bomhard.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:da:36:e5:16:4d:8f:ef:a3:2d:fa:b2:ef:46:02:11:48:1f was issued on by Let's Encrypt.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bomhard.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:da:36:e5:16:4d:8f:ef:a3:2d:fa:b2:ef:46:02:11:48:1fSerial Number (int): 422703667515916687408379350013121857144863
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: dd:22:3f:42:57:e5:a7:d0:59:c0:da:ad:90:eb:bf:93:e3:93:d7:a2
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): d9:3f:c9:a8:d7:42:b5:45:af:1b:e9:40:2a:13:22:dd:64:48:df:7c
Fingerprint (sha256): 00:00:fa:b8:cf:2f:e7:b0:6c:a4:91:15:f9:ef:06:f5:c1:e8:fa:88:a4:fb:53:90:30:ff:5c:51:49:3d:42:ce
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate bomhard.de
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bomhard.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bomhard.de
bomhard.net
bomhard.org
stoamandei.bomhard.de
www.bomhard.de
www.bomhard.net
www.bomhard.org
bomhard.net
bomhard.org
stoamandei.bomhard.de
www.bomhard.de
www.bomhard.net
www.bomhard.org
Other certificates including the domain name bomhard.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for bomhard.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWjCCBUKgAwIBAgISBNo25RZNj++jLfqy70YCEUgfMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzEyMzAxNDM4MDZaFw0x ODAzMzAxNDM4MDZaMBUxEzARBgNVBAMTCmJvbWhhcmQuZGUwggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQDwKR/YMLGzv0P2le9Dl8y3WsoUND2yeYramXAB 0q5dxTepy+HEMyETJq4bKba+JjhUoOOq1YBXduquwlVz+1yz31hoZg8TBHDN3U6m Fj9eNk2x4AIfHWNrg9pJw83Nm4ntxd5uUwXgXHRlSIQukJDQegko2PiGfd8yPfMc poADgB41mkJ0Kf7ld0YDKhvJXSto3tZLMdIWlwSrz9kJKAQ1qmqGfu12a50Zr2RB PE9Hk1NesiN/dhFkrI5irJYJ4zAFEvCLx5G8x+B4Vyy8CueB7xMABFPE9o7+3MaR Me1Z//mQmRUkcETo9VXL4bfd+JGczLnPVGlbCDPPlWR5GFB2Dh/dAvGPK4vbrR6c exo/ewFZjeyuAiOA8PDf7GEbMR/JW3hNHp73+bJioOWkNAZSy5jr0H0I3UnRMsp0 sMSOdwdRYQAc4pjUql8Qwi0DCyqvAhvBZbjAY4/eHOVipsnL63MJusfDGh5Kq/Gb 2MUH6ECrETeq3FZsGtDkvbsqr0tgoZ97QxOIyYRZGVIYYiS/CUu7lfhlbrlVCv1p J1VEZSQlUcUf4L8UjYvZVLH3LGcDVvKP5i/diuRhEMMKYbrFu+hEZv9qoBbips8E w6H259k3PpumsGtYEQzW08XK0xI26ZlXz0QS7WUIe/CsQdQvuz5hLfpNyyP2rq8N 33wUlwIDAQABo4ICbTCCAmkwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTdIj9CV+Wn 0FnA2q2Q67+T45PXojAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMHgGA1UdEQRxMG+CCmJvbWhhcmQuZGWCC2JvbWhhcmQu bmV0ggtib21oYXJkLm9yZ4IVc3RvYW1hbmRlaS5ib21oYXJkLmRlgg53d3cuYm9t aGFyZC5kZYIPd3d3LmJvbWhhcmQubmV0gg93d3cuYm9taGFyZC5vcmcwgf4GA1Ud IASB9jCB8zAIBgZngQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUHAgIwgZ4MgZtU aGlzIENlcnRpZmljYXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9uIGJ5IFJlbHlp bmcgUGFydGllcyBhbmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGggdGhlIENlcnRp ZmljYXRlIFBvbGljeSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNyeXB0Lm9yZy9y ZXBvc2l0b3J5LzANBgkqhkiG9w0BAQsFAAOCAQEATz1tRAi6plVXTMPZTttPwKNE CvOXlNR4xvrUH6eh81y44engS+mU8k5Nx5e6cwrXGWaSCYa03i0We7MysOmwzrFs rYa+srD1beJpNttL6PRFE58lgAYXshzM7KSLbLQ0Lv9YRgqffMeEMIVz8ouGGnWU XZ8Smtiug348rYflo43Q1NqWlz1OMyR13kQ1+RNqsjPUQn8waLe67bvhP9Mokhy8 2kicgOzd3NMzzKvCvQ8z74vAm6XkNWOfeQgnM5tU3/4L/arDfxyogPTCRhYThhBU O/w7DWomrxPiupm+icbs0IpEMZ6ONd99bc1mLGIYYqqz+PBMRZBgaFgF2fVpkw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA8Ckf2DCxs79D9pXvQ5fM t1rKFDQ9snmK2plwAdKuXcU3qcvhxDMhEyauGym2viY4VKDjqtWAV3bqrsJVc/tc s99YaGYPEwRwzd1OphY/XjZNseACHx1ja4PaScPNzZuJ7cXeblMF4Fx0ZUiELpCQ 0HoJKNj4hn3fMj3zHKaAA4AeNZpCdCn+5XdGAyobyV0raN7WSzHSFpcEq8/ZCSgE Napqhn7tdmudGa9kQTxPR5NTXrIjf3YRZKyOYqyWCeMwBRLwi8eRvMfgeFcsvArn ge8TAARTxPaO/tzGkTHtWf/5kJkVJHBE6PVVy+G33fiRnMy5z1RpWwgzz5VkeRhQ dg4f3QLxjyuL260enHsaP3sBWY3srgIjgPDw3+xhGzEfyVt4TR6e9/myYqDlpDQG UsuY69B9CN1J0TLKdLDEjncHUWEAHOKY1KpfEMItAwsqrwIbwWW4wGOP3hzlYqbJ y+tzCbrHwxoeSqvxm9jFB+hAqxE3qtxWbBrQ5L27Kq9LYKGfe0MTiMmEWRlSGGIk vwlLu5X4ZW65VQr9aSdVRGUkJVHFH+C/FI2L2VSx9yxnA1byj+Yv3YrkYRDDCmG6 xbvoRGb/aqAW4qbPBMOh9ufZNz6bprBrWBEM1tPFytMSNumZV89EEu1lCHvwrEHU L7s+YS36Tcsj9q6vDd98FJcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 422703667515916687408379350013121857144863 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-30 14:38:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-30 14:38:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bomhard.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 979769939153427916082193935719542139889402879688834249625868918705093012878493544820706777476433232868029082372986764876696270242534603634681273675383769468522477313653131388479360949519166157309523861767019295533356221006153876607683655121434799273712213769179559186221739222089522519801420530864649603459913152240802526277950737033667913632502340816792071531766251338843669249627382914310617906766571107985639308746585490672031031195305876098246605421459122145761260868214383612578187414749979615137204890578699584743274158740095321417471419855412150801925956174542348526407155367804886970577061697515700828579142778403547560157101648306344169235575811304379289396682602429775593546304440262144624733893814966942684777815734947389928519392671995306247425298728627522660020301706274345438216185470413115650247900821806924007933177606028133132134237669656569077939647435252307934332438948283071931664521366815816333555979128833513676852093204575531940095590607408223644323614878174465987287687203555416363675651784664136679057418164500545304981688425761503784572765847161744799334689029605584418370876920634766223694507361478543100513876694032319293114041965781673305762161303036628381208137614207471056780533728636138369285650912407 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dd223f4257e5a7d059c0daad90ebbf93e393d7a2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bomhard.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bomhard.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bomhard.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stoamandei.bomhard.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bomhard.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bomhard.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bomhard.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 004f3d6d4408baa655574cc3d94edb4fc0a3440af39794d478c6fad41fa7a1f35cb8e1e9e04be994f24e4dc797ba730ad71966920986b4de2d167bb332b0e9b0ceb16cad86beb2b0f56de26936db4be8f445139f25800617b21ccceca48b6cb4342eff58460a9f7cc784308573f28b861a75945d9f129ad8ae837e3cad87e5a38dd0d4da96973d4e332475de4435f9136ab233d4427f3068b7baedbbe13fd328921cbcda489c80ecdddcd333ccabc2bd0f33ef8bc09ba5e435639f790827339b54dffe0bfdaac37f1ca880f4c24616138610543bfc3b0d6a26af13e2ba99be89c6ecd08a44319e8e35df7d6dcd662c621862aab3f8f04c459060685805d9f56993