h.xrstf.de

Issued by Let's Encrypt Authority X1

About this certificate

This digital certificate with serial number 02:3e:91:70:a2:b4:4c:51:cc:4f:a0:0b:0c:ea:ab:3b:d3:12 was issued on by Let's Encrypt.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=h.xrstf.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 02:3e:91:70:a2:b4:4c:51:cc:4f:a0:0b:0c:ea:ab:3b:d3:12
Serial Number (int): 195515401509290691522950060174346855109394
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: c3:1b:c6:5c:0f:9d:bc:39:15:19:1c:5f:b6:6d:61:fe:e3:22:ac:52
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): a2:04:e8:0a:ec:d3:6a:2b:3c:5e:24:9b:e5:8d:d4:03:e1:63:d2:1c
Fingerprint (sha256): 24:b9:53:4c:29:80:a7:cd:70:86:78:89:5a:89:81:bc:fc:16:e8:58:ec:2d:71:c8:29:e3:3b:a6:0b:d8:38:40

Issuing Certificate URL: http://cert.int-x1.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x1.letsencrypt.org/

Check the revocation status for certificate h.xrstf.de

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for h.xrstf.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

h.xrstf.de
www.xrstf.de
xrstf.de

Other certificates including the domain name xrstf.de

(limited to 100 certificates)
cloud.xrstf.de
xrstf.de
xrstf.de
xrstf.de
xrstf.de
xrstf.de
h.xrstf.de
cloud.xrstf.de
cloud.xrstf.de
h.xrstf.de
xrstf.de
xrstf.de
xrstf.de
xrstf.de
xrstf.de
hochzeit.xrstf.de
sdv.xrstf.de
h.xrstf.de
xrstf.de
xrstf.de
cloud.xrstf.de
xrstf.de
xrstf.de
xrstf.de
cloud.xrstf.de
h.xrstf.de
cloud.xrstf.de
cloud.xrstf.de
feeds.xrstf.de
xrstf.de
h.xrstf.de
cloud.xrstf.de
xrstf.de
xrstf.de
monitor.xrstf.de
xrstf.de
h.xrstf.de
h.xrstf.de
cloud.xrstf.de
plinkett.xrstf.de
xrstf.de
xrstf.de
sdv.xrstf.de
xrstf.de
xrstf.de
xrstf.de
h.xrstf.de
h.xrstf.de
h.xrstf.de
xrstf.de
sdv.xrstf.de
h.xrstf.de
h.xrstf.de
monitor.xrstf.de
xrstf.de
cloud.xrstf.de
xrstf.de
sdv.xrstf.de
sdv.xrstf.de
sdv.xrstf.de
sdv.xrstf.de
xrstf.de
hochzeit.xrstf.de
xrstf.de
h.xrstf.de
www.xrstf.de
xrstf.de
sdv.xrstf.de
sdv.xrstf.de
sdv.xrstf.de
www.xrstf.de
www.xrstf.de
monitor.xrstf.de
xrstf.de
h.xrstf.de
h.xrstf.de
xrstf.de
h.xrstf.de
xrstf.de
www.xrstf.de
adminer.xrstf.de
h.xrstf.de
xrstf.de
xrstf.de
sdv.xrstf.de
xrstf.de
docs.xrstf.de
cloud.xrstf.de
www.xrstf.de

Certificate

The complete raw certificate details for h.xrstf.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzOxaB/9pnERXCWd0ChH
2xAZF2C55hA6DuWEB17l9xiFQ1pfUYhC9ALCSvGnjN9DaObkIfHBS0sSeva6Uuz0
0TfUNnLhEDa6VuvVIdyiz5R3zFUiKV85XPcRsw9ph9hggmXgaXmzvZxlYoxUsw+S
0yT/wFsP5V1fjloqub0IOWie3r+idkvSsaromshpbvlwNTCpGUegm8iKamB06gok
nnwy1VA2vmeo/Y8DaDl+gpyZgCAZKE+zLIBGjMgkfFYUkZNEgx+uvy2zjiToCOAX
jE2F74GlacivmBfoycoJj0y/hBvR5VSiXANfmC5v2Jsww3kFgCHXqm9qf3caUmdE
rQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 195515401509290691522950060174346855109394
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-03-04 16:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-06-02 16:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'h.xrstf.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23127100574712027473301448125002370654746766250116156130652463003512449493094272599351338001221468593555531240398296880863601036881765769594590912180454616300404559073321304913346729339958119591042974787916119089859282438934884171184119137619523797408082557256190858554681037937244823272630625903268028622575491392774986838504882898145360438144541326480207548872976087978127964743581924743926268527911203494607300257441784255354895452160145906750700483066717769569973478411594112173401997312884830754728807190426287621501445312145605676249847098758530980216559461250322154174038620909386711732216175919731855271085229
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c31bc65c0f9dbc3915191c5fb66d61fee322ac52
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x1.letsencrypt.org/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x1.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'h.xrstf.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.xrstf.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xrstf.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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