SSL Report:
bio.rshb.ru
(194.190.12.56)
Assessed on: Tue, 21 Oct 2025 09:57:18 UTC
| Clear cache
Summary
If trust issues are ignored: B
0
20
40
60
80
100
Certificate
Protocol Support
Key Exchange
Cipher Strength
Visit our documentation page
for more information, configuration guides, and books. Known issues are documented
here.
This server's certificate is not trusted, see below for details.
This server's certificate chain is incomplete. Grade capped to B.
This server does not support TLS 1.3. MORE INFO »
Certificate #1: RSA 2048 bits (1.2.643.2.2.3)
|
Server Key and Certificate #1
|
|
| Subject |
bio.rshb.ru
Fingerprint SHA256: 911a7caf549ee5f76c81659a7ec659f4cdc9b6b5ee09d8645df05ef3844ced8b Pin SHA256: WjiN4UZMj0zVg25c7+haZ2hXCzgVXF18qXsfBIukFT8= |
| Common names | bio.rshb.ru |
| Alternative names | bio.rshb.ru bio.go.rshbank.ru |
| Serial Number | 140ac4dc000f00165c0a |
| Valid from | Fri, 11 Apr 2025 11:07:00 UTC |
| Valid until | Sat, 11 Apr 2026 11:17:00 UTC (expires in 5 months and 20 days) |
| Key | RSA 2048 bits (e 65537) |
| Weak key (Debian) | No |
| Issuer | Russian Agricultural Bank CA
AIA: http://crl1.rshb.ru/aia/C5B1C59FDF4066F57763D9A9F7A6199D6E0595F7.crt AIA: http://crl2.rshb.ru/aia/C5B1C59FDF4066F57763D9A9F7A6199D6E0595F7.crt AIA: http://crl3.rshb.ru/aia/C5B1C59FDF4066F57763D9A9F7A6199D6E0595F7.crt |
| Signature algorithm | 1.2.643.2.2.3 |
| Extended Validation | No |
| Certificate Transparency | No |
| OCSP Must Staple | No |
| Revocation information |
CRL CRL: http://crl1.rshb.ru/cdp/C5B1C59FDF4066F57763D9A9F7A6199D6E0595F7.crl |
| Revocation status | Unchecked (only trusted certificates can be checked) |
| DNS CAA | No (more info) |
| Trusted | No NOT TRUSTED
(Why?)
Mozilla Apple Android Java Windows |
|
Additional Certificates (if supplied)
|
|
| Certificates provided | 1 (1342 bytes) |
| Chain issues | Incomplete |
Certification Paths |
|
|
||
| No trust paths available Issuer unknown, or intermediate certificate(s) missing. |
||
| No trust paths available Issuer unknown, or intermediate certificate(s) missing. |
||
| No trust paths available Issuer unknown, or intermediate certificate(s) missing. |
||
| No trust paths available Issuer unknown, or intermediate certificate(s) missing. |
||
| No trust paths available Issuer unknown, or intermediate certificate(s) missing. |
Configuration
| Protocols | |
| TLS 1.3 | No |
| TLS 1.2 | Yes |
| TLS 1.1 | No |
| TLS 1.0 | No |
| SSL 3 | No |
| SSL 2 | No |
| Cipher Suites | ||
|
# TLS 1.2 (suites in server-preferred order)
|
||
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030)
ECDH secp256r1 (eq. 3072 bits RSA) FS
|
256 | |
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028)
ECDH secp256r1 (eq. 3072 bits RSA) FS
WEAK
|
256 | |
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 (0xc027)
ECDH secp256r1 (eq. 3072 bits RSA) FS
WEAK
|
128 | |
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014)
ECDH secp256r1 (eq. 3072 bits RSA) FS
WEAK
|
256 | |
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (0xc013)
ECDH secp256r1 (eq. 3072 bits RSA) FS
WEAK
|
128 | |
TLS_RSA_WITH_AES_256_GCM_SHA384 (0x9d)
WEAK
|
256 | |
TLS_RSA_WITH_AES_128_GCM_SHA256 ( | ||