czastka.de

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:d0:0f:d6:10:71:fe:e9:1e:ed:c1:fe:e5:de:d9:47:80:fe was issued on by Let's Encrypt.

With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:

  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

czastka.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 03:d0:0f:d6:10:71:fe:e9:1e:ed:c1:fe:e5:de:d9:47:80:fe
Serial Number (int): 332136640019850667572265719967401936126206
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: eb:9b:17:3f:d4:95:3e:9f:04:0d:54:0a:2f:90:d5:8a:d7:19:cd:fb
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 17:b0:e3:de:dc:1f:2a:cd:c1:7e:df:17:62:15:57:78:e7:d8:08:dd
Fingerprint (sha256): 00:00:57:d9:10:ac:c8:52:23:1b:ec:30:a0:1c:39:66:6d:1a:ff:b3:4e:cd:5e:a4:f7:93:c7:bb:3b:9b:61:07

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org/

Check the revocation status for certificate czastka.de

6

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for czastka.de


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

czastka.de
czastka.eu
czastka.tv
www.czastka.de
www.czastka.eu
www.czastka.tv

Certificate

The complete raw certificate details for czastka.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 332136640019850667572265719967401936126206
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-01-03 19:41:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-04-03 19:41:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'czastka.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 813705079750728937829506386935895504145801924166820791042162188722673060890070726240705903988961764842433518167969212669721717978764990637851672612420979913675290734285149051930007215278631937504457275549028998328790624105791970691714117825627104258854962054245662253685413853287397258362988562388530824134203756257481558025990284955442075435913159343718709780986307494075805520003565868412972740503255998471102795191326862951358581321998219571703154641446531347762570795603879523520521841286926900605501898571042278081341150643973328008140921070390493406602377434312207094812103256163064323025918718709323974381622366637279492169893184709088862071908440322655492769759916593950074059040727634068148528522350744583337303351683663461542024531786086125727090784738378004023735978710636820485219733018587112085168974627825312299729037965404241143849558601196658908883733485795653118480455158564460358153640718336870009295701123775471240138326638335454597718493388486374313616449874769318887532089054961138403957710537559679299421125329259374700253029826211649708390960810879954793390275200130971462641370889081268322729582604106508180509367836681761619695185138542641555243135687103027636848754443007781544302680288002035212623291816743
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							eb9b173fd4953e9f040d540a2f90d58ad719cdfb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'czastka.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'czastka.eu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'czastka.tv'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.czastka.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.czastka.eu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.czastka.tv'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		003d7aa32537b332da08586ccc32fbc55764f23112a87e9539609bc993b2582de137fb31fd4fec22205ea74f66cffafa1f0eed519cd8bad7ec11363dc4cb8add669c8cea35ac05db2df63e89c5f9ff85981a8e8cb4adb8446a07a52ae1db027f4bab044fb2c6dc4ecc5ed46d543241648cd9c45bb243f82fe62776abe4d2c1af156960569c2a6c01cc56d7dcffffaf01950eaabe477d606547511ed30d7c4d3c407eafdeb5eb6f0e4c8a4868e1c780506be06316581d5af37a980dbf46d08022b4ba77a1281a83c6b822b5eb660c75ffd83753dfe1b42456aac768012ad91274994b1dbb603c889c0887ae27f9fa3aa60be5942a049b6b7ab65a7dc8b81bf4c852