lesershop.zgt.de
- Zeitungsgruppe Thueringen Verwaltungsgesellschaft mbH -
Issued by Thawte SSL CA
About this certificate
This digital certificate with serial number 6b:8c:d1:eb:35:67:63:68:64:d1:d6:8b:a4:2b:c7:4e was issued on by Thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Zeitungsgruppe Thueringen Verwaltungsgesellschaft mbH
Organization:
Zeitungsgruppe Thueringen Verwaltungsgesellschaft mbH
State / Province:
Thueringen
Locality: Erfurt
Country: DE
Locality: Erfurt
Country: DE
Thawte, Inc.
Organization:
Thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 6b:8c:d1:eb:35:67:63:68:64:d1:d6:8b:a4:2b:c7:4eSerial Number (int): 142958574767933922639899171171680896846
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId:
Fingerprint (sha1): 8a:e5:15:82:a1:d7:d6:0b:65:03:60:e7:89:cc:4a:a3:e6:0c:d2:42
Fingerprint (sha256): 26:3a:e6:11:41:1e:d2:03:85:85:d9:18:6f:84:b7:42:94:0d:1e:b6:f2:d3:05:e1:2b:0d:74:60:97:aa:e7:7a
Revocation information
OCSP Server: http://ocsp.thawte.comCRL Distribution Point: http://svr-ov-crl.thawte.com/ThawteOV.crl
Check the revocation status for certificate lesershop.zgt.de
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lesershop.zgt.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Extended Key Usages
Server Authentication
Client Authentication
Extensions
4 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name zgt.de
(limited to 100 certificates)
sso.zgt.de
secure.zgt.de
mediaservice.zgt.de
*.zgt.de
sso.zgt.de
anzeigen.thueringer-allgemeine.de
anzeigen.thueringer-allgemeine.de
*.services.extern.zgt.de
lesershop.zgt.de
media101.zgt.de
extranet.zgt.de
*.zgt.de
mediaservice.zgt.de
secure.zgt.de
sso.zgt.de
*.zgt.de
sso.zgt.de
lesershop.zgt.de
anzeigen.thueringer-allgemeine.de
extranet.zgt.de
*.services.extern.zgt.de
sso.zgt.de
*.zgt.de
anzeigen.thueringer-allgemeine.de
secure.zgt.de
selligentdata.services.extern.zgt.de
sso.zgt.de
extranet.zgt.de
bestatter.zgt.de
*.zgt.de
sso.funkemedien.de
mediaservice.zgt.de
bestatter.zgt.de
sso.zgt.de
*.services.extern.zgt.de
sso.funkemedien.de
*.zgt.de
anzeigen.thueringer-allgemeine.de
newsapp.services.extern.zgt.de
extranet.zgt.de
*.zgt.de
sso.funkemedien.de
*.zgt.de
media101.zgt.de
anzeigen.thueringer-allgemeine.de
media101.zgt.de
anzeigen.thueringer-allgemeine.de
*.services.extern.zgt.de
secure.zgt.de
mediaservice.zgt.de
*.zgt.de
sso.zgt.de
anzeigen.thueringer-allgemeine.de
anzeigen.thueringer-allgemeine.de
*.services.extern.zgt.de
lesershop.zgt.de
media101.zgt.de
extranet.zgt.de
*.zgt.de
mediaservice.zgt.de
secure.zgt.de
sso.zgt.de
*.zgt.de
sso.zgt.de
lesershop.zgt.de
anzeigen.thueringer-allgemeine.de
extranet.zgt.de
*.services.extern.zgt.de
sso.zgt.de
*.zgt.de
anzeigen.thueringer-allgemeine.de
secure.zgt.de
selligentdata.services.extern.zgt.de
sso.zgt.de
extranet.zgt.de
bestatter.zgt.de
*.zgt.de
sso.funkemedien.de
mediaservice.zgt.de
bestatter.zgt.de
sso.zgt.de
*.services.extern.zgt.de
sso.funkemedien.de
*.zgt.de
anzeigen.thueringer-allgemeine.de
newsapp.services.extern.zgt.de
extranet.zgt.de
*.zgt.de
sso.funkemedien.de
*.zgt.de
media101.zgt.de
anzeigen.thueringer-allgemeine.de
media101.zgt.de
anzeigen.thueringer-allgemeine.de
*.services.extern.zgt.de
Certificate
The complete raw certificate details for lesershop.zgt.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIID9jCCAt6gAwIBAgIQa4zR6zVnY2hk0daLpCvHTjANBgkqhkiG9w0BAQUFADA8 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMRYwFAYDVQQDEw1U aGF3dGUgU1NMIENBMB4XDTEwMTEzMDAwMDAwMFoXDTEyMTIyOTIzNTk1OVowgY4x CzAJBgNVBAYTAkRFMRMwEQYDVQQIEwpUaHVlcmluZ2VuMQ8wDQYDVQQHFAZFcmZ1 cnQxPjA8BgNVBAoUNVplaXR1bmdzZ3J1cHBlIFRodWVyaW5nZW4gVmVyd2FsdHVu Z3NnZXNlbGxzY2hhZnQgbWJIMRkwFwYDVQQDFBBsZXNlcnNob3Auemd0LmRlMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvy7pL4xUY+n8jeXDXQY4Oj4J lRLC/yfx7xcdsRQhbZxXGSfdSeGpaSaKzUN8I6zA4ez1Ye9C8+jTRgdVAnfvS/It UX+M/sJEMO8KQwVybpgLRpezvNaVtL+Omto+3ajg+78E1IuHS/HI/yC1mFd+RKvf buBK9IzZyqd7bN5gPhgtEXfxwB0Xpa9VOMM8DbFoJSZVrLdXObFZPUxFupyJ/f62 2Pg4LFmNyRcheQ4zKMsjdzzkNc5zSSOgL5ad0e+niaQtuEYC/0wc3DHi2cgtPvTB SOQfKa/Vq6DNr/caH51VNIQ8cpRiURR+XqoyfdyNw2BdWlH0TbWjsolOVsltgQID AQABo4GgMIGdMAwGA1UdEwEB/wQCMAAwOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDov L3N2ci1vdi1jcmwudGhhd3RlLmNvbS9UaGF3dGVPVi5jcmwwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAYYW aHR0cDovL29jc3AudGhhd3RlLmNvbTANBgkqhkiG9w0BAQUFAAOCAQEAHY6NnCEi IiOzAnLhfLetOboLeHqtxAcQB6Ow45RWWl3UXGN3FHTG1I7FkSKiGGCicUYTvHXE K0iMNFIL6LPofbrWwD6owb3APLWS4/+dRUXpSrEYTS3Pge+wxfFItYCSrQEXtE78 nox+Dw5fecdvncnGskdmuW5BJHSRjEI9JzJAbuJuLIUc7EdWspagFPveAJcuSMbk 5Pk0st3bZyfgVJHOWy6SxLkyMbGVb9aPAnngWd90YcsWPQUKLU02VwmccG1rB/SO Syy3gaMfQoPEyzNoV6jjUyupGGQe0G6I3kGWUjO2NxtCM07IHt5dHqo2m0sApCLt dcDifq3481rOYg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvy7pL4xUY+n8jeXDXQY4 Oj4JlRLC/yfx7xcdsRQhbZxXGSfdSeGpaSaKzUN8I6zA4ez1Ye9C8+jTRgdVAnfv S/ItUX+M/sJEMO8KQwVybpgLRpezvNaVtL+Omto+3ajg+78E1IuHS/HI/yC1mFd+ RKvfbuBK9IzZyqd7bN5gPhgtEXfxwB0Xpa9VOMM8DbFoJSZVrLdXObFZPUxFupyJ /f622Pg4LFmNyRcheQ4zKMsjdzzkNc5zSSOgL5ad0e+niaQtuEYC/0wc3DHi2cgt PvTBSOQfKa/Vq6DNr/caH51VNIQ8cpRiURR+XqoyfdyNw2BdWlH0TbWjsolOVslt gQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 142958574767933922639899171171680896846 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2010-11-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-12-29 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thueringen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Erfurt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Zeitungsgruppe Thueringen Verwaltungsgesellschaft mbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'lesershop.zgt.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24134648866486104005663440509761961269338220786858270022902509963760559779812585128684152527034381963661453652123872337176038559354784123738839083263319190941575631463185475172651186646849166999850821534990166527624419489019591192989711686884649491531574403338035913190841730813972984587128793336627037632973881983004053706013680639500226841982783395453723834373385712474815576062728475974189576725969428824033092726692199701168691851963272263632073841344912576919961365116004829146935108406866393483401096464367616428655717114884302493234307569192890753994065860306882008283320132772342299535077699114220739898207617 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-crl.thawte.com/ThawteOV.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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