www.thomas-metz.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:bf:f7:d5:8c:2f:39:83:a3:e2:17:85:4d:fe:48:f3:21:19 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.thomas-metz.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:bf:f7:d5:8c:2f:39:83:a3:e2:17:85:4d:fe:48:f3:21:19Serial Number (int): 413772503926408843185055130489056534929689
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a9:d5:a3:26:f7:6e:f1:c1:44:6a:46:10:8a:bb:0d:25:33:ff:da:cd
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e9:59:c0:97:81:c5:fe:99:1f:c0:ad:d1:90:cd:14:32:92:f1:7b:dc
Fingerprint (sha256): 0c:1e:7d:6e:01:cc:42:b3:d4:b8:15:76:6f:e6:b3:3c:4f:18:8e:28:01:3f:b6:5c:36:89:5a:f1:7c:f6:90:89
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.thomas-metz.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.thomas-metz.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.thomas-metz.de
Other certificates including the domain name thomas-metz.de
(limited to 100 certificates)
www.thomas-metz.de
gasthaus-peschta.at
www.thomas-metz.de
bczyxuhviucelrq.fantastic3.de
pwg.wot-clan.de
thomas-metz.de
www.pimpleeeze.com
www.thomas-metz.de
thomas-metz.de
www.thomas-metz.de
www.thomas-metz.de
www.thomas-metz.de
cs-test.notar-liessem.de
zimmermanneditorial.lima-city.de
secure.wiesi1.de
secure.wiesi1.de
thomas-metz.de
www.galaktika.lima-city.de
www.karimrammer.lima-city.de
projekttage-gold.de.cool
bc5f-8c683af5d5c2.lima-city.net
emm-elektroantriebe.de
www.thomas-metz.de
www.thomas-metz.de
hr.jaegerhof-schneider.at
www.thomas-metz.de
dlc.loox.tools
www.thomas-metz.de
www.thomas-metz.de
*.kovro.de
huettelbeach.at
*.jenisch-net.de
magicmoonshadow.de
*.mantrailing-berlin.net
www.thomas-metz.de
simeon-trefoil.de
thomas-metz.de
wallig.lima-city.de
motorradhandel-schramm.de
www.thomas-metz.de
thomas-metz.de
gasthaus-peschta.at
www.thomas-metz.de
bczyxuhviucelrq.fantastic3.de
pwg.wot-clan.de
thomas-metz.de
www.pimpleeeze.com
www.thomas-metz.de
thomas-metz.de
www.thomas-metz.de
www.thomas-metz.de
www.thomas-metz.de
cs-test.notar-liessem.de
zimmermanneditorial.lima-city.de
secure.wiesi1.de
secure.wiesi1.de
thomas-metz.de
www.galaktika.lima-city.de
www.karimrammer.lima-city.de
projekttage-gold.de.cool
bc5f-8c683af5d5c2.lima-city.net
emm-elektroantriebe.de
www.thomas-metz.de
www.thomas-metz.de
hr.jaegerhof-schneider.at
www.thomas-metz.de
dlc.loox.tools
www.thomas-metz.de
www.thomas-metz.de
*.kovro.de
huettelbeach.at
*.jenisch-net.de
magicmoonshadow.de
*.mantrailing-berlin.net
www.thomas-metz.de
simeon-trefoil.de
thomas-metz.de
wallig.lima-city.de
motorradhandel-schramm.de
www.thomas-metz.de
thomas-metz.de
Certificate
The complete raw certificate details for www.thomas-metz.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgISBL/31YwvOYOj4heFTf5I8yEZMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAxMzAxMjU0MjBaFw0x OTA0MzAxMjU0MjBaMB0xGzAZBgNVBAMTEnd3dy50aG9tYXMtbWV0ei5kZTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANpaFvLNAx9eyzqrrK8CwnZe+Uod cqcu/Z58EQ5DZlIDcVbuG4vrnx9Vahr9M9RCdjQB6MFeuiXAFrbmgugwKe5KzngT fV5sfMviRFahuSZUqTRAUSAs5fVP7kxvaEEZ16Fxneqd//eStAqkN6Y1lepS8bPb vcGaRxYaL28/fg6dyO9yOgaVcOyZ3dwj4B+Dw6sTObwcSu3uWr+tCzRl4upaMDq1 KL6f7hdr4ig6DUquC9+oer7sJo9jU9jUHYCNOC/1N0wCRxzfMfU2EkQRBallVjup wHHZvlMkZbD2K1L6IZyMrOytiu70FXgzlId0y8QdvicSss+yAz2pRr+nwCMCAwEA AaOCAmYwggJiMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUqdWjJvdu8cFEakYQirsN JTP/2s0wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUH AQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5 cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5 cHQub3JnLzAdBgNVHREEFjAUghJ3d3cudGhvbWFzLW1ldHouZGUwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdgDi aUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWifCgS2AAAEAwBHMEUC IATj5AeXD6x88603e/FNbtTg6nDQnMH87yE2rR6dPPn/AiEAz8Uf+3lQI9cTCDKH nMWeZW4TmdigM7NlXGvreVQOImoAdQApPFGWVMg5ZbqqUPxYB9S3b79Yeily3KTD DPTlRUf0eAAAAWifCgS5AAAEAwBGMEQCICLFt/dzJvOXqGjEG/VxtVnwdHwi06n/ t6X94Ua22ATxAiBIOuy1ipD/HxpPI6YfwEOTqPoo5+97A3VRxTYg6kaM3jANBgkq hkiG9w0BAQsFAAOCAQEAGfWGzSfXzPxoZwJ/iPPMdUNuVCbD3/eEBzKPBoQqd6N2 EDt58BNYoF5GFio0k98ISmMmb34IgGp7+cslHpxkLASspFow6mK4nwZNpEE+WUS+ DH39oFbhO4P4iZSW4i6qQnYSBEFFROCzaEuYxyw2axKaA2xND+omvtEqz+ony5bB cvEMphGv/ADrFRH/Nva0IzBx9q5/Do8bJbVocZxVGeRyKof9nIU9ES33uWBxcB1c OYdBycowQ2VEa74B9QSWy11Ys9kAWfoz6+L0b1fbE3OmCUzI2tUM0a+mpXQA31DA qLVRTk0kjd4O9nEAVGho4BvpIotoh5jCbnFhgLb7cg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2loW8s0DH17LOqusrwLC dl75Sh1ypy79nnwRDkNmUgNxVu4bi+ufH1VqGv0z1EJ2NAHowV66JcAWtuaC6DAp 7krOeBN9Xmx8y+JEVqG5JlSpNEBRICzl9U/uTG9oQRnXoXGd6p3/95K0CqQ3pjWV 6lLxs9u9wZpHFhovbz9+Dp3I73I6BpVw7Jnd3CPgH4PDqxM5vBxK7e5av60LNGXi 6lowOrUovp/uF2viKDoNSq4L36h6vuwmj2NT2NQdgI04L/U3TAJHHN8x9TYSRBEF qWVWO6nAcdm+UyRlsPYrUvohnIys7K2K7vQVeDOUh3TLxB2+JxKyz7IDPalGv6fA IwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 413772503926408843185055130489056534929689 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-30 12:54:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-30 12:54:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.thomas-metz.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27564375340979050439037467682168590770067988823255678570418767103912729084069581306363178762658958832572358201261129964157954197139592182253352796872794585479109134997973486956870105590510088428601686224511626411935222196431559940256782883109275799536227256632645027524604523423962331605865494435487786037882632941564241037949476154075110767150595204924477466874447782758698292471168416788753158517950506114795175657377577344908735603549227214003304764393732280751120275953110414716220869537431735250862974727224751198419704375574883031821208168026804871046061186429770220045592267455671729544040556452933171621117987 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a9d5a326f76ef1c1446a46108abb0d2533ffdacd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thomas-metz.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe000001689f0a04b60000040300473045022004e3e407970fac7cf3ad377bf14d6ed4e0ea70d09cc1fcef2136ad1e9d3cf9ff022100cfc51ffb795023d7130832879cc59e656e1399d8a033b3655c6beb79540e226a007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f478000001689f0a04b90000040300463044022022c5b7f77326f397a868c41bf571b559f0747c22d3a9ffb7a5fde146b6d804f10220483aecb58a90ff1f1a4f23a61fc04393a8fa28e7ef7b037551c53620ea468cde . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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