DV SSL/TLS Certificate for www.berndhauser.de

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the www.berndhauser.de DV SSL/TLS Certificate

This certificate with serial number 05:5a:a5:57:6a:31:83:ca:69:97:b7:30:38:55:72:5b:ed:7a for www.berndhauser.de was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.berndhauser.de provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:5a:a5:57:6a:31:83:ca:69:97:b7:30:38:55:72:5b:ed:7a
Serial Number (int): 466406619184675283782081337508128230206842
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 21:02:d2:7e:9d:9d:30:99:2f:d3:5e:01:6f:ad:19:2d:66:38:fe:2e
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): 12:67:7c:02:1a:e2:d8:ac:bb:cd:f5:5c:c0:ee:48:a9:7d:fe:a5:2d
Fingerprint (SHA-256): 65:e0:b9:98:ee:9b:d3:0f:e9:87:dc:fb:2e:74:8b:9c:e7:04:fd:2a:ea:c3:d6:dd:50:26:c7:e4:60:ed:61:c1

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/123.crl

Check the revocation status for certificate www.berndhauser.de
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.berndhauser.de

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

www.berndhauser.de

X.509 Certificate

The complete raw X.509 certificate details for www.berndhauser.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISBVqlV2oxg8ppl7cwOFVyW+16MA0GCSqGSIb3DQEBCwUA
MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD
EwNSMTEwHhcNMjUwNjE1MDYxMzA4WhcNMjUwOTEzMDYxMzA3WjAdMRswGQYDVQQD
ExJ3d3cuYmVybmRoYXVzZXIuZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC9T3oZzijtNV/ndJBgdX1RQKUfdFO0FK3rvA87KVZ/1jkdwxSGGs3iDCqL
tkPRSpmAmBi9nO8BXu3VXRBuXoBejaNED0H5CQu/QdASabfm5n7iBQ2mqVIb2pWG
IEFI32k3g6YlirQwqil8QVDZvVGCKdQTAC9xAhXt+Bvs4T1uVNWgfVptqe9jl4bD
e+XfLJZKpMUU6o9OO7hSgUQH1ImRZuL0eAwYnxfieupNn2DbAfgOYaEUlYAByVkB
hituuLYy8JGgUDjHm0dgluM/FrLOlWNzBoHqu+j5lnaZ1iowptycXmJ9G0G7fMim
7eby9pEA8emfiCn5ip1YC7feMkc9AgMBAAGjggIiMIICHjAOBgNVHQ8BAf8EBAMC
BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAw
HQYDVR0OBBYEFCEC0n6dnTCZL9NeAW+tGS1mOP4uMB8GA1UdIwQYMBaAFMXPRqTq
9MPAemyVxC2wXpIvJuO5MDMGCCsGAQUFBwEBBCcwJTAjBggrBgEFBQcwAoYXaHR0
cDovL3IxMS5pLmxlbmNyLm9yZy8wHQYDVR0RBBYwFIISd3d3LmJlcm5kaGF1c2Vy
LmRlMBMGA1UdIAQMMAowCAYGZ4EMAQIBMC8GA1UdHwQoMCYwJKAioCCGHmh0dHA6
Ly9yMTEuYy5sZW5jci5vcmcvMTIzLmNybDCCAQMGCisGAQQB1nkCBAIEgfQEgfEA
7wB2AMz7D2qFcQll/pWbU87psnwi6YVcDZeNtql+VMD+TA2wAAABl3Jt9nIAAAQD
AEcwRQIhAPE6dMpZeKigXjXKiP31xKM0ny17Pl8JYpRZXvbxtQG+AiBjrCmeKnyh
q7VT4ZB39+eHvTv8ipN/S7UY45RHhHsx5QB1AO08S9boBsKkogBX28sk4jgB31Ev
7cSGxXAPIN23Pj/gAAABl3Jt9nAAAAQDAEYwRAIgYdyKtkJ3Mev4IkEDQjURwZ1J
wYq9GPSmq5fGd4SyvNUCIF1AVCx5Ogqh+gT1uE/fFMOqxr9vK5wiBZcEjfR7fctf
MA0GCSqGSIb3DQEBCwUAA4IBAQBqdJ/1pB24ulTOkYTkjJPWtf3DdeVnOKh2mh4m
rcFcotK7sBcCrBcZE6muQEs9guRdwIBN4cqjkzaJBE9Auh+/gdQarH1XUTz9aywH
evO5E3CpDW2WO6eqMlc/f5lYvJpY8F0XWAMQwEKJqInV6ON2lNRnteBIrTaoJFMx
pkyxhu2PR0BtTdlNysvvcoKhku0BeF1U0BuV2n1wRUMzmhbuz7GsC6MWoccVxnOF
Dm0cERZsDQXIZWuBlo+hXsrciRNp4FHsGR06CuCinzr1A1DugNj/I3zE5VmfB3iC
4FrxgXpR0Ua5h70QYuXZWnDAQzGHa2aPhjEyBC58q4mHXXSF
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvU96Gc4o7TVf53SQYHV9
UUClH3RTtBSt67wPOylWf9Y5HcMUhhrN4gwqi7ZD0UqZgJgYvZzvAV7t1V0Qbl6A
Xo2jRA9B+QkLv0HQEmm35uZ+4gUNpqlSG9qVhiBBSN9pN4OmJYq0MKopfEFQ2b1R
ginUEwAvcQIV7fgb7OE9blTVoH1abanvY5eGw3vl3yyWSqTFFOqPTju4UoFEB9SJ
kWbi9HgMGJ8X4nrqTZ9g2wH4DmGhFJWAAclZAYYrbri2MvCRoFA4x5tHYJbjPxay
zpVjcwaB6rvo+ZZ2mdYqMKbcnF5ifRtBu3zIpu3m8vaRAPHpn4gp+YqdWAu33jJH
PQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 466406619184675283782081337508128230206842
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-15 06:13:08 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-13 06:13:07 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.berndhauser.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23898231186404797643542477893318956080970406193723337687105499049332950308691818961093917082383308329526694412749641016132984409175897725598325864767529517548534501679689616624831797054645329934531674178423943998598092245446892484079114410064474953632367693004623911425251481974845971569970585735150431767198719545430161440511475130133189490685939978266220015885010148819188674399555009817845746442257729838956160267069368484112244262950641507824280766455880174582552389240060649825648754348257805843360931765363019118958299336545597448306289168898402482225254053765121194927813497163757436496138883702528157861168957
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							2102d27e9d9d30992fd35e016fad192d6638fe2e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.berndhauser.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/123.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db000000197726df6720000040300473045022100f13a74ca5978a8a05e35ca88fdf5c4a3349f2d7b3e5f096294595ef6f1b501be022063ac299e2a7ca1abb553e19077f7e787bd3bfc8a937f4bb518e39447847b31e5007500ed3c4bd6e806c2a4a20057dbcb24e23801df512fedc486c5700f20ddb73e3fe000000197726df6700000040300463044022061dc8ab6427731ebf8224103423511c19d49c18abd18f4a6ab97c67784b2bcd502205d40542c793a0aa1fa04f5b84fdf14c3aac6bf6f2b9c220597048df47b7dcb5f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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