www.geruestbau-hohmeier.de
Issued by Secure Site Starter DV SSL CA - G2
About this certificate
This digital certificate with serial number 66:81:29:a7:40:92:0a:47:c5:12:96:c0:40:23:96:cf was issued on by GeoTrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.geruestbau-hohmeier.de
GeoTrust, Inc.
Organization:
GeoTrust, Inc.
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 66:81:29:a7:40:92:0a:47:c5:12:96:c0:40:23:96:cfSerial Number (int): 136251906694692893746714570649436919503
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 9b:54:ad:df:69:60:ea:70:42:6e:e8:2e:c7:14:7e:88:ff:b9:44:99
Fingerprint (sha1): 54:0d:fe:c5:85:91:65:ba:a0:0e:8f:c5:3f:9e:48:49:ac:64:19:be
Fingerprint (sha256): 00:01:1d:c9:05:f3:23:df:7c:8c:e8:16:37:20:78:9d:c1:a1:52:ef:c2:2f:ec:0b:84:13:e6:20:70:ca:ad:64
Issuing Certificate URL: http://ha.symcb.com/ha.crt
Revocation information
OCSP Server: http://ha.symcd.comCheck the revocation status for certificate www.geruestbau-hohmeier.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.geruestbau-hohmeier.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.geruestbau-hohmeier.de
geruestbau-hohmeier.de
geruestbau-hohmeier.de
Other certificates including the domain name geruestbau-hohmeier.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.geruestbau-hohmeier.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFwTCCBKmgAwIBAgIQZoEpp0CSCkfFEpbAQCOWzzANBgkqhkiG9w0BAQsFADBy MQswCQYDVQQGEwJVUzEXMBUGA1UEChMOR2VvVHJ1c3QsIEluYy4xHTAbBgNVBAsT FERvbWFpbiBWYWxpZGF0ZWQgU1NMMSswKQYDVQQDEyJTZWN1cmUgU2l0ZSBTdGFy dGVyIERWIFNTTCBDQSAtIEcyMB4XDTE2MDcyOTAwMDAwMFoXDTE3MDcyOTIzNTk1 OVowJTEjMCEGA1UEAwwad3d3LmdlcnVlc3RiYXUtaG9obWVpZXIuZGUwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCysa4n7vsQZLO/mcsGLNRylwjIIMD1 SA7yBbz0lR0kfGC9eaT+Itut7FQvfhfDdHEAW8tI0pBvZgtQATutwIxbr5GLu3Mq N8MCYIH5KYvZkfJE/TTBOTiWqRHKvlFau5FBfoblpbEVku2HFTveaJZfNu/IoifL 72JG2uMWkDExFA/tdZBFAg6Qt0fwBZMZ50a4INM2cbd8bkkphii7PcfVpOvy5KSc bw7RDpxUXGUCSBpCskZz23DRgvYh1sMBU8rMLehuolG2IcNs0Y3WwNiyL+ea9Xr+ wXn7gP8etOBgSC/vF1Y0AosYFuXtb8cLGNSyvJSf4BnM0cUY7yvU2B9lAgMBAAGj ggKeMIICmjA9BgNVHREENjA0ghp3d3cuZ2VydWVzdGJhdS1ob2htZWllci5kZYIW Z2VydWVzdGJhdS1ob2htZWllci5kZTAJBgNVHRMEAjAAMIGdBgNVHSAEgZUwgZIw gY8GBmeBDAECATCBhDA/BggrBgEFBQcCARYzaHR0cHM6Ly93d3cuZ2VvdHJ1c3Qu Y29tL3Jlc291cmNlcy9yZXBvc2l0b3J5L2xlZ2FsMEEGCCsGAQUFBwICMDUMM2h0 dHBzOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJjZXMvcmVwb3NpdG9yeS9sZWdh bDAfBgNVHSMEGDAWgBSbVK3faWDqcEJu6C7HFH6I/7lEmTAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMFcGCCsGAQUFBwEBBEsw STAfBggrBgEFBQcwAYYTaHR0cDovL2hhLnN5bWNkLmNvbTAmBggrBgEFBQcwAoYa aHR0cDovL2hhLnN5bWNiLmNvbS9oYS5jcnQwggEDBgorBgEEAdZ5AgQCBIH0BIHx AO8AdQDd6x0reg1PpiCLga2BaHB+Lo6dAdVciI09EcTNtuy+zAAAAVY3hc3mAAAE AwBGMEQCIBaRpOEjVO3igVgUqGkU9ZkijOZvlJUzsiodveiXLkP5AiBNBFBHdaDk 9FQTof312hayRyM+nt9Hz5RL530OCRYsAAB2AKS5CZC0GFgUh7sTosxncAo8NZgE +RvfuON3zQ7IDdwQAAABVjeFzkcAAAQDAEcwRQIhAN1QEwF2sKHAbFirpa+i1gBr UEi9UgO54ZmEjrYY5dbpAiB9SVfz0sG/mNDK8CnSKkoFZLFTWAhLPthfRg0wXbwE MDANBgkqhkiG9w0BAQsFAAOCAQEAvqONdqyhoDkvJz0u8SEy+kp8HBwEmetQ0WPz 4EtrNzEODyG7rxViJPFpBeoSDuiTSEQ6+gbCPkjCxoW57HLHCvq9L95Ps7kXw8UY C3mPC2nKlJh0u87duBLud/V2EcTeQqnQRqHFXWenYEIqnzH2dR2UhjApd2EV3b/f MBAWh/493fieClHFwgFDqm67nbsTM7zvcX3WuhDc6VSdOz5mU4D6pEzrd8ajSuKV Oyrcgmu98AT0IUUW5GVfmHW7l68uCWJgo+SuhvIKFP9wukrvaK7NexIqA8td8igz Xrhw2pqgCf3n9mm3PaYyQuOiIi18Ks2rsqNe2Vv0CWmpyML4kA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrGuJ+77EGSzv5nLBizU cpcIyCDA9UgO8gW89JUdJHxgvXmk/iLbrexUL34Xw3RxAFvLSNKQb2YLUAE7rcCM W6+Ri7tzKjfDAmCB+SmL2ZHyRP00wTk4lqkRyr5RWruRQX6G5aWxFZLthxU73miW XzbvyKIny+9iRtrjFpAxMRQP7XWQRQIOkLdH8AWTGedGuCDTNnG3fG5JKYYouz3H 1aTr8uSknG8O0Q6cVFxlAkgaQrJGc9tw0YL2IdbDAVPKzC3obqJRtiHDbNGN1sDY si/nmvV6/sF5+4D/HrTgYEgv7xdWNAKLGBbl7W/HCxjUsryUn+AZzNHFGO8r1Ngf ZQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 136251906694692893746714570649436919503 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Secure Site Starter DV SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-07-29 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-07-29 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.geruestbau-hohmeier.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22558035703874786249806667875301909228622771907390585423101940792742700991015520235307788119608742051538907168170717712577357436485097244876840200144151637255315153028834766286349840878510680641534499013165480250814806917415683639607842322508167155836601957908237131869907925300022378714614863829045087823311547533810559905148447870222862269406555029344745187306415342394274926407555984982523391170390763581008384813026983550152102630985815513923111730521357263771782093884821889796105789290831126610170634012908987778431070296885870830789888253349949800882394098950464008724119580310677922150641902424559692440674149 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.geruestbau-hohmeier.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'geruestbau-hohmeier.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9b54addf6960ea70426ee82ec7147e88ffb94499 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ha.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ha.symcb.com/ha.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc000001563785cde6000004030046304402201691a4e12354ede2815814a86914f599228ce66f949533b22a1dbde8972e43f902204d04504775a0e4f45413a1fdf5da16b247233e9edf47cf944be77d0e09162c00007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc10000001563785ce470000040300473045022100dd50130176b0a1c06c58aba5afa2d6006b5048bd5203b9e199848eb618e5d6e902207d4957f3d2c1bf98d0caf029d22a4a0564b15358084b3ed85f460d305dbc0430 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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