DV SSL/TLS Certificate for raj-heinze.de

Certificate is witin its validity period

Issued by DigiCert Inc (Encryption Everywhere DV TLS CA - G2)

About the raj-heinze.de DV SSL/TLS Certificate

This certificate with serial number 0d:2b:c9:5c:25:c8:5f:5b:c1:ca:32:3d:65:61:5d:c1 for raj-heinze.de was issued on by DigiCert Inc.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for raj-heinze.de provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

DigiCert Inc

Organization: DigiCert Inc
Organizational unit: www.digicert.com
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 0d:2b:c9:5c:25:c8:5f:5b:c1:ca:32:3d:65:61:5d:c1
Serial Number (int): 17507316775135370078596880664866414017
Serial Number Length: 124 bits, 16 octets

Subject Key Identifier: 0a:f9:f4:d9:24:2a:02:6d:c8:b1:68:b0:17:9a:aa:98:70:6d:ae:23
Authority Key Identifier: 78:df:91:90:5f:ee:de:ac:f6:c5:75:eb:d5:4c:55:53:ef:24:4a:b6

Fingerprint (SHA-1): 0a:60:ee:92:7c:ea:91:28:b7:2c:43:a8:be:d2:e9:3a:03:6b:87:f8
Fingerprint (SHA-256): c7:bd:1e:1f:2a:5b:d1:6c:2d:06:93:67:b2:e2:59:b9:77:ba:bb:f1:8b:9c:37:16:88:33:59:dd:e4:1f:54:3a

Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt

Revocation Information

OCSP Server: http://ocsp.digicert.com

Check the revocation status for certificate raj-heinze.de
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for raj-heinze.de

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for raj-heinze.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2wNlKU6LKw4AZjr0HFle
Nh9LGCGw7IGTF5UDC3ot7myQFxvAlMmBgII3Eier4mGzk+2FFQWJ2qB1HPL4SJLC
YExX8s3chDbnmSmrz+WTq/mac8w2+gh1fo4xvrcVTAmnJU8vWFrxSNQbdpeHhCNQ
zU2fqDu/TTYu6tLZx24PzmZuq4SqDgZpXMBiTo7UMgkbZV8BQgMJcT0KM1ETcI5H
7aklKtb2AvNRLos8hNJbx8BJkLd/+QhTdttQ5Jl/aK1A3iT5tiMEJhGUtXW43E8V
cmColLVBMoYW96OpVrX2gMWqBwOx0QKam35AbTILscjnRdsk6TM63XI7mRY18M7N
PQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 17507316775135370078596880664866414017
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G2'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-15 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2026-06-14 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'raj-heinze.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27647863004122062829420495963377595177987138367829560953915529013019097399330166481054940116131580328285364818841848896661286084704936891383256265517255403252568509363432948238908675973452076057673839847527522650706251838695414389611790461461598623898387825922049676074960953912097324190070454529671822913028833924856995462101216700192096794162204153672734797466990481248033291018630721575928402722789436746836231282495067846957862963989866382993278933815818282242960699223539563651429376681008490169066941378678707903016538601429313855195209698765692005075615207612432176378295331093398025173435029659537758101622077
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 78df91905feedeacf6c575ebd54c5553ef244ab6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							0af9f4d9242a026dc8b168b0179aaa98706dae23
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'raj-heinze.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.raj-heinze.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		000b66028aedcbd5db5d365af9a97fca6517d18026d4d6111199ff1cc4c4467a909a47c2b0d869ebc87fc332edfb7a6b175f59be2077b1f631e9b2ee6ef5c0291ae339894b9500f25e9c52886b520b6abca5ca1ee65a462a87b21ca98cfed230adc56f5fdd45337ae0a121b93045742b24d1d046d82b51e3517eda6722c6800a544c814d93b6e26f5fa24bd2040b30dde639e79ed61a9f2439ad0821a72a9bcdacadc5181bfce09251f2c2b5547d865f4fa07b41a05357dc66fd371a98e3e317014377bb13c49462c77bbb4cf12759b4f920f7e7445c2e025bf2e39543f1649040246ff6c457b2551370d3e1b4763a4513d847d9957471da30cb379e01c03271e0