lom.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:da:61:60:a3:da:5a:83:c5:e4:d7:c6:e7:08:27:89:26:c6 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=lom.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:da:61:60:a3:da:5a:83:c5:e4:d7:c6:e7:08:27:89:26:c6Serial Number (int): 335647850683467398936037169554531549783750
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 77:67:32:c1:16:2a:db:85:d3:ac:c8:3b:bc:d1:5b:99:4e:31:84:6e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 14:18:01:bf:33:13:8b:f3:55:f7:20:ec:a5:81:a7:f9:f5:36:21:e5
Fingerprint (sha256): 2d:1f:74:63:ac:8b:ba:fa:81:c3:95:db:5d:4f:aa:a4:85:1c:2f:b8:3f:2e:a8:71:07:17:8a:7e:88:9f:58:70
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate lom.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lom.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lom.de
www.lom.de
www.lom.de
Other certificates including the domain name lom.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for lom.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgISA9phYKPaWoPF5NfG5wgniSbGMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMjcxNzQzMzFaFw0y MDA1MjcxNzQzMzFaMBExDzANBgNVBAMTBmxvbS5kZTCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAM/sVFnXhT+qQ2lfS/eVsk0sMRKOXv3xE+118LZr6Xlt c1Dy7uSvXZFj8LHbYoX7R4EEWIfHh8xLUu8SNw2IOIi9Kib+Edsm6UubsbKbhrtB CmfuP0QOx0HL0zOojvveDl1BUtlHUzPK4lzPGJrFlJ2MW4CveEYbyFqBPbEQIfdD xjP3FWm24BLuP1Mjq/Boqx6HjAMybzjqo1gXtxoztSJvujO9ESaxyS3y/uHfUTk7 fjnR+UOQDrtjd4ypb5Jnd75t0lByNeBgVjIVlO89w6MY/PN0/JBkmV2WbneRBpmm TNPLnjPsUmjcHK8E+MTCcuLdI5NSdxBhB6m+qtQUHHECAwEAAaOCAmYwggJiMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYD VR0TAQH/BAIwADAdBgNVHQ4EFgQUd2cywRYq24XTrMg7vNFbmU4xhG4wHwYDVR0j BBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsG AQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsG AQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzAdBgNV HREEFjAUggZsb20uZGWCCnd3dy5sb20uZGUwTAYDVR0gBEUwQzAIBgZngQwBAgEw NwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5j cnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQDnEvKwN34aYvuOyQxh hPHqezfLVh0RJlvz4PNL8kFUbgAAAXCH9gOhAAAEAwBGMEQCIAefgTFIPKuq4Bam j61ej5RZ4IeIuJmD+ngI0jN2tbmwAiBWzNuxZdlgHg7jAnGKRSPI4V4BiFX8yrTZ 35ZPdVxnRAB2ALIeBcyLos2KIE6HZvkruYolIGdr2vpw57JJUy3vi5BeAAABcIf2 A5cAAAQDAEcwRQIhAP2PRQzIo5g7RXQPLqrSqjSC+tLtD0MUD+Q/DBI6CG1CAiBd KCsLVj6Z1U/7IsxZGjyzU4H789jQ3srIVGP9lVVpVTANBgkqhkiG9w0BAQsFAAOC AQEAU/8BF2hN5U3BIB3hqSy2jU9xSZaMyOZc6mCw6tziUWZw3iS+CucWNrB4ZLv9 CCBcPiIaisaa8yrLlotC/hPB2QI3ReDNjbLi+I5drZ2bFJE/BPbLMu1Nx8FwK0do wiMD5p4EY3kHUQ8SWvivAUZSPVaNuB6DB5ZBn7gpJQotz+/wTQfg281x+XBBQzUa f2ZQ7aJdFc+epqFD6iPIcIBku88v3no4LHD/vzLs+e5BT/SoVxQQ0QzpJvWcRfo4 GCm7QQJwG35XVW439g0Y3ZZOl6uvCGjl4DbKMlObKjBfsAXvWAU84qaaGZWPhGxD HHJNvvYDyll2tdrN6dagpfd8bA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz+xUWdeFP6pDaV9L95Wy TSwxEo5e/fET7XXwtmvpeW1zUPLu5K9dkWPwsdtihftHgQRYh8eHzEtS7xI3DYg4 iL0qJv4R2ybpS5uxspuGu0EKZ+4/RA7HQcvTM6iO+94OXUFS2UdTM8riXM8YmsWU nYxbgK94RhvIWoE9sRAh90PGM/cVabbgEu4/UyOr8GirHoeMAzJvOOqjWBe3GjO1 Im+6M70RJrHJLfL+4d9ROTt+OdH5Q5AOu2N3jKlvkmd3vm3SUHI14GBWMhWU7z3D oxj883T8kGSZXZZud5EGmaZM08ueM+xSaNwcrwT4xMJy4t0jk1J3EGEHqb6q1BQc cQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 335647850683467398936037169554531549783750 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-27 17:43:31 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-27 17:43:31 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lom.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26247867545838015134277983521803338700863564603673798748036101506900682283500328260625979262516775086423969692990090971297063386188446033672392400834788433026800129612297960820238373435350651115453605625947087970235779216969712391476189004427917135878031512356796488139010640786093201033592645356837681833596121076438419260582014031109166782070045648864014665528358390202914315587284579187494066476424782108369484098193049287987155695011778977249944061597384167296984670001982209968502864661684553201281225722198916380916370328836023983016513283744011723073179306975366896498776057569316159585332766681898098772679793 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 776732c1162adb85d3acc83bbcd15b994e31846e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lom.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lom.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e0000017087f603a100000403004630440220079f8131483cabaae016a68fad5e8f9459e08788b89983fa7808d23376b5b9b0022056ccdbb165d9601e0ee302718a4523c8e15e018855fccab4d9df964f755c6744007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000017087f603970000040300473045022100fd8f450cc8a3983b45740f2eaad2aa3482fad2ed0f43140fe43f0c123a086d4202205d282b0b563e99d54ffb22cc591a3cb35381fbf3d8d0decac85463fd95556955 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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