www.igha.de

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:8c:41:bf:83:fc:22:75:6c:f4:2d:64:0d:d4:eb:f2:93:da was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.igha.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:8c:41:bf:83:fc:22:75:6c:f4:2d:64:0d:d4:eb:f2:93:da
Serial Number (int): 309063783389609943989698056044720050836442
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: c5:de:a1:ed:3e:48:0b:a4:bd:b8:61:8a:87:70:11:65:cd:5d:20:61
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 11:3c:33:e5:da:74:f6:0a:5c:58:87:31:6e:33:47:28:2e:d6:ca:03
Fingerprint (sha256): 00:01:6c:23:b0:c7:b5:c0:e4:cf:9b:2b:5c:c9:57:64:13:26:db:c4:0d:47:c0:99:bf:3d:2a:80:92:d2:1c:5b

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org/

Check the revocation status for certificate www.igha.de

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.igha.de

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.igha.de

Other certificates including the domain name igha.de

(limited to 100 certificates)

Certificate

The complete raw certificate details for www.igha.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 309063783389609943989698056044720050836442
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-03-26 13:15:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-06-24 13:15:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.igha.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 786530619195853615826566099056058619041078942284597695707801418130709868070268881166671651979454770771461300323403112939179469278506653252082072200456439896922118752604178117846501451782197969211364142275988447284208045015137251424326894413652011860175992583196747676786346360076026169886479081383844917377853277380179889994871142168841143541949476811633625965453405052159324097584299524557880228953223246109533937006296574379999914277274271926847975073552884151143073766566532859174047835178796109994607865153934728626279844539913885249552078290183737608524343322204373157050809856318065673136956870723533706373382773978861070745778527276809196923688066379382782913848248976890603644410926355298776063770971825859307306748073949701813812409495768070503981292129731127985418586065788823210777444348284708208992061178089411142971331476528076578200335582027769955805447742015881267007202554101275456075980059626741861241904448670210248658449642026221156995287326563907290607716429263746026962562088443793789304296495789555742457417872611738968340127154717103998446003902247894298220260284279600794781303938782704066272839245791925145221587773536699372073390917288217481764086338744069370087663063109824527064049228382663083115913660049
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c5dea1ed3e480ba4bdb8618a87701165cd5d2061
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.igha.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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