www.lorenz-snackworld.de
Issued by RapidSSL SHA256 CA - G2
About this certificate
This digital certificate with serial number 07:f7:18:70:77:a3:ea:75:3f:80:91:2b:b8:c1:34:88 was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.lorenz-snackworld.de
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:f7:18:70:77:a3:ea:75:3f:80:91:2b:b8:c1:34:88Serial Number (int): 10587588982964081046208779919334388872
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 4c:f4:bf:e8:3b:be:c2:24:f3:1b:47:3b:b5:6e:48:8e:16:ab:af:12
Fingerprint (sha1): cc:c0:21:07:15:52:9a:b5:a7:61:ce:12:69:e1:2b:7d:84:10:b4:2c
Fingerprint (sha256): 16:62:4b:ef:4b:bf:2b:fc:50:d2:1c:e4:7e:06:1d:f0:01:8e:01:6a:05:8d:8b:05:89:03:aa:b6:d3:5d:2a:e7
Issuing Certificate URL: http://gs.symcb.com/gs.crt
Revocation information
OCSP Server: http://gs.symcd.comCRL Distribution Point: http://gs.symcb.com/gs.crl
Check the revocation status for certificate www.lorenz-snackworld.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.lorenz-snackworld.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
Other certificates including the domain name lorenz-snackworld.de
(limited to 100 certificates)
lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
sni.cloudflaressl.com
www.lorenz-snackworld.de
lorenz-snackworld.de
www.lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
www.lorenz-snackworld.de
lorenz-snackworld.de
www.lorenz-snackworld.de
www.lorenz-snackworld.de
www.lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
www.lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
bettersnack-betterworld.com
lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
sni.cloudflaressl.com
www.lorenz-snackworld.de
lorenz-snackworld.de
www.lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
www.lorenz-snackworld.de
lorenz-snackworld.de
www.lorenz-snackworld.de
www.lorenz-snackworld.de
www.lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
www.lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
bettersnack-betterworld.com
lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
Certificate
The complete raw certificate details for www.lorenz-snackworld.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgIQB/cYcHej6nU/gJEruME0iDANBgkqhkiG9w0BAQsFADBH MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEgMB4GA1UEAxMX UmFwaWRTU0wgU0hBMjU2IENBIC0gRzIwHhcNMTYxMTMwMDAwMDAwWhcNMTgwMTI5 MjM1OTU5WjAjMSEwHwYDVQQDDBh3d3cubG9yZW56LXNuYWNrd29ybGQuZGUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6EF9G02B9/d+H14aXZQEqaxRS o1xAqGMzv/qUapv8mbPywzE3Jx9sMBv2kCeImO7K63TalsSRRXRQGX915Fh8hhS9 kpdwmPM+1Cup9q2GxNA0p9SuHyIHOBCalpQKDE+y5AWF7XEwxs5qD+FeMSO7qy38 e1q+y78eGzzJX688RMQAWSbXm8rtAZULELXW2vIeKyeDzTGL6+RRvkX4P2wczY1k hDYn3BAdJLzjSonMEIGp6EHvE0C5BgR5jzgo8QLHGyuGQQZMaBhFaA+pm1Bfk4hI yOQMeBQghNAl9seEkXlqYXr19B1ODv2AEho26G809Fti0H2kDziCcgC9VGhTAgMB AAGjggKaMIICljA5BgNVHREEMjAwghh3d3cubG9yZW56LXNuYWNrd29ybGQuZGWC FGxvcmVuei1zbmFja3dvcmxkLmRlMAkGA1UdEwQCMAAwKwYDVR0fBCQwIjAgoB6g HIYaaHR0cDovL2dzLnN5bWNiLmNvbS9ncy5jcmwwbwYDVR0gBGgwZjBkBgZngQwB AgEwWjAqBggrBgEFBQcCARYeaHR0cHM6Ly93d3cucmFwaWRzc2wuY29tL2xlZ2Fs MCwGCCsGAQUFBwICMCAMHmh0dHBzOi8vd3d3LnJhcGlkc3NsLmNvbS9sZWdhbDAf BgNVHSMEGDAWgBRM9L/oO77CJPMbRzu1bkiOFquvEjAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMFcGCCsGAQUFBwEBBEswSTAf BggrBgEFBQcwAYYTaHR0cDovL2dzLnN5bWNkLmNvbTAmBggrBgEFBQcwAoYaaHR0 cDovL2dzLnN5bWNiLmNvbS9ncy5jcnQwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEA dgDd6x0reg1PpiCLga2BaHB+Lo6dAdVciI09EcTNtuy+zAAAAVi02qkeAAAEAwBH MEUCIAhroKFi+vgNDI/r2MDirkpZCaOPXvvsX8CW+RyXwN4fAiEA/oSuaxNGupg9 liyAiVPN1tXVO0jAQiKKReAYx+ULo3AAdwDuS723dc5guuFCaR+r4Z5mow9+X7By 2IMAxHuJeqj9ywAAAVi02qlhAAAEAwBIMEYCIQCE0nJoRhRd0g788ekiFpwKJxdj 0Z/3PsVqVLRiOOcoAwIhANb9U6cbxnzT9jyXuRz/Qxdug0lffRd1pf5rMJqCFoXc MA0GCSqGSIb3DQEBCwUAA4IBAQB1aVZJtn8Dcz2VCROWjBdl8L52E5xIkgPJxMyt Aul2tLUZZrYtxZaD2FRMt2bVFPDtP7PFqMDc9O608OdPCMnDU4nlnQaBUmp7f+LR GGhHPo4+ZHtgxGRpKu8wzq0tvp2FZtTbHDtgUYuMgV/q87+zWpmoOfkF4BNzIgZs RsrHeY0XMIY2azsn7xUOnjvmljJOtJ5khmfqgOXXxdiWx/ZHDl6kNibWM3l67Dgt mH790vntDJJ6ZXUK+eiuYhRbpPSVEAcVVAlTagmV2vse2dDnIatP9OLf5Q9aLEg0 X3n1b8t4upHIKEw1xMN16MWLsFgVdaF3ZQA0bWpj1UE98GOu -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhBfRtNgff3fh9eGl2UB KmsUUqNcQKhjM7/6lGqb/Jmz8sMxNycfbDAb9pAniJjuyut02pbEkUV0UBl/deRY fIYUvZKXcJjzPtQrqfathsTQNKfUrh8iBzgQmpaUCgxPsuQFhe1xMMbOag/hXjEj u6st/Htavsu/Hhs8yV+vPETEAFkm15vK7QGVCxC11tryHisng80xi+vkUb5F+D9s HM2NZIQ2J9wQHSS840qJzBCBqehB7xNAuQYEeY84KPECxxsrhkEGTGgYRWgPqZtQ X5OISMjkDHgUIITQJfbHhJF5amF69fQdTg79gBIaNuhvNPRbYtB9pA84gnIAvVRo UwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10587588982964081046208779919334388872 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-11-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-01-29 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.lorenz-snackworld.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23488398143815729488672151161419005272816666436003305748179524720342890585107532972941725558887112701964117669403474294770672015402488783118192753979243146139267206187362021934710055352738585329616473397941559364955840032314623926392945036798628687857558064753532874631512228453593878053530168480892945539248006541930038497580879642954651281398590473593277123443711502267132780243207800496137943622486973701981461971333568016380776936488417919956481663273988754385912475921587677972051897122062575144177513063712101185781816370209696427947516148914355941282700171987695352543315111347951551474897803425814346745538643 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lorenz-snackworld.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lorenz-snackworld.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gs.symcb.com/gs.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 4cf4bfe83bbec224f31b473bb56e488e16abaf12 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gs.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gs.symcb.com/gs.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc00000158b4daa91e00000403004730450220086ba0a162faf80d0c8febd8c0e2ae4a5909a38f5efbec5fc096f91c97c0de1f022100fe84ae6b1346ba983d962c808953cdd6d5d53b48c042228a45e018c7e50ba370007700ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb00000158b4daa961000004030048304602210084d2726846145dd20efcf1e922169c0a271763d19ff73ec56a54b46238e72803022100d6fd53a71bc67cd3f63c97b91cff43176e83495f7d1775a5fe6b309a821685dc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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