jelges.de
Issued by R3
About this certificate
This digital certificate with serial number 03:e8:49:ab:45:10:e2:96:a5:41:ad:85:a1:70:12:e0:81:45 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=jelges.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e8:49:ab:45:10:e2:96:a5:41:ad:85:a1:70:12:e0:81:45Serial Number (int): 340380289848217610761309130511531791909189
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 03:b0:16:bd:d9:42:27:3f:6b:b5:e2:99:d9:fc:f4:17:10:40:52:02
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f6:08:3c:8e:13:ca:f5:fd:2c:a5:b9:29:4d:dc:a9:11:ab:57:92:13
Fingerprint (sha256): 2c:06:9d:94:a7:d9:87:56:0f:a9:2d:c6:d4:3d:20:f0:d3:01:25:d9:08:49:76:a4:9d:b8:43:3b:06:6d:18:5f
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate jelges.de
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for jelges.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
jelges.de
wp-jelges.web09.pagebuddies.de
www.jelges.de
wp-jelges.web09.pagebuddies.de
www.jelges.de
Other certificates including the domain name jelges.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for jelges.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISA+hJq0UQ4palQa2FoXAS4IFFMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMjMwMTMxNDZaFw0yNDAyMjEwMTMxNDVaMBQxEjAQBgNVBAMT CWplbGdlcy5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANXNtMsf yyOkIchr9akpOL6tfqb2VFeB8Fejfpq08nWoezqcqoIQTxwHBUxt0BPuirHqBqvU TeD2r4oZT9IFmrylUXKa2oXg95CIv12y+6GzFO6kqRqTzRZUlAvl7mfiGKFX8dwI 7Jdcv6k7nhWYl60hknytV7DiW8WkCTfKfVCek79Znxwr9T9avKUDL4aePasCanrc XtAaA3vQXem3o8h+VZp1M98ZjDSlZg6wHuSZJ/qEBeoeFQ+m3VyHbvW5j4FRuIjo i5ukE6GOcb45CAreWSSkN74IgJeBMpiklZ3NkRHyI1ym5CLemoBD0hVPvKjU2Uw6 JQ2WJSEtGue2z8kCAwEAAaOCAjkwggI1MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU A7AWvdlCJz9rteKZ2fz0FxBAUgIwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+v nYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5s ZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wQwYD VR0RBDwwOoIJamVsZ2VzLmRlgh53cC1qZWxnZXMud2ViMDkucGFnZWJ1ZGRpZXMu ZGWCDXd3dy5qZWxnZXMuZGUwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEDBgorBgEE AdZ5AgQCBIH0BIHxAO8AdQA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frU FwAAAYv6BOUSAAAEAwBGMEQCIDa59n5Koq2l/qlbojqC6mY5tJKw2WSNG3meEe5x 5LfcAiBMvBmbqeaAbTfAQMDUH6BgPG/vDqTueg1X1dryO2A+AQB2AHb/iD8KtvuV UcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABi/oE5UgAAAQDAEcwRQIgX154JomJ dfhh87qjd8YUf0wJKt6BkjvXJ4e8APBA3uUCIQD2+LsMnFuztN36ybiGNtJxVsDh ZFC6XyX2VTzVFF6AbDANBgkqhkiG9w0BAQsFAAOCAQEAOuIizsUFIUHfZEbTb+FE JU+QT/dOj7jgTcc6ho9R3oAttNh2mC73laxcG5CXPjBibECTeEm7LPIlFn4Bw/P2 PSQxbFkxUahB3cWqMLFMr6YzG8yU7mBG1RqS3alg3XslrkdL7qUW9d+9X8a2+1l8 xQOy0VT6sMW2ZwGb4jQf6x75XmpEmk77n6wlRkP1MTVWt4x6VN1NGUztqqVkfewx TTW7fYhsyAirxZbieZqF23f2WjfyD204vAHZBB5X0gIBMbUnWTw/3qq174hcn5LO uSPnai0eTdE7GbfHZExDO45TXEqQiTl5yoiZcjMWw01nEOdsgsI5FgWrv4Fj8WR4 3w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1c20yx/LI6QhyGv1qSk4 vq1+pvZUV4HwV6N+mrTydah7OpyqghBPHAcFTG3QE+6KseoGq9RN4PavihlP0gWa vKVRcpraheD3kIi/XbL7obMU7qSpGpPNFlSUC+XuZ+IYoVfx3Ajsl1y/qTueFZiX rSGSfK1XsOJbxaQJN8p9UJ6Tv1mfHCv1P1q8pQMvhp49qwJqetxe0BoDe9Bd6bej yH5VmnUz3xmMNKVmDrAe5Jkn+oQF6h4VD6bdXIdu9bmPgVG4iOiLm6QToY5xvjkI Ct5ZJKQ3vgiAl4EymKSVnc2REfIjXKbkIt6agEPSFU+8qNTZTDolDZYlIS0a57bP yQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 340380289848217610761309130511531791909189 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-23 01:31:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-21 01:31:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'jelges.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26990196477664675849585549845763410513152536000152882373890827091847086929404547833798827386311075911294263525974920083698394430595148684807550575329544212966365037005022915922049456651522592840655043820337467089502802744383610034790324229514961421316485587152951833228146594917382902950591258159943995741876891035729866777942614272069286471135444592135812782808044831617984786960383569568485217949616326560315536427951415935776005966232264130865077847804264799355205311556234593679874120707778734187157546216436078737161120909538343684663260747925023633956734471422848459186174672027931248257695212577151936080826313 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 03b016bdd942273f6bb5e299d9fcf41710405202 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jelges.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wp-jelges.web09.pagebuddies.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jelges.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018bfa04e5120000040300463044022036b9f67e4aa2ada5fea95ba23a82ea6639b492b0d9648d1b799e11ee71e4b7dc02204cbc199ba9e6806d37c040c0d41fa0603c6fef0ea4ee7a0d57d5daf23b603e0100760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018bfa04e548000004030047304502205f5e7826898975f861f3baa377c6147f4c092ade81923bd72787bc00f040dee5022100f6f8bb0c9c5bb3b4ddfac9b88636d27156c0e16450ba5f25f6553cd5145e806c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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