subaru.eanet.pe

Score 81/100

Web site information

Website image subaru.eanet.pe
Web Address
IP Address
Web Servers
Apache Tomcat
Programming Languages
Java

SEO data

title

Protocols

SSLv2
not offered
SSLv3
not offered
TLS 1.0
not offered
TLS 1.1
is not offered
TLS 1.2
not offered
TLS 1.3
not offered
ALPN
not offered

Vulnerabilities

heartbleed
not vulnerable, no heartbeat extension
CCS
not vulnerable
ticketbleed
no session ticket extension
ROBOT
not vulnerable, no RSA key transport cipher
SSL renegotiation
not vulnerable
SSL client renegotiation
VULNERABLE, DoS threat
CRIME TLS
not vulnerable
BREACH
not vulnerable, no HTTP compression - only supplied '/' tested
POODLE SSL
not vulnerable
fallback SCSV
no protocol below TLS 1.2 offered
SWEET32
not vulnerable
FREAK
not vulnerable
DROWN
not vulnerable to DROWN on this host and port
DROWN
Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://censys.io/ipv4?q=0EC16926F4D0D0FA296F0779BAA5BC16A5C61AC3BE6EAA21C97770F2B67B32FC
LOGJAM
not vulnerable, no DH EXPORT ciphers,
LOGJAM-common primes
no DH key
BEAST
not vulnerable, no SSL3 or TLS1
LUCKY13
not vulnerable
RC4
VULNERABLE, Detected ciphers: ECDHE-RSA-RC4-SHA RC4-SHA RC4-MD5

Header Responses

Status code
200 OK ('/')
Clock skew
-518 seconds from localtime
HSTS
not offered
HPKP
No support for HTTP Public Key Pinning
security headers
--

Server Defaults

TLS extensions
'renegotiation info/#65281'
TLS session ticket
No lifetime advertised
SSL sessionID support
yes
Session Ticket Resumption
supported
Session ID Resumption
supported
TLS timestamp
None returned by SSLv3 through TLSv1.2
Signature algorithm
SHA256 with RSA
Key size
2048 bits
Key usage
Digital Signature, Key Encipherment
Extended key usage
cert_ext_keyusage
Serial number
6B4AA88EBE714309
Fingerprint SHA1
7D77F001A380F65417D3CBEE83E6F4A7031046EF
Fingerprint SHA256
0EC16926F4D0D0FA296F0779BAA5BC16A5C61AC3BE6EAA21C97770F2B67B32FC
Certificate details
-----BEGIN CERTIFICATE----- MIIGvTCCBaWgAwIBAgIIa0qojr5xQwkwDQYJKoZIhvcNAQELBQAwgbQxCzAJBgNV BAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMRow GAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjEtMCsGA1UECxMkaHR0cDovL2NlcnRz LmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMTMwMQYDVQQDEypHbyBEYWRkeSBTZWN1 cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIwHhcNMjEwNjMwMDU1MzA5WhcN MjIwNjI5MDI0ODUzWjA9MSEwHwYDVQQLExhEb21haW4gQ29udHJvbCBWYWxpZGF0 ZWQxGDAWBgNVBAMTD3N1YmFydS5lYW5ldC5wZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAN1fIzmdfIQbTvZHa+dlDu9skrbJVoVwLQiRdmSYmHvNFpaU vI3m0PEdSHxqFc3BjpKDHSIcQBCUhwHnyS9Fn69v3/U6f5uWeS97MntQU2vW/9iz caHOwS7azHP+qDMbzPjbMmY4IOxpBsip9luNAotdmVajpGGQSZwz1pa+j4rVBZ/B /UcwlgrTzNFfDKwICBAbxZmGpTWSeLqx0BW1bvlCq8+Tn+yQvPIqFGfhe96V8EtV C+k5NJK0Jcz1Y86HW63+r91CEnjCSnLw1/pKpMwMd1GZ2LETisBMUtde2lvFPuO1 M/3JjEox9RzRKEjIj7h4v0YrgN1ks+Js6rWZZYcCAwEAAaOCA0cwggNDMAwGA1Ud EwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMA4GA1UdDwEB /wQEAwIFoDA4BgNVHR8EMTAvMC2gK6AphidodHRwOi8vY3JsLmdvZGFkZHkuY29t L2dkaWcyczEtMzA4Ni5jcmwwXQYDVR0gBFYwVDBIBgtghkgBhv1tAQcXATA5MDcG CCsGAQUFBwIBFitodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFkZHkuY29tL3JlcG9z aXRvcnkvMAgGBmeBDAECATB2BggrBgEFBQcBAQRqMGgwJAYIKwYBBQUHMAGGGGh0 dHA6Ly9vY3NwLmdvZGFkZHkuY29tLzBABggrBgEFBQcwAoY0aHR0cDovL2NlcnRp ZmljYXRlcy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5L2dkaWcyLmNydDAfBgNVHSME GDAWgBRAwr0njsw0gzCiM9f7bLPwtCyAzjAvBgNVHREEKDAmgg9zdWJhcnUuZWFu ZXQucGWCE3d3dy5zdWJhcnUuZWFuZXQucGUwHQYDVR0OBBYEFHF7gMbbuQwc/rYN KnxIDAsvNBULMIIBgAYKKwYBBAHWeQIEAgSCAXAEggFsAWoAdwApeb7wnjk5IfBW c59jpXflvld9nGAK+PlNXSZcJV3HhAAAAXpbenVeAAAEAwBIMEYCIQDjIWs6EmY5 wpa127dtdQS+SMPJvAYMjNNivxuzwbgCIQIhAI7l8zb9n30qZoxsEpEsac2JaI7l gVsXxRE61iBVnC61AHYAIkVFB1lVJFaWP6Ev8fdthuAjJmOtwEt/XcaDXG7iDwIA AAF6W3p2kgAABAMARzBFAiEAia+NSdZ9Hs50GwP9FlY9275PCkyBgmPVfp9YNjTd 3sYCICmEnc5t2w7GOJwkssuIdOhZOIRxdOunnKu8sLGEGnn+AHcA36Veq2iCTx9s re64X04+WurNohKkal6OOxLAIERcKnMAAAF6W3p3jgAABAMASDBGAiEA7RVaAzL3 iff/k6jEfP+DdaGJCNChGQPgquNLtShnaoUCIQD34JRK4jeCbM9ODJw6+7LMPnYW eIQFWLoIOu2bGOp/bTANBgkqhkiG9w0BAQsFAAOCAQEAHy6a7ipeQpS8HjZrIwWK NxBExrsSgYq92/E8jUtKT339sumHaY909k3FXkjKdnPRXmjNJFn4z4JDDT6s5Fm/ AWcMZrEku1VpIQZN78NoEaI0pe0UIEaSloEBRo/NpgAikaPr/veOi58vVBbnGHnm 1yesqQhdulAvYjcyGZ/rjTmmPepbLNSCF2/aMIg5LnjQW+ghoi8hICrlBXIJEZuH giwKzcFu3ecKdkSQVolep7hovbUalRsOKJGWgQX7eCXkylZgz6b7IcJTdrUl+kBB CPG8C3kzUlTYlmJJyAmw7bRQSIIdUYs6K0+7sWgOQ7vELwtP/Zll7PTvwnkJcHX8 TQ== -----END CERTIFICATE-----
Common names
subaru.eanet.pe
Service Name Indication
subaru.eanet.pe
SubjectAlternative Name
subaru.eanet.pe www.subaru.eanet.pe
Certificate authority issuers
Go Daddy Secure Certificate Authority - G2 (GoDaddy.com, Inc. from US)
Certificate trusted
Ok via SAN and CN (same w/o SNI)
Certificate chain trusted
passed.
Is certificate Extended Validation
no
Days before expiry
333 >= 60 days
Valid from
2021-06-30 07:53
Valid until
2022-06-29 04:48
Chain
3
CRL distribution points
http://crl.godaddy.com/gdig2s1-3086.crl
Online Certificate Status Protocol URL
http://ocsp.godaddy.com/
OCSP stapling
not offered
cert mustStapleExtension
--
DNS CAArecord
--
certificate transparency
yes (certificate extension)

Server Preferences

order
NOT cipher order configured
Which protocol negotiated
Default protocol TLS1.2
negotiated
ECDHE-RSA-AES128-SHA256, 570 bit ECDH (B-571) (cbc) (limited sense as client will pick)
order
at (limited sense as client will pick)
order
at (limited sense as client will pick)
order TLSv1
ECDHE-RSA-AES128-SHA at TLSv1 (limited sense as client will pick)
order TLSv1.1
ECDHE-RSA-AES128-SHA at TLSv1.1 (limited sense as client will pick)
order TLSv1.2
ECDHE-RSA-AES128-SHA256 at TLSv1.2 (limited sense as client will pick)
order
at (limited sense as client will pick)

Perfect Forward Secrecy

PFS
offered
PFS s
DHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA
ECDHE curves
sect163k1 sect163r1 sect163r2 sect193r1 sect193r2 sect233k1 sect233r1 sect239k1 sect283k1 sect283r1 sect409k1 sect409r1 sect571k1 sect571r1 secp160k1 secp160r1 secp160r2 secp192k1 prime192v1 secp224k1 secp224r1 secp256k1 prime256v1 secp384r1 secp521r1

Ciphers