offered
HPKP
No support for HTTP Public Key Pinning
security headers
--

Server Defaults

TLS extensions
'renegotiation info/#65281'
TLS session ticket
No lifetime advertised
SSL sessionID support
yes
Session Ticket Resumption
supported
Session ID Resumption
supported
TLS timestamp
off by -3 seconds from your localtime
Signature algorithm
SHA256 with RSA
Key size
4096 bits
Key usage
Digital Signature, Key Encipherment
Extended key usage
cert_ext_keyusage
Serial number
12903F68C5429EC5D4B5175AC439248B
Fingerprint SHA1
C217D3CF1EAB7B86AD5814225DC22A7816D08DE6
Fingerprint SHA256
6E661F3F3D821B07618309F37FE0AE3FC72B14C53330749FCB2ABA37BC4F80C1
Certificate details
-----BEGIN CERTIFICATE----- MIIHMTCCBhmgAwIBAgIQEpA/aMVCnsXUtRdaxDkkizANBgkqhkiG9w0BAQsFADCB jzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMTcwNQYDVQQD Ey5TZWN0aWdvIFJTQSBEb21haW4gVmFsaWRhdGlvbiBTZWN1cmUgU2VydmVyIENB MB4XDTIxMDUwNzAwMDAwMFoXDTIyMDUxOTIzNTk1OVowGDEWMBQGA1UEAxMNd3d3 LnJla2luaS5sdjCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAI+IeTct JvBa+uidDx2bayt5Z6afLaOOc4ykQh6FX3K2tugsy2Z/Fhn0SE7u7j4ugSJe72Bu GkE582ejIbpOmiDD7vtn6z1Qz2dHKI74UU1dDsMR2a/9NtM7neGHuKolWOygfoQE wAKcgv5WpGxEQenP7kag3MAXb6YXdek4+NMkDL4fpvhTCtZ48RLPtmSfVoJ4O+sE DSIddWOXkCFtX27IpXV2ZQaNw9nPWoCXtk6vDAjM1d1RctVtOhnWLujC1JeKDMzk 7VCDI6zdcdTXpBatjZbIRl+h+WzfGt0Ad9s82go+rR5rb/Gz8nLBWQygcpENa1SU oECT0S5hqk5xps8ebVCcavRsbg2luykJz/bMpDEsBY1n7jRa6nS6D3C84n6VXpwJ 4JLJ82wXGrXNyOjj1A9tNyIjrNysypIPbQIMaLAPOT5EH0SsJ0oknvuFwVeBh/eX DTtnHS0ry1p50ndlKqEtZMZM6Sl9lUHFBEb8ng8CrJQJOx5FjmnVNlLDqRdK3xiz GiNGkfJWL5CpZJnGOCy5zCvK09lJ4/H+NapWC92z3is/DlwIP/5RvmQuG5X/qauF 4WgvWdie22sDHa+1zK3jA7cYIPcD8+gPdaZP1pZaGTKK5iMtRagSybBn3cYnQmm2 S3jCJEOsAqfN8Z92Gc7/r9NuDEbZBxYc+T7NAgMBAAGjggL9MIIC+TAfBgNVHSME GDAWgBSNjF7EVK2K4Xfpm/mbBeG4AY1h4TAdBgNVHQ4EFgQU13wHwJDL1Aj4/u7B oKeDstjKZhYwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMEkGA1UdIARCMEAwNAYLKwYBBAGyMQECAgcw JTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYGZ4EMAQIB MIGEBggrBgEFBQcBAQR4MHYwTwYIKwYBBQUHMAKGQ2h0dHA6Ly9jcnQuc2VjdGln by5jb20vU2VjdGlnb1JTQURvbWFpblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5j cnQwIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLnNlY3RpZ28uY29tMCMGA1UdEQQc MBqCDXd3dy5yZWtpbmkubHaCCXJla2luaS5sdjCCAYEGCisGAQQB1nkCBAIEggFx BIIBbQFrAHcARqVV63X6kSAwtaKJafTzfREsQXS+/Um4havy/HD+bUcAAAF5RbIr 1QAABAMASDBGAiEA0ZFVZWDr0rmgoRcT40k97t+NiC1E3uLSIztWNd46A8wCIQDp G8Fm7lENRwxkWH3lsBqKtSOW3R0MxqL7evam7gYsVQB3AN+lXqtogk8fbK3uuF9O PlrqzaISpGpejjsSwCBEXCpzAAABeUWyK3AAAAQDAEgwRgIhAOSD4gsNGZUxONHs zXa87aYYaRe1E70xAoEUoiFPQac5AiEAgt/PN2BmlBaevcHL5D2wH/8Af04451PV p0q0JMsHxykAdwBVgdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPTDAAAAXlF sitpAAAEAwBIMEYCIQDmHQLETekqhOTX3+AeQC/PItp333OkdJesEfRwMtXONQIh AKewTTOpl9H5KYuJXc5kQCcbr2te8Jc6aPu/fR3xSGXMMA0GCSqGSIb3DQEBCwUA A4IBAQACSCD1lig+jKqCg26AgZIdl6GqAQGxxdrkksWVgYSxqqOle9tpshJqxGIH oEvnTQ0cnVwrUDFoJyK2GyDYCIvhvE3buCoadfpY/PdZLyNucvkro62losIPQoFv pZWNXj7u8DcB3yAn33PCKNVR40rCvbgEg0JXoHV5fJdyYTNFZ4Ycm9vJgD3WK7Vj zGdqNhvj/9mRk1z0lP2pmJX/4PbBaDc2JmyKXbYcDawaiYc8EZWfLP5dgHUpAGMf Gd+IM7suwz74Fw03pd7+QF0/JZpfXgN8VM22CA9HkyPEE+X6ooBuuonMa9l1RuNV dI+Q+nKExktUcWt/q5zb3VPFfI2t -----END CERTIFICATE-----
Common names
www.rekini.lv
Service Name Indication
www.rekini.lv
SubjectAlternative Name
www.rekini.lv rekini.lv
Certificate authority issuers
Sectigo RSA Domain Validation Secure Server CA (Sectigo Limited from GB)
Certificate trusted
Ok via SAN and CN (same w/o SNI)
Certificate chain trusted
passed.
Is certificate Extended Validation
no
Days before expiry
216 >= 60 days
Valid from
2021-05-07 02:00
Valid until
2022-05-20 01:59
Chain
4
CRL distribution points
--
Online Certificate Status Protocol URL
http://ocsp.sectigo.com
OCSP stapling
not offered
cert mustStapleExtension
--
DNS CAArecord
--
certificate transparency
yes (certificate extension)

Server Preferences

order
server
Which protocol negotiated
Default protocol TLS1.2
negotiated
ECDHE-RSA-AES128-GCM-SHA256, 570 bit ECDH (B-571)
order TLSv1 2
ECDHE-RSA-AES128-GCM-SHA256

Perfect Forward Secrecy

PFS
offered
PFS s
DHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-GCM-SHA256
ECDHE curves
sect283k1 sect283r1 sect409k1 sect409r1 sect571k1 sect571r1 secp256k1 prime256v1 secp384r1 secp521r1

Ciphers

ECDHE-RSA-AES128-GCM-SHA256 ECDH 570 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
(0xc02f)
DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
(0x9e)

Browser Simulations

Android 2.3.7
No connection
Android 4.1.1
No connection
Android 4.3
No connection
Android 4.4.2
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 5.0.0
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 6.0
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 7.0
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows Chrome 51
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows Chrome 57
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows Firefox 47
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows Firefox 53
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows XP Internet Explorer 6
No connection
Windows Vista Internet Explorer 7
No connection
Windows XP Internet Explorer 8
No connection
Windows 7 Internet Explorer 8
No connection
Windows 7 Internet Explorer 11
TLSv1.2 DHE-RSA-AES128-GCM-SHA256
Windows 8.1 Internet Explorer 11
TLSv1.2 DHE-RSA-AES128-GCM-SHA256
Windows 8.1 update Internet Explorer 11
TLSv1.2 DHE-RSA-AES128-GCM-SHA256
Windows 10 Internet Explorer 11
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows 10 Edge 13
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows Phone 10 Edge 13
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows 7 Opera 17
No connection
MacOSX 10.6.8 Safari 5.1.9
No connection
iOS 7 Safari 7
No connection
MacOSX 10.11 Safari 9
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
MacOSX 10.12 Safari 10
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
iOS 9 App Transport Security 9
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows 7 Tor 7.0.9
No connection
Java 6 update 45
No connection
Java 7 update 25
No connection
Java 8 update 31
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
OpenSSL 1.1.1
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
OpenSSL 1.0.2e
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256