radreisen-online.de
Issued by R3
About this certificate
This digital certificate with serial number 04:c1:37:4d:3c:ac:37:c7:a9:4b:0c:d8:b0:69:c8:fb:96:75 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=radreisen-online.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:c1:37:4d:3c:ac:37:c7:a9:4b:0c:d8:b0:69:c8:fb:96:75Serial Number (int): 414197149119997470812460339368095020455541
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: d3:1a:42:06:91:b8:c1:d8:e3:f1:de:4b:c8:83:de:0e:f1:a4:6b:a7
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ac:36:ca:1a:91:b1:92:1d:10:85:f7:74:03:cc:91:98:52:9b:b3:a4
Fingerprint (sha256): 11:45:72:02:12:f3:63:fd:14:2d:36:16:c7:f9:b8:9f:2c:24:97:96:04:a5:87:a8:bb:99:4f:be:62:15:70:e1
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate radreisen-online.de
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for radreisen-online.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
radreisen-online.de
radreisen-online.de.dock5.basispanel.de
radreisen2.f02.itool4.net
www.radreisen-online.de
radreisen-online.de.dock5.basispanel.de
radreisen2.f02.itool4.net
www.radreisen-online.de
Other certificates including the domain name radreisen-online.de
(limited to 100 certificates)
www.radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
www.radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
www.radreisen-online.de
radreisen-online.de
radreisen-online.de
www.radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
www.radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
www.radreisen-online.de
radreisen-online.de
radreisen-online.de
www.radreisen-online.de
radreisen-online.de
radreisen-online.de
radreisen-online.de
Certificate
The complete raw certificate details for radreisen-online.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgISBME3TTysN8epSwzYsGnI+5Z1MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMzEwNDM2MzFaFw0yNDAzMzAwNDM2MzBaMB4xHDAaBgNVBAMT E3JhZHJlaXNlbi1vbmxpbmUuZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDBlUjzS86IBzSjAA5URSA33anC77mE59N4uewOvPVl6+Yv7/L2/Q7DRxhG B+vjZPzLmPPTUuT25nykiNIp97q91mfTkDLYS+E0TxELccx5p3htYtA0Dg81tbof XhLDd6YmwsHjERNsalHFWwvYb0BmVQWVs1BCoXKSxtjX7EuZf4n1mFayWqajuFsx cv7HH7zCfsR6eA9cJTKAWhQaH7FeIkw88/opnXXl4VnIR1Sx6BCcS7/xuqQdZWk9 Pr6f876jxHPanmNi617DmSJETdKt2Y6zs5THRxE+N0mw/1O/+7oTXOt5ivdhT07f Wl9img2Yx/FmNhUek4N4eMrxpRn3AgMBAAGjggJyMIICbjAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAw HQYDVR0OBBYEFNMaQgaRuMHY4/HeS8iD3g7xpGunMB8GA1UdIwQYMBaAFBQusxe3 WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0 cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5j ci5vcmcvMHsGA1UdEQR0MHKCE3JhZHJlaXNlbi1vbmxpbmUuZGWCJ3JhZHJlaXNl bi1vbmxpbmUuZGUuZG9jazUuYmFzaXNwYW5lbC5kZYIZcmFkcmVpc2VuMi5mMDIu aXRvb2w0Lm5ldIIXd3d3LnJhZHJlaXNlbi1vbmxpbmUuZGUwEwYDVR0gBAwwCjAI BgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgA7U3d1Pi25gE6LMFsG /kA7Z9hPw/THvQANLXJv4frUFwAAAYy+X7MXAAAEAwBHMEUCIBTNzuCw6FZ9bGeF irfbD9sPd+PRQssjZyDC/vtBfvCHAiEAhBTsT25OBKov6WB95PP6900hT1teem/1 bMiwryJ0sjQAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYy+ X7ZVAAAEAwBHMEUCIFu3SSTKxGaTMU7jo9GA0S49PvvTTx1YPBggsFaT+aKMAiEA qwqiKRFPUr+fp2WvdPD6ucmUlnVmmruzUM/H4pZpixUwDQYJKoZIhvcNAQELBQAD ggEBAEDl/F4cZbux7mYseIILy6zQcY1JKsK4kW7PEAJv2DkgJom0KJBUNiyPjFMp 7IiYzLGidRKI+uQ5CRM5PhBxinNjzhpvE924VWRRIKR1rkyk7XcgZOwMmL+pNSiF lg3WC/HY7c/8iFyS/zZn5tit8Y9QzPhByeu0m+CfHcsqjvwsrGw7IlXdgEQM7W4A ATsdjG2RxQG1hdbknDgSZggBQArjQhxQFjIhTeyLrlvk0ol6Axc8CARRnYwiWKqV J7znEWUi663KebXy1ofnTM+HSYFqVh89FKNXKL1Y2g7fx95od5oOE38rm6lnjTdC 7vr/NDy32uSG+zLlCezfiu16d/E= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZVI80vOiAc0owAOVEUg N92pwu+5hOfTeLnsDrz1ZevmL+/y9v0Ow0cYRgfr42T8y5jz01Lk9uZ8pIjSKfe6 vdZn05Ay2EvhNE8RC3HMead4bWLQNA4PNbW6H14Sw3emJsLB4xETbGpRxVsL2G9A ZlUFlbNQQqFyksbY1+xLmX+J9ZhWslqmo7hbMXL+xx+8wn7EengPXCUygFoUGh+x XiJMPPP6KZ115eFZyEdUsegQnEu/8bqkHWVpPT6+n/O+o8Rz2p5jYutew5kiRE3S rdmOs7OUx0cRPjdJsP9Tv/u6E1zreYr3YU9O31pfYpoNmMfxZjYVHpODeHjK8aUZ 9wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 414197149119997470812460339368095020455541 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-31 04:36:31 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-30 04:36:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'radreisen-online.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24437608017085349798807071207640470693519276297839135144918285524380173527088972741110493369804283695850009037910265167215134771063682172725562132395805855745881882446158052795315695178987926887978724621869272760843693436257070712803019662177839634962019979970372835457753259476394528594735202207894074260982857793731495100974951299301517609423675705139579356750765852012859044721417585381518552846235721553060353250161254152813259857380853088255000741952948746913844586375192432289183222893160752702617460745790930744081033442900756376416472533460466109800868254500142518733315646308395591029017506501172444008880631 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d31a420691b8c1d8e3f1de4bc883de0ef1a46ba7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'radreisen-online.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'radreisen-online.de.dock5.basispanel.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'radreisen2.f02.itool4.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.radreisen-online.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018cbe5fb3170000040300473045022014cdcee0b0e8567d6c67858ab7db0fdb0f77e3d142cb236720c2fefb417ef0870221008414ec4f6e4e04aa2fe9607de4f3faf74d214f5b5e7a6ff56cc8b0af2274b23400760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018cbe5fb655000004030047304502205bb74924cac46693314ee3a3d180d12e3d3efbd34f1d583c1820b05693f9a28c022100ab0aa229114f52bf9fa765af74f0fab9c9949675669abbb350cfc7e296698b15 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0040e5fc5e1c65bbb1ee662c78820bcbacd0718d492ac2b8916ecf10026fd839202689b4289054362c8f8c5329ec8898ccb1a2751288fae4390913393e10718a7363ce1a6f13ddb855645120a475ae4ca4ed772064ec0c98bfa9352885960dd60bf1d8edcffc885c92ff3667e6d8adf18f50ccf841c9ebb49be09f1dcb2a8efc2cac6c3b2255dd80440ced6e00013b1d8c6d91c501b585d6e49c3812660801400ae3421c501632214dec8bae5be4d2897a03173c0804519d8c2258aa9527bce7116522ebadca79b5f2d687e74ccf8749816a561f3d14a35728bd58da0edfc7de68779a0e137f2b9ba9678d3742eefaff343cb7dae486fb32e509ecdf8aed7a77f1