pki.edupki.org

Issued by DFN-Verein CA Services

About this certificate


This digital certificate with serial number 0f:f5:26:9f was issued on by DFN-Verein .

While the certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present
  • ERROR: localityName or stateOrProvinceName is required if organizationName is set
  • ERROR: stateOrProvinceName is required if organizationName is set
  • ERROR: Certificate doesn't contain any subjectAltName
  • ERROR: Certificate CN is not listed in subjectAltName

DFN-Verein

Organization: DFN-Verein
Organization unit: DFN-PKI
Country: DE

DFN-Verein

Organization: DFN-Verein
Organization unit: DFN-PKI
Country: DE

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 0f:f5:26:9f
Serial Number (int): 267724447
Serial Number lenght: 28 bits, 4 octets

SubjectKeyId: e2:a5:5b:69:bc:ac:d0:a5:a5:af:eb:d2:bc:80:f8:af:4b:8f:d0:d9
AuthorityKeyId: 1d:a9:f1:86:26:76:4d:cf:5d:fd:50:a3:6e:eb:f1:bc:22:75:6d:eb

Fingerprint (sha1): d4:c3:63:77:7a:8f:43:e3:96:ef:ac:c0:46:f9:62:05:11:3b:ce:bc
Fingerprint (sha256): 4c:0e:72:20:c1:30:a1:82:03:83:e6:14:e4:ea:6e:be:af:c5:9a:84:45:92:7f:9e:6f:53:64:fd:8b:6a:75:ae

Issuing Certificate URL: http://cdp1.pca.dfn.de/global-services-ca/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/global-services-ca/pub/cacert/cacert.crt

Revocation information

CRL Distribution Point: http://cdp1.pca.dfn.de/global-services-ca/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/global-services-ca/pub/crl/cacrl.crl

Check the revocation status for the current certificate on pki.edupki.org
0
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Content Commitment
Key Encipherment
Data Encipherment

Extended Key Usages

Server Authentication

Extensions

7 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any subject alternative names (DNS Name).

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIED/UmnzANBgkqhkiG9w0BAQUFADBVMQswCQYDVQQGEwJE RTETMBEGA1UEChMKREZOLVZlcmVpbjEQMA4GA1UECxMHREZOLVBLSTEfMB0GA1UE AxMWREZOLVZlcmVpbiBDQSBTZXJ2aWNlczAeFw0xMDA0MjYxNDU0MDhaFw0xNTA0 MjUxNDU0MDhaME0xCzAJBgNVBAYTAkRFMRMwEQYDVQQKEwpERk4tVmVyZWluMRAw DgYDVQQLEwdERk4tUEtJMRcwFQYDVQQDEw5wa2kuZWR1cGtpLm9yZzCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAJy51cCK5wg7KFLwre9dILkUuFRitrJD rL6+FVcanBfcT2Jf531I6+C5eo6ZaiXa+Hl1yWQdAe/H6tdB4A10LfBkgKqJxSHi ywIy1CL8+HGL8C3yejb/15TFXqYJ+n/uQhXP9x2fq219lhHSjH4z09EXAGWctM2C MqAFCfmNTUjyMHrvFzZgWHyP44bk5K0+Kc0uyd3p36lyr4eiz41AbaYAkJ+8uYGn azPPFaSa5HgkelPRe8PfdsFFrJtkwrqIqRL/oOw9OTTxhCp4ee4Crm09vwcU7X8X tLzjNfQ+BmMdZ7vFCkpyogaq4v1AYNWEA8qoEEU8XmD0uRQC03+6JoMCAwEAAaOC AbIwggGuMAkGA1UdEwQCMAAwCwYDVR0PBAQDAgTwMBMGA1UdJQQMMAoGCCsGAQUF BwMBMB0GA1UdDgQWBBTipVtpvKzQpaWv69K8gPivS4/Q2TAfBgNVHSMEGDAWgBQd qfGGJnZNz139UKNu6/G8InVt6zCBkQYDVR0fBIGJMIGGMEGgP6A9hjtodHRwOi8v Y2RwMS5wY2EuZGZuLmRlL2dsb2JhbC1zZXJ2aWNlcy1jYS9wdWIvY3JsL2NhY3Js LmNybDBBoD+gPYY7aHR0cDovL2NkcDIucGNhLmRmbi5kZS9nbG9iYWwtc2Vydmlj ZXMtY2EvcHViL2NybC9jYWNybC5jcmwwgaoGCCsGAQUFBwEBBIGdMIGaMEsGCCsG AQUFBzAChj9odHRwOi8vY2RwMS5wY2EuZGZuLmRlL2dsb2JhbC1zZXJ2aWNlcy1j YS9wdWIvY2FjZXJ0L2NhY2VydC5jcnQwSwYIKwYBBQUHMAKGP2h0dHA6Ly9jZHAy LnBjYS5kZm4uZGUvZ2xvYmFsLXNlcnZpY2VzLWNhL3B1Yi9jYWNlcnQvY2FjZXJ0 LmNydDANBgkqhkiG9w0BAQUFAAOCAQEAZ1vuvFgfd2ra+W6f1zR4IYRAn3zaqq3b mAGZ9xEGzCBVSchLDOMHPx7f8HUzYgflQABbbAypPFwzjW/Yb5FELey6tTTkJy1V en7Iad5b4DGsmBSGGCafcsWuB0Wqmg/XzkArXVurcbyS7dZcpnJKZMQbFYBNC9it R4SOXqaW+7bhY+WAdpmYNfrsM+hxujnQHQcBPw/emFSSi1zMqic5o+p6TTF77MOF 9GgWK3Lrroh0ED9QYLm1lg54pBI/cAybHQRVA7oTk4mF8D3uNV6SA9GsolJSnAXE qXjzk/2svK90ZCkRpsPXBFcQ1tEQi2IrRsiVsfYGXOQA/JKuAvmjsQ== -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnLnVwIrnCDsoUvCt710g uRS4VGK2skOsvr4VVxqcF9xPYl/nfUjr4Ll6jplqJdr4eXXJZB0B78fq10HgDXQt 8GSAqonFIeLLAjLUIvz4cYvwLfJ6Nv/XlMVepgn6f+5CFc/3HZ+rbX2WEdKMfjPT 0RcAZZy0zYIyoAUJ+Y1NSPIweu8XNmBYfI/jhuTkrT4pzS7J3enfqXKvh6LPjUBt pgCQn7y5gadrM88VpJrkeCR6U9F7w992wUWsm2TCuoipEv+g7D05NPGEKnh57gKu bT2/BxTtfxe0vOM19D4GYx1nu8UKSnKiBqri/UBg1YQDyqgQRTxeYPS5FALTf7om gwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 267724447 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DFN-Verein' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DFN-PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DFN-Verein CA Services' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2010-04-26 14:54:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-04-25 14:54:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DFN-Verein' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DFN-PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pki.edupki.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19784814213444754346669987132330474382326675169131423063939260402314269359297612785224648812779089718685257972516766284518832801028344163235013049121191208109913178038615374733788995803298916501030787813909762366522487144342227161545850691540520584611374708781419865622948339744431868419738714312031800885548460168012926010841154115597574805448952137654815897581084719074104955468120258782991023117756933087935945823907939665039011091243196092034832869267676569077731611922341029283248649577771420382355720382158659241291473764722013544501103730997558650577992633493035609601998322157712391493502115227701931857815171 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04f0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e2a55b69bcacd0a5a5afebd2bc80f8af4b8fd0d9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1da9f18626764dcf5dfd50a36eebf1bc22756deb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (137 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/global-services-ca/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/global-services-ca/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (157 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/global-services-ca/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/global-services-ca/pub/cacert/cacert.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00675beebc581f776adaf96e9fd734782184409f7cdaaaaddb980199f71106cc205549c84b0ce3073f1edff075336207e540005b6c0ca93c5c338d6fd86f91442decbab534e4272d557a7ec869de5be031ac98148618269f72c5ae0745aa9a0fd7ce402b5d5bab71bc92edd65ca6724a64c41b15804d0bd8ad47848e5ea696fbb6e163e58076999835faec33e871ba39d01d07013f0fde9854928b5cccaa2739a3ea7a4d317becc385f468162b72ebae8874103f5060b9b5960e78a4123f700c9b1d045503ba13938985f03dee355e9203d1aca252529c05c4a978f393fdacbcaf74642911a6c3d7045710d6d1108b622b46c895b1f6065ce400fc92ae02f9a3b1