*.freiheit.org

Issued by GeoTrust SHA256 SSL CA

About this certificate


This digital certificate with serial number 3e:8f:9d:fd:34:91:c5:03:cf:58:ba:db:57:38:c1:a3 was issued on by GeoTrust Inc. .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

Friedrich-Naumann-Stiftung fuer die Freiheit

Organization: Friedrich-Naumann-Stiftung fuer die Freiheit
State / Province: Brandenburg
Locality: Potsdam
Country: DE

GeoTrust Inc.

Organization: GeoTrust Inc.
State / Province: Brandenburg
Locality: Potsdam
Country: DE

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 3e:8f:9d:fd:34:91:c5:03:cf:58:ba:db:57:38:c1:a3
Serial Number (int): 83157838588737599023082189157813502371
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId:
AuthorityKeyId: 14:67:8e:ed:83:4f:d6:1e:9d:40:04:0c:04:46:a1:70:34:b2:0f:72

Fingerprint (sha1): 6b:1d:53:d4:3e:b8:2a:a7:0b:ce:5f:8f:b4:41:b8:0b:54:35:d0:c3
Fingerprint (sha256): 4c:a9:36:80:3f:5a:13:fc:a0:93:21:04:4b:c7:2a:0c:25:1e:56:89:87:c3:c4:6f:a5:a1:8c:b8:6f:4a:30:4b

Issuing Certificate URL: http://gj.symcb.com/gj.crt

Revocation information

OCSP Server: http://gj.symcd.com
CRL Distribution Point: http://gj.symcb.com/gj.crl

Check the revocation status for the current certificate on *.freiheit.org
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

*.freiheit.org
freiheit.org

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIQPo+d/TSRxQPPWLrbVzjBozANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEfMB0GA1UEAxMW R2VvVHJ1c3QgU0hBMjU2IFNTTCBDQTAeFw0xNTA0MDkwMDAwMDBaFw0xODA0MDgy MzU5NTlaMIGFMQswCQYDVQQGEwJERTEUMBIGA1UECAwLQnJhbmRlbmJ1cmcxEDAO BgNVBAcMB1BvdHNkYW0xNTAzBgNVBAoMLEZyaWVkcmljaC1OYXVtYW5uLVN0aWZ0 dW5nIGZ1ZXIgZGllIEZyZWloZWl0MRcwFQYDVQQDDA4qLmZyZWloZWl0Lm9yZzCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMgLmvlm1IZ0CoHAj1YLmAt7 FiUgUKS4RSggOZpPfFCDzYDOYd9+LQI16qr7JlIa1BI5rvbCLPfuDM5GSDNc1+Hg jig/ZD/BoZ/fN+qyBxY4s2A0YmYBRx4TX5bpkvw+5ffXINCQazwFk78sgQiSg3Bb CMXfgewqmeOIc75hUB+8s39fb7JntUNDAF2CxIakn/E5p+o6AFBiaQEKTRsDj60f 7fi2CeRa5O7fNBFzrth43DnTA9U98vFz8kx647Hdh0M2K4pGnMrMNmSSQk8Pmohk ynEO0pv7UzySrqXem9vEs8nv/nyanIDwzcRigZKmv8HWPRz3Zdr6Sn2Si/mkFtUC AwEAAaOCAa4wggGqMCcGA1UdEQQgMB6CDiouZnJlaWhlaXQub3JnggxmcmVpaGVp dC5vcmcwCQYDVR0TBAIwADAOBgNVHQ8BAf8EBAMCBaAwKwYDVR0fBCQwIjAgoB6g HIYaaHR0cDovL2dqLnN5bWNiLmNvbS9nai5jcmwwgZ0GA1UdIASBlTCBkjCBjwYG Z4EMAQICMIGEMD8GCCsGAQUFBwIBFjNodHRwczovL3d3dy5nZW90cnVzdC5jb20v cmVzb3VyY2VzL3JlcG9zaXRvcnkvbGVnYWwwQQYIKwYBBQUHAgIwNQwzaHR0cHM6 Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNlcy9yZXBvc2l0b3J5L2xlZ2FsMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAfBgNVHSMEGDAWgBQUZ47tg0/W Hp1ABAwERqFwNLIPcjBXBggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6 Ly9nai5zeW1jZC5jb20wJgYIKwYBBQUHMAKGGmh0dHA6Ly9nai5zeW1jYi5jb20v Z2ouY3J0MA0GCSqGSIb3DQEBCwUAA4IBAQAVDBEGI5rc5dHtnHp9bF0+qEGD8X7N MAZ3y/PHXyfvhRib6URgSKFE4KG1xI0UGA0TuEtinnYM+NwtUOyMhK3oIL/cyLZx ilYEkzqAFEfQ2oc+ZLBfYb1Wmx3XI2v5IzKgXJzXNDOu5WifDntfqA7S8NmZY1Nf zkM+Nx660oj9FFbNXjk9L7/XKCsVM+a/6xKe63moz+nVCejjhPCDaYmC+vxb7U7q qYdiep91uN4Ye5zYq/jdNxUJmpSMEb7IThW2kTTWoAboM3AwMqo/nuDILoTvItB9 SXS+BzZ9JnFst4a1XjUFsCYpY1NhNtPYQR3Y5cp51gNzbvCQgc59K6Ot -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyAua+WbUhnQKgcCPVguY C3sWJSBQpLhFKCA5mk98UIPNgM5h334tAjXqqvsmUhrUEjmu9sIs9+4MzkZIM1zX 4eCOKD9kP8Ghn9836rIHFjizYDRiZgFHHhNflumS/D7l99cg0JBrPAWTvyyBCJKD cFsIxd+B7CqZ44hzvmFQH7yzf19vsme1Q0MAXYLEhqSf8Tmn6joAUGJpAQpNGwOP rR/t+LYJ5Frk7t80EXOu2HjcOdMD1T3y8XPyTHrjsd2HQzYrikacysw2ZJJCTw+a iGTKcQ7Sm/tTPJKupd6b28Szye/+fJqcgPDNxGKBkqa/wdY9HPdl2vpKfZKL+aQW 1QIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 83157838588737599023082189157813502371 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SHA256 SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-04-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-08 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Brandenburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Potsdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Friedrich-Naumann-Stiftung fuer die Freiheit' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.freiheit.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25253383813498307174647495150212723653912178526615953378977205892520727602463418077164356548679545201521519499528731820166650434157918960904128294295493825318685961191577982691150725079287928964909379170792892932756117913771095338866844530316357334969694258928727966950093755577855862933495337237355621043585924405604624069404921210189162121726413909211366450012271218644379823896805042097091197400151132241464542538274961700559195947171210899404061093828218895795878296622223750769408744584048089697484781894342812014252543336999807476421434473483667960602718932611870305064357185500706621096151518582463919577896661 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.freiheit.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'freiheit.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gj.symcb.com/gj.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 14678eed834fd61e9d40040c0446a17034b20f72 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gj.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gj.symcb.com/gj.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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