DV SSL/TLS Certificate for dunstonedesign.de

Certificate is witin its validity period

Issued by Sectigo Limited (Sectigo RSA Domain Validation Secure Server CA)

About the dunstonedesign.de DV SSL/TLS Certificate

This certificate with serial number 69:ff:86:ba:61:dd:75:fe:ed:56:dd:db:e5:3b:61:8c for dunstonedesign.de was issued on by Sectigo Limited.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for dunstonedesign.de provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Sectigo Limited

Organization: Sectigo Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 69:ff:86:ba:61:dd:75:fe:ed:56:dd:db:e5:3b:61:8c
Serial Number (int): 140895707865955440455437514980363821452
Serial Number Length: 127 bits, 16 octets

Subject Key Identifier: a9:1f:b1:2d:29:98:fb:4a:d6:20:66:17:91:66:79:3d:8e:25:c0:14
Authority Key Identifier: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1

Fingerprint (SHA-1): cd:f4:de:9e:d7:53:8e:e3:d4:c5:13:e4:1c:ad:a9:35:20:90:8f:40
Fingerprint (SHA-256): 0d:40:c9:e5:8f:f9:28:ff:0a:b1:1a:55:0a:a7:9c:d6:00:6c:b1:e9:d2:d9:68:00:17:29:b7:80:52:1b:7e:d9

Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt

Revocation Information

OCSP Server: http://ocsp.sectigo.com

Check the revocation status for certificate dunstonedesign.de
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for dunstonedesign.de

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for dunstonedesign.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ePzk4Gb8YYbRS4W/3vI
Gmd9xCDh88s0rOJOztqTGWjaURdUUAXTdhq7aN1IDu/R40K95YiXuaOufzbyL1cy
dTFLmxJFACZ26yB6C3GItb/x7G8BjgKxoqvw640rYWmGMorrYQuv5Q0q9+Zzuluy
Ox9TJ+Huqjrwu4uoqsKBTFZkx2s9QEkurCiy8T70sEum3Yc29L+6GfF9Fq1BVRnD
JChXH3KEyUgzeO4MOkDymHvzjRNKw47sI5Y9KhFMpLLcqRgO9YPOihjb1YvZIU0L
Y/Thx2/GQY8lzzwRhhVNJQcrmf+AKYE6Gz5hcnrqx8pEKdD6upkEeNHFII3m2e3N
EQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 140895707865955440455437514980363821452
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-24 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2026-01-01 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dunstonedesign.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26496212796993697777594590309625554580753279500646827092011786997580502484800369090395066898186963038603525491105266845473809664447962920450107663192219331399745175084001803416465706751538520261977754686200570815007246579223037402459423004253443933808754033183872294242182476336289895335674018382944291858584453461372421414502412732802539191699467540793721461846429927904712243374562029534552233539643492201235410824222744436710028485704369382574526044063940543680333451709593984804563453846289037488548553908156164626405529277636640261299769039497439092426667428167132622036673508713124698305546082206871566739688721
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a91fb12d2998fb4ad62066179166793d8e25c014
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dunstonedesign.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dunstonedesign.de'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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