www.geruestbau-hohmeier.de

Issued by Secure Site Starter DV SSL CA - G2

About this certificate

This digital certificate with serial number 66:81:29:a7:40:92:0a:47:c5:12:96:c0:40:23:96:cf was issued on by GeoTrust, Inc..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:

  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

www.geruestbau-hohmeier.de

GeoTrust, Inc.

Organization: GeoTrust, Inc.
Organization unit: Domain Validated SSL
Country: US

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 66:81:29:a7:40:92:0a:47:c5:12:96:c0:40:23:96:cf
Serial Number (int): 136251906694692893746714570649436919503
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId:
AuthorityKeyId: 9b:54:ad:df:69:60:ea:70:42:6e:e8:2e:c7:14:7e:88:ff:b9:44:99

Fingerprint (sha1): 54:0d:fe:c5:85:91:65:ba:a0:0e:8f:c5:3f:9e:48:49:ac:64:19:be
Fingerprint (sha256): 00:01:1d:c9:05:f3:23:df:7c:8c:e8:16:37:20:78:9d:c1:a1:52:ef:c2:2f:ec:0b:84:13:e6:20:70:ca:ad:64

Issuing Certificate URL: http://ha.symcb.com/ha.crt

Revocation information

OCSP Server: http://ha.symcd.com

Check the revocation status for certificate www.geruestbau-hohmeier.de

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.geruestbau-hohmeier.de


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.geruestbau-hohmeier.de
geruestbau-hohmeier.de

Other certificates including the domain name geruestbau-hohmeier.de

(limited to 100 certificates)

Certificate

The complete raw certificate details for www.geruestbau-hohmeier.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFwTCCBKmgAwIBAgIQZoEpp0CSCkfFEpbAQCOWzzANBgkqhkiG9w0BAQsFADBy
MQswCQYDVQQGEwJVUzEXMBUGA1UEChMOR2VvVHJ1c3QsIEluYy4xHTAbBgNVBAsT
FERvbWFpbiBWYWxpZGF0ZWQgU1NMMSswKQYDVQQDEyJTZWN1cmUgU2l0ZSBTdGFy
dGVyIERWIFNTTCBDQSAtIEcyMB4XDTE2MDcyOTAwMDAwMFoXDTE3MDcyOTIzNTk1
OVowJTEjMCEGA1UEAwwad3d3LmdlcnVlc3RiYXUtaG9obWVpZXIuZGUwggEiMA0G
CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCysa4n7vsQZLO/mcsGLNRylwjIIMD1
SA7yBbz0lR0kfGC9eaT+Itut7FQvfhfDdHEAW8tI0pBvZgtQATutwIxbr5GLu3Mq
N8MCYIH5KYvZkfJE/TTBOTiWqRHKvlFau5FBfoblpbEVku2HFTveaJZfNu/IoifL
72JG2uMWkDExFA/tdZBFAg6Qt0fwBZMZ50a4INM2cbd8bkkphii7PcfVpOvy5KSc
bw7RDpxUXGUCSBpCskZz23DRgvYh1sMBU8rMLehuolG2IcNs0Y3WwNiyL+ea9Xr+
wXn7gP8etOBgSC/vF1Y0AosYFuXtb8cLGNSyvJSf4BnM0cUY7yvU2B9lAgMBAAGj
ggKeMIICmjA9BgNVHREENjA0ghp3d3cuZ2VydWVzdGJhdS1ob2htZWllci5kZYIW
Z2VydWVzdGJhdS1ob2htZWllci5kZTAJBgNVHRMEAjAAMIGdBgNVHSAEgZUwgZIw
gY8GBmeBDAECATCBhDA/BggrBgEFBQcCARYzaHR0cHM6Ly93d3cuZ2VvdHJ1c3Qu
Y29tL3Jlc291cmNlcy9yZXBvc2l0b3J5L2xlZ2FsMEEGCCsGAQUFBwICMDUMM2h0
dHBzOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJjZXMvcmVwb3NpdG9yeS9sZWdh
bDAfBgNVHSMEGDAWgBSbVK3faWDqcEJu6C7HFH6I/7lEmTAOBgNVHQ8BAf8EBAMC
BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMFcGCCsGAQUFBwEBBEsw
STAfBggrBgEFBQcwAYYTaHR0cDovL2hhLnN5bWNkLmNvbTAmBggrBgEFBQcwAoYa
aHR0cDovL2hhLnN5bWNiLmNvbS9oYS5jcnQwggEDBgorBgEEAdZ5AgQCBIH0BIHx
AO8AdQDd6x0reg1PpiCLga2BaHB+Lo6dAdVciI09EcTNtuy+zAAAAVY3hc3mAAAE
AwBGMEQCIBaRpOEjVO3igVgUqGkU9ZkijOZvlJUzsiodveiXLkP5AiBNBFBHdaDk
9FQTof312hayRyM+nt9Hz5RL530OCRYsAAB2AKS5CZC0GFgUh7sTosxncAo8NZgE
+RvfuON3zQ7IDdwQAAABVjeFzkcAAAQDAEcwRQIhAN1QEwF2sKHAbFirpa+i1gBr
UEi9UgO54ZmEjrYY5dbpAiB9SVfz0sG/mNDK8CnSKkoFZLFTWAhLPthfRg0wXbwE
MDANBgkqhkiG9w0BAQsFAAOCAQEAvqONdqyhoDkvJz0u8SEy+kp8HBwEmetQ0WPz
4EtrNzEODyG7rxViJPFpBeoSDuiTSEQ6+gbCPkjCxoW57HLHCvq9L95Ps7kXw8UY
C3mPC2nKlJh0u87duBLud/V2EcTeQqnQRqHFXWenYEIqnzH2dR2UhjApd2EV3b/f
MBAWh/493fieClHFwgFDqm67nbsTM7zvcX3WuhDc6VSdOz5mU4D6pEzrd8ajSuKV
Oyrcgmu98AT0IUUW5GVfmHW7l68uCWJgo+SuhvIKFP9wukrvaK7NexIqA8td8igz
Xrhw2pqgCf3n9mm3PaYyQuOiIi18Ks2rsqNe2Vv0CWmpyML4kA==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrGuJ+77EGSzv5nLBizU
cpcIyCDA9UgO8gW89JUdJHxgvXmk/iLbrexUL34Xw3RxAFvLSNKQb2YLUAE7rcCM
W6+Ri7tzKjfDAmCB+SmL2ZHyRP00wTk4lqkRyr5RWruRQX6G5aWxFZLthxU73miW
XzbvyKIny+9iRtrjFpAxMRQP7XWQRQIOkLdH8AWTGedGuCDTNnG3fG5JKYYouz3H
1aTr8uSknG8O0Q6cVFxlAkgaQrJGc9tw0YL2IdbDAVPKzC3obqJRtiHDbNGN1sDY
si/nmvV6/sF5+4D/HrTgYEgv7xdWNAKLGBbl7W/HCxjUsryUn+AZzNHFGO8r1Ngf
ZQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 136251906694692893746714570649436919503
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Secure Site Starter DV SSL CA - G2'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-07-29 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-07-29 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.geruestbau-hohmeier.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22558035703874786249806667875301909228622771907390585423101940792742700991015520235307788119608742051538907168170717712577357436485097244876840200144151637255315153028834766286349840878510680641534499013165480250814806917415683639607842322508167155836601957908237131869907925300022378714614863829045087823311547533810559905148447870222862269406555029344745187306415342394274926407555984982523391170390763581008384813026983550152102630985815513923111730521357263771782093884821889796105789290831126610170634012908987778431070296885870830789888253349949800882394098950464008724119580310677922150641902424559692440674149
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.geruestbau-hohmeier.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'geruestbau-hohmeier.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9b54addf6960ea70426ee82ec7147e88ffb94499
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ha.symcd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ha.symcb.com/ha.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc000001563785cde6000004030046304402201691a4e12354ede2815814a86914f599228ce66f949533b22a1dbde8972e43f902204d04504775a0e4f45413a1fdf5da16b247233e9edf47cf944be77d0e09162c00007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc10000001563785ce470000040300473045022100dd50130176b0a1c06c58aba5afa2d6006b5048bd5203b9e199848eb618e5d6e902207d4957f3d2c1bf98d0caf029d22a4a0564b15358084b3ed85f460d305dbc0430
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00bea38d76aca1a0392f273d2ef12132fa4a7c1c1c0499eb50d163f3e04b6b37310e0f21bbaf156224f16905ea120ee89348443afa06c23e48c2c685b9ec72c70afabd2fde4fb3b917c3c5180b798f0b69ca949874bbceddb812ee77f57611c4de42a9d046a1c55d67a760422a9f31f6751d94863029776115ddbfdf30101687fe3dddf89e0a51c5c20143aa6ebb9dbb1333bcef717dd6ba10dce9549d3b3e665380faa44ceb77c6a34ae2953b2adc826bbdf004f4214516e4655f9875bb97af2e096260a3e4ae86f20a14ff70ba4aef68aecd7b122a03cb5df228335eb870da9aa009fde7f669b73da63242e3a2222d7c2acdabb2a35ed95bf40969a9c8c2f890