stage.datenschutz-berlin.de

Issued by R3

About this certificate

This digital certificate with serial number 03:7d:73:06:3c:8c:95:30:dc:9d:67:79:83:5b:cf:33:85:c9 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=stage.datenschutz-berlin.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:7d:73:06:3c:8c:95:30:dc:9d:67:79:83:5b:cf:33:85:c9
Serial Number (int): 304025047261777155714967409234833612965321
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: d7:32:28:52:e0:b1:36:c5:06:c8:8e:75:95:4d:92:4a:96:f2:ff:61
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 23:ae:a6:1f:bf:12:64:13:c2:a0:87:10:05:f0:af:93:2d:be:47:29
Fingerprint (sha256): 2e:fc:a4:03:27:bb:66:5a:09:cb:1e:fe:7b:bf:37:2e:9a:5c:46:f3:f8:9c:46:a5:fe:ca:06:bd:b6:5d:e8:28

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate stage.datenschutz-berlin.de

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for stage.datenschutz-berlin.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

stage.datenschutz-berlin.de

Other certificates including the domain name datenschutz-berlin.de

(limited to 100 certificates)
kontakt.datenschutz-berlin.de
www.datenschutz-berlin.de
kontakt.datenschutz-berlin.de
av-konferenz.datenschutz-berlin.de
www.datenschutz-berlin.de
www.datenschutz-berlin.de
kontakt.datenschutz-berlin.de
stage.datenschutz-berlin.de
av-konferenz.datenschutz-berlin.de
www.datenschutz-berlin.de
cloud.datenschutz-berlin.de
mail2.datenschutz-berlin.de
www.datenschutz-berlin.de
www.datenschutz-berlin.de
mta-sts.datenschutz-berlin.de
www.datenschutz-berlin.de
www.datenschutz-berlin.de
kontakt.datenschutz-berlin.de
kontakt.datenschutz-berlin.de
www.datenschutz-berlin.de
kontakt.datenschutz-berlin.de
www.datenschutz-berlin.de
www.datenschutz-berlin.de
www.datenschutz-berlin.de
www.datenschutz-berlin.de
www.datenschutz-berlin.de
www.datenschutz-berlin.de
www.datenschutz-berlin.de
kontakt.datenschutz-berlin.de
kontakt.datenschutz-berlin.de
kontakt.datenschutz-berlin.de
www.datenschutz-berlin.de
cloud.datenschutz-berlin.de
www.datenschutz-berlin.de
kontakt.datenschutz-berlin.de
www.datenschutz-berlin.de
www.datenschutz-berlin.de
www.datenschutz-berlin.de
kontakt.datenschutz-berlin.de
mail2.datenschutz-berlin.de
www.datenschutz-berlin.de
www.datenschutz-berlin.de
datenschutz-berlin.de
kontakt.datenschutz-berlin.de

Certificate

The complete raw certificate details for stage.datenschutz-berlin.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3vh9myWD5w3Et7qSJtq9
V86gnPZmc3+/HECsmVxRvKefi74xEXtLmD4CpFKrnyMHpyX1H0C34fWJa4v5rj+4
wFKcrpdABejfksPs6iAbhlaVEFoLPtx1OFCrxZUuKgOTqZKC/DZrow7vdjZsgLP2
N6dSrhHH8kQNmcfhfM3Ne1ggW0nJlKx3slFlZ5cNXr67viXXSM58hQOpq6oync0z
TrK4yNNnP+cX/AJQ2psnwWFQ0J1bY64zCd33XQi8HEVBwhBYQARsxsiDQT4d3/eO
lL9tYEpEO2cq+EAoUeYNAZTE8xVOlmzRj8GLVNnuQkVf1Z1MPf0u16DcnkGxOfN+
cQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 304025047261777155714967409234833612965321
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-22 09:28:15 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-20 09:28:14 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'stage.datenschutz-berlin.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28147439008242267850052150360128500724390485553332483154324576052302712619801011269963843708888183977472377186973082863206984444775133544644387786705045580292072212934062847856633442204085947667213114798799756297987688454785364288190766725443926277466087866272186299160917842510688359430714629644782773830291382784867723352988647485073663040162327547070982276458282441799910866938934601237438498460679542992504624129609456882224234988070754770506314242692484505316315185236759039631860045742548526771211625198983354138505508497576205715662404517229506907935212820743493397000214259783255420198503183965045381141855857
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d7322852e0b136c506c88e75954d924a96f2ff61
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.datenschutz-berlin.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000183ff3c73330000040300473045022100b169fe0b07b127c27499bd06e92d8b51b0018b3f183cd9fdb8b130599f881a23022036c8e5f4773a52673d43c0c643f5efbf3faefddb835a086db6d19e2362e4b879007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000183ff3c73230000040300473045022100b0f5d1422ec7810cf996259d8b2149d4dad7e31793f3a58323b8c32bde2d712502202d0eb6e0e3a072332f2238ac25770d42f97ad3fe5abbf42d31bda013e782b191
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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