www.dampf-guhl.net
Issued by STRATO SSL - G2
About this certificate
This digital certificate with serial number 03:ba was issued on by STRATO AG.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.dampf-guhl.net,OU=GT87482148+OU=STRATO SSL+OU=Domain Control Validated
STRATO AG
Organization:
STRATO AG
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
DE
This certificate has expire since
Certificate Details
Serial Number (hex): 03:baSerial Number (int): 954
Serial Number lenght: 10 bits, 2 octets
SubjectKeyId:
AuthorityKeyId: 0f:fb:84:42:71:6f:32:aa:27:fa:07:44:49:2a:ad:68:33:63:02:12
Fingerprint (sha1): ea:9b:0c:91:91:46:88:52:e6:93:c7:12:ed:ca:be:da:4f:1b:72:3d
Fingerprint (sha256): 14:3b:26:16:e9:30:70:ec:3b:8d:a7:a1:ab:7d:58:4d:53:ce:bc:19:8e:f8:97:e6:95:79:a3:07:47:69:89:83
Issuing Certificate URL: http://strato-aia.digitalcertvalidation.com/stratog2.crt
Revocation information
OCSP Server: http://strato-ocsp.digitalcertvalidation.comCRL Distribution Point: http://strato-crl.digitalcertvalidation.com/crls/stratog2.crl
Check the revocation status for certificate www.dampf-guhl.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.dampf-guhl.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.dampf-guhl.net
dampf-guhl.net
dampf-guhl.net
Other certificates including the domain name dampf-guhl.net
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.dampf-guhl.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgICA7owDQYJKoZIhvcNAQELBQAwWjELMAkGA1UEBhMCREUx EjAQBgNVBAoTCVNUUkFUTyBBRzEdMBsGA1UECxMURG9tYWluIFZhbGlkYXRlZCBT U0wxGDAWBgNVBAMTD1NUUkFUTyBTU0wgLSBHMjAeFw0xNTAyMDYwODQ2NDJaFw0x NjAyMDgyMjEyNTVaMGoxEzARBgNVBAsTCkdUODc0ODIxNDgxEzARBgNVBAsTClNU UkFUTyBTU0wxITAfBgNVBAsTGERvbWFpbiBDb250cm9sIFZhbGlkYXRlZDEbMBkG A1UEAxMSd3d3LmRhbXBmLWd1aGwubmV0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAtCjyliVqAK9mANsNdbu+WwZVIcilLE3HuhCElw9nn8+LgIDQ7s8P YIAkaCXbZ6dBDk5IaiirWEF4Hxxxqcn+YPADaeNeyvKYSmW9owXdLBFO8SIdCsgB jNcXndqnnDS3P91+0eDkOT7TgRYSzvdPIPJb28gD1ygpGIegMJQcBnefbL241eKh QaMhYPk8wLUu1YEz7/vdHnfgtUPdD0d3G6YmLD9pvlYhHk7h2xcD3hiObAgDo4rY Uesz1mxcXpEqomMUvA4aL5BOM/Sc3vVJuS+/f96Ko9hArCUErxGEn71dg0jALVmD PFWs0q6vCoteIWI3t0/D7Gf7tAyMKYCaSQIDAQABo4IB0DCCAcwwHwYDVR0jBBgw FoAUD/uEQnFvMqon+gdESSqtaDNjAhIwgZAGCCsGAQUFBwEBBIGDMIGAMDgGCCsG AQUFBzABhixodHRwOi8vc3RyYXRvLW9jc3AuZGlnaXRhbGNlcnR2YWxpZGF0aW9u LmNvbTBEBggrBgEFBQcwAoY4aHR0cDovL3N0cmF0by1haWEuZGlnaXRhbGNlcnR2 YWxpZGF0aW9uLmNvbS9zdHJhdG9nMi5jcnQwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAtBgNVHREEJjAkghJ3d3cuZGFtcGYt Z3VobC5uZXSCDmRhbXBmLWd1aGwubmV0ME4GA1UdHwRHMEUwQ6BBoD+GPWh0dHA6 Ly9zdHJhdG8tY3JsLmRpZ2l0YWxjZXJ0dmFsaWRhdGlvbi5jb20vY3Jscy9zdHJh dG9nMi5jcmwwDAYDVR0TAQH/BAIwADBaBgNVHSAEUzBRME8GCmCGSAGG+EUBBzYw QTA/BggrBgEFBQcCARYzaHR0cHM6Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNl cy9yZXBvc2l0b3J5L2xlZ2FsMA0GCSqGSIb3DQEBCwUAA4IBAQB58IKANTHZOuAV EMdgoON0msld3BzM8qNtTg4DAUt4Jkm5Sszk+uctF/FVpuHZ77XRjxF8+37W2gtm Olx7EcZug9Tyw0LaN5gM/Yf/q5QWOxT0fyM+iERkibUdz9ygfrS50NSOIClBjiT9 MKiQ6ocJhEJCaxf/64bTkmK3X7/d+XuM7shc86Hc6lKRJCVvPTraW/BeN1zgHnde gYsvqAuXy1g4x0xF6ckf0+9x+XzJ4LCF5h4fN9CQ/dXLJweCuK2Bpj/eevhfBCI/ CHvJcqGd3wg3+JfE/X6Tm9RR+jYwVU0tm4fXUA4cwbngYUsVPHksnmMpyFf99AVj jAOymryv -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCjyliVqAK9mANsNdbu+ WwZVIcilLE3HuhCElw9nn8+LgIDQ7s8PYIAkaCXbZ6dBDk5IaiirWEF4Hxxxqcn+ YPADaeNeyvKYSmW9owXdLBFO8SIdCsgBjNcXndqnnDS3P91+0eDkOT7TgRYSzvdP IPJb28gD1ygpGIegMJQcBnefbL241eKhQaMhYPk8wLUu1YEz7/vdHnfgtUPdD0d3 G6YmLD9pvlYhHk7h2xcD3hiObAgDo4rYUesz1mxcXpEqomMUvA4aL5BOM/Sc3vVJ uS+/f96Ko9hArCUErxGEn71dg0jALVmDPFWs0q6vCoteIWI3t0/D7Gf7tAyMKYCa SQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 954 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'STRATO AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'STRATO SSL - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-02-06 08:46:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-02-08 22:12:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT87482148' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'STRATO SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.dampf-guhl.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22743086909767011719270344100775329029110700586087036102096063091078718623846606439595135374363314483129389810884169145038157794275450735139271503699130377913126896398156546534798623683383797328411258740355358607580974928543511739275659720803475757440656668328131246075108266221433773237493453999042750334295479399884581691141475593407860256383930260882498980042419035663487696724949275725418618286506748578222888790104007001757045097259712721300346073426964827813358681181992983970948813180658395414211192089816679014928832020454980679090617503063798302141793086121203959498508817815505295846934122086029691770149449 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0ffb8442716f32aa27fa0744492aad6833630212 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (131 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://strato-ocsp.digitalcertvalidation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://strato-aia.digitalcertvalidation.com/stratog2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dampf-guhl.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dampf-guhl.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (71 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://strato-crl.digitalcertvalidation.com/crls/stratog2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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