onlineshop.drk-berlin.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:38:b5:73:c0:f0:84:76:62:11:84:73:9b:b4:e4:66:f5:44 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=onlineshop.drk-berlin.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:38:b5:73:c0:f0:84:76:62:11:84:73:9b:b4:e4:66:f5:44Serial Number (int): 367746147569267739860819794720650202379588
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: ab:c6:47:3b:74:6d:09:67:6d:42:04:dc:c0:a6:a6:ab:bd:02:95:ba
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 71:6e:64:e0:36:ec:08:20:54:bd:63:34:27:d9:20:36:61:7a:65:3f
Fingerprint (sha256): 19:d7:e6:26:1d:6e:d9:da:63:28:3d:87:a9:ee:6d:5d:8f:fe:c5:73:f8:96:a3:78:94:58:1d:e2:7d:d6:8c:3d
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate onlineshop.drk-berlin.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for onlineshop.drk-berlin.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
onlineshop.drk-berlin.de
www.onlineshop.drk-berlin.de
www.onlineshop.drk-berlin.de
Other certificates including the domain name drk-berlin.de
(limited to 100 certificates)
webmail.drk-berlin.de
onlineshop.drk-berlin.de
onlineshop.drk-berlin.de
drk-berlin.de
www.drk-berlin.de
onlineshop.drk-berlin.de
onlineshop.drk-berlin.de
onlineshop.drk-berlin.de
drk-berlin.de
drk-berlin.de
www.drk-berlin.de
mdc.drk-berlin.de
www.drk-berlin.de
onlineshop.drk-berlin.de
www2.drk-berlin.de
drk-berlin.de
drk-berlin.de
onlineshop.drk-berlin.de
drk-berlin.de
umomobile.drk-berlin.de
drk-berlin.de
webmail.drk-berlin.de
webmail.drk-berlin.de
onlineshop.drk-berlin.de
onlineshop.drk-berlin.de
www.drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
onlineshop.drk-berlin.de
webmail.drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
onlineshop.drk-berlin.de
www2.drk-berlin.de
onlineshop.drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
mdc.drk-berlin.de
onlineshop.drk-berlin.de
onlineshop.drk-berlin.de
drk-berlin.de
www.drk-berlin.de
onlineshop.drk-berlin.de
onlineshop.drk-berlin.de
onlineshop.drk-berlin.de
drk-berlin.de
drk-berlin.de
www.drk-berlin.de
mdc.drk-berlin.de
www.drk-berlin.de
onlineshop.drk-berlin.de
www2.drk-berlin.de
drk-berlin.de
drk-berlin.de
onlineshop.drk-berlin.de
drk-berlin.de
umomobile.drk-berlin.de
drk-berlin.de
webmail.drk-berlin.de
webmail.drk-berlin.de
onlineshop.drk-berlin.de
onlineshop.drk-berlin.de
www.drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
onlineshop.drk-berlin.de
webmail.drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
onlineshop.drk-berlin.de
www2.drk-berlin.de
onlineshop.drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
drk-berlin.de
mdc.drk-berlin.de
Certificate
The complete raw certificate details for onlineshop.drk-berlin.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgISBDi1c8DwhHZiEYRzm7TkZvVEMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODEyMDYyMzU1NDFaFw0x OTAzMDYyMzU1NDFaMCMxITAfBgNVBAMTGG9ubGluZXNob3AuZHJrLWJlcmxpbi5k ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALsFVUF7kpLkl4WGRtUb XVGiUUcUXE/jpBPpTyj2DKAPRq7ajO70+qFMHvc68b1zj1si3hUKF27VYRT5LfK4 D9J6LzTi0yN2HvRBJL3uW8QidDQb4DEDZd5Cu+0hB5Dk7hz3cH9wYiQesguTpqUa eVYOrmcMTDtmLapABQRFmLv1H8S8X1zuBQD2msYqg537LSraBmLYhWaafbueXHGq PoNWLtAjNMa1KF9QBlMqriPDiCXocdSgY1SR495nlgzx+j3JO1IV4qcThVWFmnto 6ZD83P/rJBpFX+4NhukyvoKHuWw6KwlYtTwSA8Gx/suJSCO5DsimYeOz9cqo/L3n t5UCAwEAAaOCAoswggKHMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUq8ZHO3RtCWdt QgTcwKamq70ClbowHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYI KwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0 c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0 c2VuY3J5cHQub3JnLzBBBgNVHREEOjA4ghhvbmxpbmVzaG9wLmRyay1iZXJsaW4u ZGWCHHd3dy5vbmxpbmVzaG9wLmRyay1iZXJsaW4uZGUwTAYDVR0gBEUwQzAIBgZn gQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5s ZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdwB0ftqDMa0z EJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWeGKbstAAAEAwBIMEYCIQCGRqar yZcLLwe6zol12zNEwmUJ3SaW6VM03hauZJqNZAIhAMi/kHmEWhdZHmXTVEuOw61m RK1SDUoDz28TDoC0cXggAHUAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH 9HgAAAFnhim7IwAABAMARjBEAiATJzEgBkk988omk5ClWb0UNwYd7F0JsOX1DgsD yI2gmQIgRlyTpHwf0rs/2f30eDzA1prYot7/5/bU3mVEe0lh+gkwDQYJKoZIhvcN AQELBQADggEBAHRdxf9DKuFpaSLBnZcmfzMoIMdf+wx1htOgk2BmlsWqOUbfsAWa scIOn/Q77QFoMyvcJpA3Gw5IXY3p8N3jpi/nJwtzy9+cv6c2SCmn96GMf7RTa40F AHz18N4NJzWr0x3C/u2XSz7siHbzkeZT1PU8WjIujnR7IAT0+Nxr6/Bo7n78B/dD HqRFsYHXjh27Mo4eqyUKcf3KB7jtCNG5S82oOhIc/1MU745jxXn760l5Hzn1dNIm 3D3Cq1LaIvUuernEMV9+LcZW8Jn8A8tdW1phU07llCRtpMtWLy68KIaJ97mam1CM HTLJOSI9owekTtknpIdLDaMjiWS9VNNUDLc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwVVQXuSkuSXhYZG1Rtd UaJRRxRcT+OkE+lPKPYMoA9GrtqM7vT6oUwe9zrxvXOPWyLeFQoXbtVhFPkt8rgP 0novNOLTI3Ye9EEkve5bxCJ0NBvgMQNl3kK77SEHkOTuHPdwf3BiJB6yC5OmpRp5 Vg6uZwxMO2YtqkAFBEWYu/UfxLxfXO4FAPaaxiqDnfstKtoGYtiFZpp9u55ccao+ g1Yu0CM0xrUoX1AGUyquI8OIJehx1KBjVJHj3meWDPH6Pck7UhXipxOFVYWae2jp kPzc/+skGkVf7g2G6TK+goe5bDorCVi1PBIDwbH+y4lII7kOyKZh47P1yqj8vee3 lQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 367746147569267739860819794720650202379588 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-06 23:55:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-06 23:55:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'onlineshop.drk-berlin.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23609192843975901507552452228305332674438129495153991974260315185537060753356110955011867967053151759812112256049515454129619121844801054592706676885322587390646213792224086369743210591042869960339540846997672123507984775093363563816596406943156867075018364520847839625752453798930842591011619549843046478097202569532796253814672158293876647636782973151029409252220065019534407087683406931253183342641999466283384850332257934805666585775617763303239740532023018659901894772209372239357701367192700084329199651602334813755609422415870980159934629027389861471582320628168211943252321449480907544637746437960262908098453 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) abc6473b746d09676d4204dcc0a6a6abbd0295ba . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'onlineshop.drk-berlin.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.onlineshop.drk-berlin.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc56000001678629bb2d00000403004830460221008646a6abc9970b2f07bace8975db3344c26509dd2696e95334de16ae649a8d64022100c8bf9079845a17591e65d3544b8ec3ad6644ad520d4a03cf6f130e80b4717820007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f478000001678629bb23000004030046304402201327312006493df3ca269390a559bd1437061dec5d09b0e5f50e0b03c88da0990220465c93a47c1fd2bb3fd9fdf4783cc0d69ad8a2deffe7f6d4de65447b4961fa09 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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