ess.bertelsmann.de
- arvato systems GmbH -
Issued by Thawte SSL CA
About this certificate
This digital certificate with serial number 4f:f6:01:59:02:12:3e:48:b2:7b:48:f5:39:e1:f2:e5 was issued on by Thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
arvato systems GmbH
Organization:
arvato systems GmbH
State / Province:
Nordrhein-Westfalen
Locality: Guetersloh
Country: DE
Locality: Guetersloh
Country: DE
Thawte, Inc.
Organization:
Thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 4f:f6:01:59:02:12:3e:48:b2:7b:48:f5:39:e1:f2:e5Serial Number (int): 106286344028565013789359947698445349605
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId:
Fingerprint (sha1): c5:40:60:51:16:b7:6a:ce:b8:09:9f:ec:93:4e:c9:2f:c3:d6:a8:30
Fingerprint (sha256): 1c:b6:ad:ab:50:9a:3c:a1:6a:16:bd:cc:00:ac:ba:f1:af:d8:8d:a5:3b:8f:c8:8b:ac:58:ec:ad:9e:df:ee:4d
Revocation information
OCSP Server: http://ocsp.thawte.comCRL Distribution Point: http://svr-ov-crl.thawte.com/ThawteOV.crl
Check the revocation status for certificate ess.bertelsmann.de
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ess.bertelsmann.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Extended Key Usages
Server Authentication
Client Authentication
Extensions
4 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name bertelsmann.de
(limited to 100 certificates)
tts-eu.inrix.com
betravel.bertelsmann.de
www.haussortimente.bertelsmann.de
pp1.bertelsmann.de
cc.secureconnect.bertelsmann.de
api.qa.live.bertelsmann.de
owasemea.bertelsmann.de
greetings.bertelsmann.de
itsasqas.bertelsmann.de
www.haussortimente.bertelsmann.de
devccgtlp02.vc.bertelsmann.de
jp5.bertelsmann.de
csacie.bertelsmann.de
www.elettershop.de
benet.bertelsmann.de
betradecompliance.bertelsmann.de
ias.bertelsmann.de
pp5.bertelsmann.de
degtluv8626-repos.bertelsmann.de
*.bertelsmann.de
pp5-test.bertelsmann.de
www.bertelsmann.de
benet.bertelsmann.de
seratio3.bertelsmann.de
ess.bertelsmann.de
hotelrates.bertelsmann.de
esszeit.bertelsmann.de
*.bertelsmann.de
cp5-int.bertelsmann.de
fragobert.bertelsmann.de
www2.gitta.bertelsmann.de
directnet.bertelsmann.de
autodiscover.bertelsmann.de
seratio4.bertelsmann.de
grc-training.bertelsmann.de
www.haussortimente.bertelsmann.de
gp1.bertelsmann.de
*.benet.bertelsmann.com
betradecompliance.bertelsmann.de
itsasprd.bertelsmann.de
alumni.bertelsmann.com
*.bertelsmann.de
bop.bertelsmann.de
sp5.bertelsmann.de
*.bertelsmann.de
jobsearch.createyourowncareer.de
pp5-int.bertelsmann.de
gitta.test.bertelsmann.de
bstportal.bertelsmann.de
securelogin.bertelsmann.de
sl2.bertelsmann.de
wp1-test.bertelsmann.de
storefront2.bertelsmann.de
guest.bertelsmann.de
besuchen.bertelsmann.de
mietwagenservice.bertelsmann.de
www.haussortimente.bertelsmann.de
vas.bertelsmann.de
lc-service.bertelsmann.de
clm-int.bertelsmann.de
jppess.bertelsmann.de
ess.bertelsmann.de
sni2878bgl.wpc.edgecastcdn.net
greetings.bertelsmann.de
grc-int.bertelsmann.de
service.bertelsmann.de
*.bertelsmann.de
securelogin.bertelsmann.de
imp-test.bertelsmann.de
gitta.test.bertelsmann.de
www2.gitta.bertelsmann.de
fragobert.bertelsmann.de
vas.bertelsmann.de
imp-test.bertelsmann.de
peoplenet.bertelsmann.de
seratio4.bertelsmann.de
ess.bertelsmann.de
www.haussortimente.bertelsmann.de
deac.bertelsmann.de
b-share-qa.bertelsmann.de
b-share-dev.bertelsmann.de
keys.bertelsmann.de
bessermachen.bertelsmann.de
autodiscover.bertelsmann.de
jp5.bertelsmann.de
skypetmg.bertelsmann.de
grc-restore.bertelsmann.de
dubbmlske0001.bertelsmann.de
autodiscover.bertelsmann.de
itsgi7000.bertelsmann.de
deac.bertelsmann.de
mpsportal.bertelsmann.de
*.sti.bertelsmann.de
jppess.bertelsmann.de
www2.gitta.bertelsmann.de
cwa.bertelsmann.de
divisionalreportingserver.bertelsmann.de
skypetmg.bertelsmann.de
insurance.bertelsmann.de
www.haussortimente.bertelsmann.de
betravel.bertelsmann.de
www.haussortimente.bertelsmann.de
pp1.bertelsmann.de
cc.secureconnect.bertelsmann.de
api.qa.live.bertelsmann.de
owasemea.bertelsmann.de
greetings.bertelsmann.de
itsasqas.bertelsmann.de
www.haussortimente.bertelsmann.de
devccgtlp02.vc.bertelsmann.de
jp5.bertelsmann.de
csacie.bertelsmann.de
www.elettershop.de
benet.bertelsmann.de
betradecompliance.bertelsmann.de
ias.bertelsmann.de
pp5.bertelsmann.de
degtluv8626-repos.bertelsmann.de
*.bertelsmann.de
pp5-test.bertelsmann.de
www.bertelsmann.de
benet.bertelsmann.de
seratio3.bertelsmann.de
ess.bertelsmann.de
hotelrates.bertelsmann.de
esszeit.bertelsmann.de
*.bertelsmann.de
cp5-int.bertelsmann.de
fragobert.bertelsmann.de
www2.gitta.bertelsmann.de
directnet.bertelsmann.de
autodiscover.bertelsmann.de
seratio4.bertelsmann.de
grc-training.bertelsmann.de
www.haussortimente.bertelsmann.de
gp1.bertelsmann.de
*.benet.bertelsmann.com
betradecompliance.bertelsmann.de
itsasprd.bertelsmann.de
alumni.bertelsmann.com
*.bertelsmann.de
bop.bertelsmann.de
sp5.bertelsmann.de
*.bertelsmann.de
jobsearch.createyourowncareer.de
pp5-int.bertelsmann.de
gitta.test.bertelsmann.de
bstportal.bertelsmann.de
securelogin.bertelsmann.de
sl2.bertelsmann.de
wp1-test.bertelsmann.de
storefront2.bertelsmann.de
guest.bertelsmann.de
besuchen.bertelsmann.de
mietwagenservice.bertelsmann.de
www.haussortimente.bertelsmann.de
vas.bertelsmann.de
lc-service.bertelsmann.de
clm-int.bertelsmann.de
jppess.bertelsmann.de
ess.bertelsmann.de
sni2878bgl.wpc.edgecastcdn.net
greetings.bertelsmann.de
grc-int.bertelsmann.de
service.bertelsmann.de
*.bertelsmann.de
securelogin.bertelsmann.de
imp-test.bertelsmann.de
gitta.test.bertelsmann.de
www2.gitta.bertelsmann.de
fragobert.bertelsmann.de
vas.bertelsmann.de
imp-test.bertelsmann.de
peoplenet.bertelsmann.de
seratio4.bertelsmann.de
ess.bertelsmann.de
www.haussortimente.bertelsmann.de
deac.bertelsmann.de
b-share-qa.bertelsmann.de
b-share-dev.bertelsmann.de
keys.bertelsmann.de
bessermachen.bertelsmann.de
autodiscover.bertelsmann.de
jp5.bertelsmann.de
skypetmg.bertelsmann.de
grc-restore.bertelsmann.de
dubbmlske0001.bertelsmann.de
autodiscover.bertelsmann.de
itsgi7000.bertelsmann.de
deac.bertelsmann.de
mpsportal.bertelsmann.de
*.sti.bertelsmann.de
jppess.bertelsmann.de
www2.gitta.bertelsmann.de
cwa.bertelsmann.de
divisionalreportingserver.bertelsmann.de
skypetmg.bertelsmann.de
insurance.bertelsmann.de
www.haussortimente.bertelsmann.de
Certificate
The complete raw certificate details for ess.bertelsmann.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIID4jCCAsqgAwIBAgIQT/YBWQISPkiye0j1OeHy5TANBgkqhkiG9w0BAQUFADA8 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMRYwFAYDVQQDEw1U aGF3dGUgU1NMIENBMB4XDTEwMTAyNjAwMDAwMFoXDTE1MTIyNDIzNTk1OVowezEL MAkGA1UEBhMCREUxHDAaBgNVBAgTE05vcmRyaGVpbi1XZXN0ZmFsZW4xEzARBgNV BAcUCkd1ZXRlcnNsb2gxHDAaBgNVBAoUE2FydmF0byBzeXN0ZW1zIEdtYkgxGzAZ BgNVBAMUEmVzcy5iZXJ0ZWxzbWFubi5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMBrcfURNLrO2CW+MCA2zzPIbAQjzp/jBHTA/qr1zTylHQZl4UNC VY9YQOvP5dVRBdB6IEsXB4XS3dQbeTNKnych0b992thWkDQscA6bjGuW+f0kolW2 8S4ihyMnmY7pFkQSdHm1/4bAw9vAInclASDhQoQDESHUSN4oBRriCgxwMkQL6Dvi LpFiORTRt8RkP0RNxyQS5vnCCFD/e5TRe5r+sDmZllKahuOgc9CiNqVqbvfbimuU QkjkQ8FFkxb2UM8/Y1Mk8yNmJsGbgYqz+w6vGTq1mCA4irFjmNLBjfcoTZ+NFvH1 Ij/0FlQGjoBjECjEVlpsQP7wsO3kAhcYORUCAwEAAaOBoDCBnTAMBgNVHRMBAf8E AjAAMDoGA1UdHwQzMDEwL6AtoCuGKWh0dHA6Ly9zdnItb3YtY3JsLnRoYXd0ZS5j b20vVGhhd3RlT1YuY3JsMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAy BggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAGGFmh0dHA6Ly9vY3NwLnRoYXd0ZS5j b20wDQYJKoZIhvcNAQEFBQADggEBAAEk6/MzAVOlcBsZVsezstRze86EyrxCrubV K1DI//SDnSniIpYIVZvtUO6Cvl8NQu+zeL2hMDRpa0YirY69UwH+QlAKCWiQ3h5Y N3KCqROZ6aIBisGPcKWs8wM3csJbqO6yB9gIwncLomrq7BMfbE258pXOZTf6phPv oWHYRiHs/po7qX9SPPhsybLMKXxhtm5+9ef9Bb3YEHf4C7iBSuTGO5YJFgC+oHFM x8lRN5EfF6wOL9hSt4Z/h8Vb3GRxUkJFdN2LEwZxdlNtDZ3r5d0vNXPU8KHjbekS 5HU0i6bPrJRWuSQtzBQ3grtKlLCIH+QGeNzz374ztHBmryIEgoo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGtx9RE0us7YJb4wIDbP M8hsBCPOn+MEdMD+qvXNPKUdBmXhQ0JVj1hA68/l1VEF0HogSxcHhdLd1Bt5M0qf JyHRv33a2FaQNCxwDpuMa5b5/SSiVbbxLiKHIyeZjukWRBJ0ebX/hsDD28AidyUB IOFChAMRIdRI3igFGuIKDHAyRAvoO+IukWI5FNG3xGQ/RE3HJBLm+cIIUP97lNF7 mv6wOZmWUpqG46Bz0KI2pWpu99uKa5RCSORDwUWTFvZQzz9jUyTzI2YmwZuBirP7 Dq8ZOrWYIDiKsWOY0sGN9yhNn40W8fUiP/QWVAaOgGMQKMRWWmxA/vCw7eQCFxg5 FQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 106286344028565013789359947698445349605 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2010-10-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-12-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nordrhein-Westfalen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Guetersloh' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'arvato systems GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'ess.bertelsmann.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24290737729527523408071704588293996087307105761716385222542943358354272267025074660898559855718219873158299890123674908919536120630440599658421572117691202496588199901288938902200853743742164217508334463843291935815148130401243173886285177330710228447054723096138410458904747036736535484665736627615029050754248622509046206267790924518377736206808761257117346208304540483490521418853888644969476040684923109098257501523821682068616479964307806238421501580339930220801880669444012792351747607268968757577102828836557125841765333038037775616153663187338850163797715737884969996678397896301383077985718054756741027477781 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-crl.thawte.com/ThawteOV.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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