SSL Report: grail.portal.int05.itis.pl (212.180.223.86)
Assessed on:  Wed, 10 Dec 2025 09:55:27 UTC | Clear cache
Scan Another »

Due to a recently discovered bug in Apple's code, your browser is exposed to MITM attacks. Click here for more information.

Summary
Overall Rating
T
If trust issues are ignored: A
0
20
40
60
80
100
Certificate
 
Protocol Support
 
Key Exchange
 
Cipher Strength
 

Visit our documentation page for more information, configuration guides, and books. Known issues are documented here.
This server's certificate is not trusted, see below for details.
This site works only in browsers with SNI support.
This server supports TLS 1.3.  MORE INFO »
Certificate #1: RSA 2048 bits (1.2.840.113549.1.1.10)
Server Key and Certificate #1
Subject *.int05.itis.pl
Fingerprint SHA256: ab65d07f99671056cf0cdfd23cf47303dc0a554579a3f4fb1f83ecf51b6a83ee
Pin SHA256: jXckSkv6zGFz2s1Sqc4MiYHVVURox2zhkMxS5WO1xVI=
Common names *.int05.itis.pl
Alternative names *.int05.itis.pl *.admin.int05.itis.pl *.applicationgateway.int05.itis.pl *.compensa.int05.itis.pl *.ftp.xmlimport.magic.int05.itis.pl *.ftp.xmlimport.situ.int05.itis.pl *.iklient.int05.itis.pl *.portal.int05.itis.pl *.portalreports.cppl.portal.int05.itis.pl *.portaltest.int05.itis.pl *.services.int05.itis.pl
Serial Number 7400000356fa16ff53f11fb627000200000356
Valid from Mon, 08 Dec 2025 11:52:00 UTC
Valid until Tue, 08 Dec 2026 11:52:00 UTC (expires in 11 months and 28 days)
Key RSA 2048 bits (e 65537)
Weak key (Debian) No
Issuer itis-group-DC01-PRD-WAW-CA
AIA: ldap:///CN=itis-group-DC01-PRD-WAW-CA,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=itis-group,DC=com?cACertificate?base?objectClass=certificationAuthority
Signature algorithm 1.2.840.113549.1.1.10
Extended Validation No
Certificate Transparency No
OCSP Must Staple No
Revocation information None
DNS CAA No (more info)
Trusted No   NOT TRUSTED (Why?)
Mozilla  Apple  Android  Java  Windows 


Additional Certificates (if supplied)
Certificates provided 2 (2818 bytes)
Chain issues Contains anchor
#2
Subject itis-group-DC01-PRD-WAW-CA   Not in trust store
Fingerprint SHA256: f4a0defe7b8601ca7fb88bb3e3fa6b25d32ba76e708df8c966b516aff2234908
Pin SHA256: hL2kSX7OMM8oQTdEdWoMiLEifc5UNLR4e8AOxYI4Ns0=
Valid until Tue, 26 Oct 2027 13:57:17 UTC (expires in 1 year and 10 months)
Key RSA 2048 bits (e 65537)
Issuer itis-group-DC01-PRD-WAW-CA   Self-signed
Signature algorithm 1.2.840.113549.1.1.10


Certification Paths
Path #1: Not trusted (path does not chain to a trusted anchor)
1 Sent by server *.int05.itis.pl
Fingerprint SHA256: ab65d07f99671056cf0cdfd23cf47303dc0a554579a3f4fb1f83ecf51b6a83ee
Pin SHA256: jXckSkv6zGFz2s1Sqc4MiYHVVURox2zhkMxS5WO1xVI=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
2 Sent by server
  Not in trust store 		itis-group-DC01-PRD-WAW-CA   Self-signed
Fingerprint SHA256: f4a0defe7b8601ca7fb88bb3e3fa6b25d32ba76e708df8c966b516aff2234908
Pin SHA256: hL2kSX7OMM8oQTdEdWoMiLEifc5UNLR4e8AOxYI4Ns0=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
Path #1: Not trusted (path does not chain to a trusted anchor)
1 Sent by server *.int05.itis.pl
Fingerprint SHA256: ab65d07f99671056cf0cdfd23cf47303dc0a554579a3f4fb1f83ecf51b6a83ee
Pin SHA256: jXckSkv6zGFz2s1Sqc4MiYHVVURox2zhkMxS5WO1xVI=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
2 Sent by server
  Not in trust store 		itis-group-DC01-PRD-WAW-CA   Self-signed
Fingerprint SHA256: f4a0defe7b8601ca7fb88bb3e3fa6b25d32ba76e708df8c966b516aff2234908
Pin SHA256: hL2kSX7OMM8oQTdEdWoMiLEifc5UNLR4e8AOxYI4Ns0=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
Path #1: Not trusted (path does not chain to a trusted anchor)
1 Sent by server *.int05.itis.pl
Fingerprint SHA256: ab65d07f99671056cf0cdfd23cf47303dc0a554579a3f4fb1f83ecf51b6a83ee
Pin SHA256: jXckSkv6zGFz2s1Sqc4MiYHVVURox2zhkMxS5WO1xVI=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
2 Sent by server
  Not in trust store 		itis-group-DC01-PRD-WAW-CA   Self-signed
Fingerprint SHA256: f4a0defe7b8601ca7fb88bb3e3fa6b25d32ba76e708df8c966b516aff2234908
Pin SHA256: hL2kSX7OMM8oQTdEdWoMiLEifc5UNLR4e8AOxYI4Ns0=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
Path #1: Not trusted (path does not chain to a trusted anchor)
1 Sent by server *.int05.itis.pl
Fingerprint SHA256: ab65d07f99671056cf0cdfd23cf47303dc0a554579a3f4fb1f83ecf51b6a83ee
Pin SHA256: jXckSkv6zGFz2s1Sqc4MiYHVVURox2zhkMxS5WO1xVI=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
2 Sent by server
  Not in trust store 		itis-group-DC01-PRD-WAW-CA   Self-signed
Fingerprint SHA256: f4a0defe7b8601ca7fb88bb3e3fa6b25d32ba76e708df8c966b516aff2234908
Pin SHA256: hL2kSX7OMM8oQTdEdWoMiLEifc5UNLR4e8AOxYI4Ns0=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
Path #1: Not trusted (path does not chain to a trusted anchor)
1 Sent by server *.int05.itis.pl
Fingerprint SHA256: ab65d07f99671056cf0cdfd23cf47303dc0a554579a3f4fb1f83ecf51b6a83ee
Pin SHA256: jXckSkv6zGFz2s1Sqc4MiYHVVURox2zhkMxS5WO1xVI=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
2 Sent by server
  Not in trust store 		itis-group-DC01-PRD-WAW-CA   Self-signed
Fingerprint SHA256: f4a0defe7b8601ca7fb88bb3e3fa6b25d32ba76e708df8c966b516aff2234908
Pin SHA256: hL2kSX7OMM8oQTdEdWoMiLEifc5UNLR4e8AOxYI4Ns0=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10

Click here to expand

Certificate #2: RSA 2048 bits (1.2.840.113549.1.1.10) No SNI
Server Key and Certificate #1
Subject *.bro01.itis.pl
Fingerprint SHA256: d620bc9ae7ff9f6d24596cd0e5dfcadbac0987567b338166096dd5c40b7e886d
Pin SHA256: 5MWTduMdiFm9TnroXv/CdBPKohwFILKuEUzgq3SyGlc=
Common names *.bro01.itis.pl
Alternative names *.bro01.itis.pl *.admin.bro01.itis.pl *.applicationgateway.bro01.itis.pl *.assistanceportal.bro01.itis.pl *.clientportal.bro01.itis.pl *.compensa.bro01.itis.pl *.exporteradmin.bro01.itis.pl *.iklient.bro01.itis.pl *.inpl.portal.bro01.itis.pl *.nnwszkolne.compensa.bro01.itis.pl *.portal.bro01.itis.pl *.services.bro01.itis.pl *.turystyka.compensa.bro01.itis.pl *.voyage.bro01.itis.pl *.website.bro01.itis.pl   MISMATCH
Serial Number 740000030fa048547f8c574f5800020000030f
Valid from Mon, 14 Jul 2025 12:19:11 UTC
Valid until Tue, 14 Jul 2026 12:19:11 UTC (expires in 7 months and 4 days)
Key RSA 2048 bits (e 65537)
Weak key (Debian) No
Issuer itis-group-DC01-PRD-WAW-CA
AIA: ldap:///CN=itis-group-DC01-PRD-WAW-CA,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=itis-group,DC=com?cACertificate?base?objectClass=certificationAuthority
Signature algorithm 1.2.840.113549.1.1.10
Extended Validation No
Certificate Transparency No
OCSP Must Staple No
Revocation information None
Trusted No   NOT TRUSTED (Why?)
Mozilla  Apple  Android  Java  Windows 


Additional Certificates (if supplied)
Certificates provided 2 (2920 bytes)
Chain issues Contains anchor
#2
Subject itis-group-DC01-PRD-WAW-CA   Not in trust store
Fingerprint SHA256: f4a0defe7b8601ca7fb88bb3e3fa6b25d32ba76e708df8c966b516aff2234908
Pin SHA256: hL2kSX7OMM8oQTdEdWoMiLEifc5UNLR4e8AOxYI4Ns0=
Valid until Tue, 26 Oct 2027 13:57:17 UTC (expires in 1 year and 10 months)
Key RSA 2048 bits (e 65537)
Issuer itis-group-DC01-PRD-WAW-CA   Self-signed
Signature algorithm 1.2.840.113549.1.1.10


Certification Paths
Path #1: Not trusted (path does not chain to a trusted anchor)
1 Sent by server *.bro01.itis.pl
Fingerprint SHA256: d620bc9ae7ff9f6d24596cd0e5dfcadbac0987567b338166096dd5c40b7e886d
Pin SHA256: 5MWTduMdiFm9TnroXv/CdBPKohwFILKuEUzgq3SyGlc=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
2 Sent by server
  Not in trust store 		itis-group-DC01-PRD-WAW-CA   Self-signed
Fingerprint SHA256: f4a0defe7b8601ca7fb88bb3e3fa6b25d32ba76e708df8c966b516aff2234908
Pin SHA256: hL2kSX7OMM8oQTdEdWoMiLEifc5UNLR4e8AOxYI4Ns0=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
Path #1: Not trusted (path does not chain to a trusted anchor)
1 Sent by server *.bro01.itis.pl
Fingerprint SHA256: d620bc9ae7ff9f6d24596cd0e5dfcadbac0987567b338166096dd5c40b7e886d
Pin SHA256: 5MWTduMdiFm9TnroXv/CdBPKohwFILKuEUzgq3SyGlc=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
2 Sent by server
  Not in trust store 		itis-group-DC01-PRD-WAW-CA   Self-signed
Fingerprint SHA256: f4a0defe7b8601ca7fb88bb3e3fa6b25d32ba76e708df8c966b516aff2234908
Pin SHA256: hL2kSX7OMM8oQTdEdWoMiLEifc5UNLR4e8AOxYI4Ns0=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
Path #1: Not trusted (path does not chain to a trusted anchor)
1 Sent by server *.bro01.itis.pl
Fingerprint SHA256: d620bc9ae7ff9f6d24596cd0e5dfcadbac0987567b338166096dd5c40b7e886d
Pin SHA256: 5MWTduMdiFm9TnroXv/CdBPKohwFILKuEUzgq3SyGlc=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
2 Sent by server
  Not in trust store 		itis-group-DC01-PRD-WAW-CA   Self-signed
Fingerprint SHA256: f4a0defe7b8601ca7fb88bb3e3fa6b25d32ba76e708df8c966b516aff2234908
Pin SHA256: hL2kSX7OMM8oQTdEdWoMiLEifc5UNLR4e8AOxYI4Ns0=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
Path #1: Not trusted (path does not chain to a trusted anchor)
1 Sent by server *.bro01.itis.pl
Fingerprint SHA256: d620bc9ae7ff9f6d24596cd0e5dfcadbac0987567b338166096dd5c40b7e886d
Pin SHA256: 5MWTduMdiFm9TnroXv/CdBPKohwFILKuEUzgq3SyGlc=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
2 Sent by server
  Not in trust store 		itis-group-DC01-PRD-WAW-CA   Self-signed
Fingerprint SHA256: f4a0defe7b8601ca7fb88bb3e3fa6b25d32ba76e708df8c966b516aff2234908
Pin SHA256: hL2kSX7OMM8oQTdEdWoMiLEifc5UNLR4e8AOxYI4Ns0=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
Path #1: Not trusted (path does not chain to a trusted anchor)
1 Sent by server *.bro01.itis.pl
Fingerprint SHA256: d620bc9ae7ff9f6d24596cd0e5dfcadbac0987567b338166096dd5c40b7e886d
Pin SHA256: 5MWTduMdiFm9TnroXv/CdBPKohwFILKuEUzgq3SyGlc=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10
2 Sent by server
  Not in trust store 		itis-group-DC01-PRD-WAW-CA   Self-signed
Fingerprint SHA256: f4a0defe7b8601ca7fb88bb3e3fa6b25d32ba76e708df8c966b516aff2234908
Pin SHA256: hL2kSX7OMM8oQTdEdWoMiLEifc5UNLR4e8AOxYI4Ns0=
RSA 2048 bits (e 65537) / 1.2.840.113549.1.1.10

Click here to expand

Click here to expand

Configuration
Protocols
TLS 1.3 Yes
TLS 1.2 Yes*
TLS 1.1 No
TLS 1.0 No
SSL 3 No
SSL 2 No
(*) Experimental: Server negotiated using No-SNI


Cipher Suites
# TLS 1.3 (suites in server-preferred order)
TLS_AES_128_GCM_SHA256 (0x1301)   ECDH x25519 (eq. 3072 bits RSA)   FS 128
TLS_AES_256_GCM_SHA384 (0x1302)   ECDH x25519 (eq. 3072 bits RSA)   FS 256
TLS_CHACHA20_POLY1305_SHA256 (0x1303)   ECDH x25519 (eq. 3072 bits RSA)   FS 256
# TLS 1.2 (suites in server-preferred order)
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xc02f)   ECDH x25519 (eq. 3072 bits RSA)   FS 128
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030)   ECDH x25519 (eq. 3072 bits RSA)   FS 256
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 (0xcca8)   ECDH x25519 (eq. 3072 bits RSA)   FS 256
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 (0x9e)   DH 2048 bits   FS 128
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 (0x9f)   DH 2048 bits   FS 256