www.schlittermann.de

Issued by R3

About this certificate

This digital certificate with serial number 04:bc:34:27:e1:d4:02:fe:3f:e4:bc:f3:d9:5d:18:3c:80:c0 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=www.schlittermann.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:bc:34:27:e1:d4:02:fe:3f:e4:bc:f3:d9:5d:18:3c:80:c0
Serial Number (int): 412491555643875173814834806162390930718912
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 3d:f6:29:06:9e:0d:d0:a8:60:31:c6:97:70:9b:66:03:21:f3:9d:2e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): f7:21:55:fc:d2:8c:88:74:5d:98:69:42:47:c1:e9:4d:33:e9:45:3c
Fingerprint (sha256): 2d:ce:50:5f:ba:e4:37:4d:8f:48:2c:e4:6d:c9:0c:5f:d7:a5:c3:83:97:a5:04:d5:90:c6:83:ab:e1:ee:b2:14

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate www.schlittermann.de

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.schlittermann.de

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

schlittermann.de
www.schlittermann.de

Other certificates including the domain name schlittermann.de

(limited to 100 certificates)
www.schlittermann.de
ssl.schlittermann.de
www.schlittermann.de
hg.schlittermann.de
svn.schlittermann.de
accounting.schlittermann.de
accounting.schlittermann.de
www.schlittermann.de
rric-cx.dyn.schlittermann.de
accounting.schlittermann.de
www.schlittermann.de
www.schlittermann.de
w.schlittermann.de
rric-cx.dyn.schlittermann.de
hg.schlittermann.de
hg.schlittermann.de
svn.schlittermann.de
www.schlittermann.de
www.schlittermann.de
accounting.schlittermann.de
git.schlittermann.de
muli.schlittermann.de
lug-dd.schlittermann.de
git.schlittermann.de
www.schlittermann.de
www.schlittermann.de
accounting.schlittermann.de
pu.schlittermann.de
accounting.schlittermann.de
git.schlittermann.de
mailman.schlittermann.de
webmail.schlittermann.de
ssl.schlittermann.de
accounting.schlittermann.de
lug-dd.schlittermann.de
git.schlittermann.de
pu.schlittermann.de
ssl.schlittermann.de
webmail.schlittermann.de
ssl.schlittermann.de
ssl.schlittermann.de
w.schlittermann.de
ssl.schlittermann.de
accounting.schlittermann.de
muli.schlittermann.de
chat.schlittermann.de
owncloud.schlittermann.de
www.schlittermann.de
owncloud.schlittermann.de
fubus.de.hs12.schlittermann.de
w.schlittermann.de
fubus.de.hs12.schlittermann.de
accounting.schlittermann.de
www.schlittermann.de
www.schlittermann.de
mailman.schlittermann.de
ssl.schlittermann.de
ssl.schlittermann.de
www.schlittermann.de
www.schlittermann.de
ssl.schlittermann.de
ssl.schlittermann.de
ssl.schlittermann.de
otrs.schlittermann.de
www.schlittermann.de
mailman.schlittermann.de
git.schlittermann.de
www.schlittermann.de
icinga.schlittermann.de
ssl.schlittermann.de
ssl.schlittermann.de
pu.schlittermann.de
lug-dd.schlittermann.de
accounting.schlittermann.de
www.schlittermann.de
ssl.schlittermann.de
www.schlittermann.de
git.schlittermann.de
roundcube.schlittermann.de
www.schlittermann.de
otrs.schlittermann.de
git.schlittermann.de
ssl.schlittermann.de
www.schlittermann.de
accounting.schlittermann.de
mailman.schlittermann.de
otrs.schlittermann.de
www.schlittermann.de
accounting.schlittermann.de
www.schlittermann.de
accounting.schlittermann.de
accounting.schlittermann.de
ssl.schlittermann.de
ssl.schlittermann.de
pu.schlittermann.de
ssl.schlittermann.de
ssl.schlittermann.de
ssl.schlittermann.de
www.schlittermann.de
w.schlittermann.de

Certificate

The complete raw certificate details for www.schlittermann.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuHT5vL7KDqTCsRLJCyYn
sf4KjLEQwtBuODZM33aIlluvq4ThQ93s435aU5aTrc0v7Uj97lmjkdI1Y7p8VoJy
3wLZkml/QomEyqbbHwsEddx9WVz7fzM05jWXcIjB/XC21DMEssdFVzLF5x3N8sSo
GBumzowFH7lrz6DfN7n4DY+zDBu0q5jHaKjDTLzKSQbArSNxHjyhmGs4Pb4tqEEo
PfxUNjq77ZViy87dm+3BXsS6HWJuxxgw/kvqRc5O7NkSa4L0ZOuelbeDxAz7iDxi
PZ8nUXWOruS3ItR4970Zh7BEoLvu+2DV4LMppYNnaHKu+wGnwdnAzotAllfsNUpC
60qUwn38o/GtqJ7PtTmxbIR4/Z2iQz8OySEv/zCB/4c5ftd7rCtQ+Poh/CJVLQaw
20AeUGLe9upXFHzwCIRarDuhpWJdgqrXJmHfJBSt2Ui5p5CnLnHNGShkCZzSmWYM
48cGGihOZi3g6q7fYkWH+CZaAWl6wmSvkTqvuHNBilBi5PTgrw/Srld6CV/a5fBH
Bao7f2Q1FyBWFYkDRrxeVWOMClZn3wyJmOFM0Rq1qV0TM1mqYaXwCgkZU4DHB1Al
4me5ay7w/PK1hNyFxARKyvbIPCd5wVEA+umMiT1bW8k8CD3EeM4rICbFDdEyGYS0
3a7LfxD09GMHUQlG89fgCGkCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 412491555643875173814834806162390930718912
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-12 09:41:06 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-11 09:41:05 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.schlittermann.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 752518643487050256223551938406633096219551277430802936693652065975885152939683041164825276042692236003491088822978199766309908225592852295219354836311136656300984344604934331651186476995954927861793148824245688588474640374497730868904138349614742873687915264820448579743888215414158313332257190829873834268354105863221144377863632825804771585498326090816791235533702608127768171301252633372639021577878038601294154882849170081787746568675238276661546585279777123681686733475915591613389935527655618036739577804510126868427056079959998228477814334639532914089872214674959188730435463961090921844834672510067704461362792055414105341583750729371537173918943760091778033787139356558791228849908575711706792725005624331243501121563235374514346743471537993965025971457846394311540944894532117736223704740486826453732546232155625186522062627377130978641461762476411336999618748172023078454608326514841380719534149877035114307693411940258181878096138772123373998440000684021885707262250919998275479708803866631654209693846109440718371621666862685439697695240586316826390987715729032155117704038565530288174897932577151355038726586873242595247527014921196066918019789582827594041996330285659064164009671856006205449241136717500366099574687849
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3df629069e0dd0a86031c697709b660321f39d2e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'schlittermann.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.schlittermann.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018cfd42dcf60000040300463044022003fd9065ef6ee566ebe9385d7a82e82db3b9026f4507ce5cc6f1af5a5f2be51102205391217568ae97311659254b8a29d14ab6c74404b7efadde85253b53e01c9e8d007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018cfd42dd4a0000040300473045022100d91890917d21984ebf58258ceef40525115c03bbb6c24ce8bcb04ec6db286a0a02204b2d831c5dc1256ca31340b0b64c9ed040da516e7a4bd80a8ac9a58a647678a4
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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