kps-payment.de

Issued by Sectigo RSA Domain Validation Secure Server CA

About this certificate

This digital certificate with serial number 39:b6:0e:68:98:e6:fe:5c:53:66:98:e6:f8:93:61:c8 was issued on by Sectigo Limited.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=kps-payment.de

Sectigo Limited

Organization: Sectigo Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate will expire on

Certificate Details

Serial Number (hex): 39:b6:0e:68:98:e6:fe:5c:53:66:98:e6:f8:93:61:c8
Serial Number (int): 76711286028777871606339175456051519944
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId: ca:0a:92:89:ca:6e:28:a4:85:c2:eb:f6:9d:09:5e:1b:f0:d3:0a:03
AuthorityKeyId: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1

Fingerprint (sha1): 72:95:76:d3:4c:60:88:00:d4:60:9f:c1:79:bc:e0:98:1e:51:7b:c3
Fingerprint (sha256): 04:70:59:61:49:86:45:e2:d5:9e:14:43:ae:d5:2e:69:74:48:d7:05:d9:06:31:bb:4c:04:ff:6f:b1:e4:d7:d2

Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.sectigo.com

Check the revocation status for certificate kps-payment.de

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for kps-payment.de

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

kps-payment.de
www.kps-payment.de

Other certificates including the domain name kps-payment.de

(limited to 100 certificates)
kps-payment.de
secure.kps-payment.de
secure.kps-payment.de
secure.kps-payment.de
*.kps-payment.de
kps-payment.de
secure.kps-payment.de
secure.kps-payment.de
secure-test.kps-payment.de
psapp.kps-payment.de
secure.kps-payment.de
kps-payment.de
psapp.kps-payment.de
secure.kps-payment.de
secure.kps-payment.de
secure.kps-payment.de
*.kps-payment.de

Certificate

The complete raw certificate details for kps-payment.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 76711286028777871606339175456051519944
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-23 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-22 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kps-payment.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 831192716711261650890817087762765141719434014260413746860336546199975489237957046148599765501535121091286877819580609187197411992579458399395748155415892885875117125000338679596872107254944142324267292070929403212128093864298484204260723635286903628923137500948578851913944691273467807806471461107974716307946947642337108194473973027324981503302974187234043572352400796798973951038646053629532922877057327532264412102786268086758067136635291148355392650329424795242397603784645110364387374477960434444130134263017164714130356854398010076709033062464584862281086226958823656354077503697876095137217538857672773489326788640257320738330220786955700590349533134385598371309918857101507780592525924641659643654330417970116161171895717929708478392997738226758774264835781660929255019900378437142057532502126734743637620692772627493192293796612636257223873344183375212286661282983960829732632039753563438163581450465548058431053889730916514740285448622227437762938070946912239434871486005198328061991731890625653884703075360984187949519454208354969582449131794708821185057531450425485350306730947983985190723518332741953361005019580600461263909385540559907346635072309523975975451544090059379480088895304414924504597372561931839628190003867
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ca0a9289ca6e28a485c2ebf69d095e1bf0d30a03
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kps-payment.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kps-payment.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0061af6ad6d8b5bff71687a678ef0405395d93a8fbce08e06da5322cabd50462add7d6baf5eb7c3a9cd528e8479be8d4d5eac90a450a2b4205b94befec1234a547afbb3c26356bd76066b46a9e64e707aebd00b42532f4dd7345dee5430d3125b58c830916fe6bd6524e6511243b0600ed256b97459fd1e19195b3f249c8e22a59b5380aa277300d62ce98b23bb536292e3f921df2b86a29b35fe18557ccf509af52ef41bdeda507786c5595afd9fb57eab5d9fc7515cd2db3db0b560b04a557447d48c654cdd9a16c713b1cf80607acccd24642ac070868ae2533c1b7bc9444005924af0d83d783e5f5389d2f53400348d5f5a203bc52d4eadaf334ad50ee1163