thermikzipfel.de

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:54:d7:61:e2:16:59:e3:cd:9b:e8:84:72:c0:f8:00:eb:4d was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=thermikzipfel.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:54:d7:61:e2:16:59:e3:cd:9b:e8:84:72:c0:f8:00:eb:4d
Serial Number (int): 290206868874124015225337063941435740449613
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 27:6a:67:72:48:72:40:a1:42:79:75:75:c1:0d:bd:7d:51:94:8e:e7
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 14:bc:ef:ca:79:eb:b1:08:74:5b:ee:c7:f6:43:be:3f:2e:a2:14:53
Fingerprint (sha256): 1e:a9:91:e5:2e:b3:e6:51:0c:eb:c0:26:7f:e2:1d:b3:96:eb:9d:0b:57:31:c6:5f:82:5d:8f:ca:92:c2:98:82

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate thermikzipfel.de

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for thermikzipfel.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

thermikzipfel.de

Other certificates including the domain name thermikzipfel.de

(limited to 100 certificates)
angelatillhon.lima-city.de
store.garagenschutz.de
www.thermikzipfel.de
www.martins-design.de
*.expats-forum.de
www.thermikzipfel.de
www.thermikzipfel.de
www.cronjob.goeke.it
thermikzipfel.de
www.thermikzipfel.de
www.thermikzipfel.de
www.finde-die-loesung.de
*.landbluete.at
*.klausundursula.de
schneider-reinhold.de
www.anglerverein-felgentreu.de
sandra-nele.lima-city.de
www.thermikzipfel.de
*.goette-investment.de
www.thermikzipfel.de
www.thermikzipfel.de
superset-staging.hutch79.ch
www.thermikzipfel.de
*.immobilienrechtinspanien.com
theextron.com
thermikzipfel.de
www.thermikzipfel.de
www.thermikzipfel.de
www.thermikzipfel.de
*.hhedl.de
www.thermikzipfel.de
thermikzipfel.de
*.coelectronics.de
www.insights-philippines.de
www.ferienwohnungsunny.de
thermikzipfel.de
theextron.com
www.thermikzipfel.de
www.thermikzipfel.de
*.gentlemenfreuden.com
www.thermikzipfel.de
thermikzipfel.de
www.triplefly.de
www.amil4.lima-city.de

Certificate

The complete raw certificate details for thermikzipfel.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwnRlXf5RnJxOAXxkSNCi
DDoWjG53Ifl0OPXbYUr55PAgoOrPU+sUkdXXG9bEk9RY28NK/IJVE4Ir4m3yIrK0
mmKG1HUvFosLTdhSJKnQocTXZtI4vEluzcDI4fISYzPKs+etgoKmWmHVYaVmDEvQ
FjAlEvy3aadbMM77D125tyYvkpqbkCJlQZg9OpwKH6zES/epovbwwL9//ecwCQBD
dGujvam2r/TY5mOAOx2vNKZiSMU+B7axJl75sbfpNRDAVySHBUnscZ/pXnqiILVm
SZ6wWBkkMOvHj82vuOHJv6boWGf6AL8Z/flnMIZ7EP88LII5Gz0YwsR0e2Ji6Rgx
TQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 290206868874124015225337063941435740449613
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-28 19:26:18 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-27 19:26:18 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thermikzipfel.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24547628153206675894115806090965263140938528797766003207707222291302946749363033999407995974839524386494684483259930920261047951362298445110171341286793241943828991185404963903510957284031537052416519012092353024634997299672358244051722044245759263496443600588679398266840667805834371520117096612988651071361430691578550761940769432427941048872645363874290884841502197878804180895342501120761805133722062975268187146600055261615518661068155325552412522292341956870175106149283199375374119223014238978232608317408926865407459699856071067232982155434559025734931668744129079670832915999315992075293207462758686526026061
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							276a6772487240a142797575c10dbd7d51948ee7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thermikzipfel.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016fedd554e7000004030046304402200b8fa9024750d240ac5c6d05a31c0764ec25fe47cf8b8a9706e3de2155d38cf0022074b9bf61938febf1495bd787afed638e779064f10da550f8f738ebcec452aab40076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016fedd556210000040300473045022100bd176332a9c8370170cf512d33eea1fac76a41f1ec32c15ade35e88758f68011022003e483afa893e1d66459bea9fed3206e17fd7ac9db729bb36871b8a3d908cda0
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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