phxu.deronline.de
- DER Touristik GmbH -
Issued by Thawte SSL CA
About this certificate
This digital certificate with serial number 73:89:ba:74:bf:9f:53:60:70:63:2d:59:9e:3b:42:2c was issued on by Thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
DER Touristik GmbH
Organization:
DER Touristik GmbH
Organization unit: DERTOUR
Organization unit: DERTOUR
State / Province:
Hessen
Locality: Frankfurt am Main
Country: DE
Locality: Frankfurt am Main
Country: DE
Thawte, Inc.
Organization:
Thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 73:89:ba:74:bf:9f:53:60:70:63:2d:59:9e:3b:42:2cSerial Number (int): 153576345962841977451008014808933679660
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: a7:a2:83:bb:34:45:40:3d:fc:d5:30:4f:12:b9:3e:a1:01:9f:f6:db
Fingerprint (sha1): 0e:38:ff:8b:b8:73:e3:76:99:7b:2b:a5:0e:24:0c:56:c6:f2:6d:01
Fingerprint (sha256): 2e:bb:b2:3c:4c:74:e3:44:27:9d:85:a4:ab:9a:97:40:9c:ae:38:b4:43:d7:c2:08:50:65:34:23:37:22:96:de
Issuing Certificate URL: http://tb.symcb.com/tb.crt
Revocation information
OCSP Server: http://tb.symcd.comCRL Distribution Point: http://tb.symcb.com/tb.crl
Check the revocation status for certificate phxu.deronline.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for phxu.deronline.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
phxu.deronline.de
Other certificates including the domain name deronline.de
(limited to 100 certificates)
*.deronline.de
www.deronline.de
phxu.deronline.de
www.deronline.de
www6.deronline.de
*.deronline.de
www2.deronline.de
www1.deronline.de
www6.deronline.de
www1.deronline.de
www7.deronline.de
www3.deronline.de
www.deronline.de
*.deronline.de
*.deronline.de
www5.deronline.de
phxu-test.deronline.de
www.deronline.de
*.deronline.de
*.deronline.de
www2.deronline.de
phxu.deronline.de
www1.deronline.de
*.deronline.de
www2.deronline.de
www.deronline.de
www.deronline.de
phxu.deronline.de
www.deronline.de
www6.deronline.de
*.deronline.de
www2.deronline.de
www1.deronline.de
www6.deronline.de
www1.deronline.de
www7.deronline.de
www3.deronline.de
www.deronline.de
*.deronline.de
*.deronline.de
www5.deronline.de
phxu-test.deronline.de
www.deronline.de
*.deronline.de
*.deronline.de
www2.deronline.de
phxu.deronline.de
www1.deronline.de
*.deronline.de
www2.deronline.de
www.deronline.de
Certificate
The complete raw certificate details for phxu.deronline.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgIQc4m6dL+fU2BwYy1ZnjtCLDANBgkqhkiG9w0BAQUFADA8 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMRYwFAYDVQQDEw1U aGF3dGUgU1NMIENBMB4XDTE1MDUwNjAwMDAwMFoXDTE2MDUwNTIzNTk1OVowgYUx CzAJBgNVBAYTAkRFMQ8wDQYDVQQIEwZIZXNzZW4xGjAYBgNVBAcUEUZyYW5rZnVy dCBhbSBNYWluMRswGQYDVQQKFBJERVIgVG91cmlzdGlrIEdtYkgxEDAOBgNVBAsU B0RFUlRPVVIxGjAYBgNVBAMUEXBoeHUuZGVyb25saW5lLmRlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtUzbaRodkWFJ4QoSHOhMVYvlvF59crQPyBjq gmvPKEqYouYq/c+dvwqw1hYfV/9yVSctNAodVNsIpSSYsC0ePJ4QKLbQsWWFd2cR IgeY02TRHHYFcO+BkN743R3Aw+knD1gWs4qN6QtjROZCmbGigZAljyop8nldEnOA YQu2NR8/c5GKyreFkkHyLuFL7USdFEvuKd9AAbmlhmAvUol3wPGiSYyFVrGTvj+o Bivm4Dyt/PJFqYQSmGNcyZUs4FmNhE9T7MW5hSCNRmJq5CKXh9V7BB/KdZeNmdnb wXoIB+o8mXy3SLcMa5+LYGXoKOVsmy8Fd/a10nGSna+xoQ9m2wIDAQABo4IBczCC AW8wHAYDVR0RBBUwE4IRcGh4dS5kZXJvbmxpbmUuZGUwCQYDVR0TBAIwADBuBgNV HSAEZzBlMGMGBmeBDAECAjBZMCYGCCsGAQUFBwIBFhpodHRwczovL3d3dy50aGF3 dGUuY29tL2NwczAvBggrBgEFBQcCAjAjDCFodHRwczovL3d3dy50aGF3dGUuY29t L3JlcG9zaXRvcnkwDgYDVR0PAQH/BAQDAgWgMB8GA1UdIwQYMBaAFKeig7s0RUA9 /NUwTxK5PqEBn/bbMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6Ly90Yi5zeW1jYi5j b20vdGIuY3JsMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBXBggrBgEF BQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly90Yi5zeW1jZC5jb20wJgYIKwYB BQUHMAKGGmh0dHA6Ly90Yi5zeW1jYi5jb20vdGIuY3J0MA0GCSqGSIb3DQEBBQUA A4IBAQBoT04LvLoJMAmbOR20qBC1Z2QgIK6y6nzVHewo2+rH1QlQsfXj6KCaNcyZ S2T+bptsjNZnCzkrC1KBWjUqfmuUf6KxFcjCkYotCA31b1cytgcYusDIFGnv34yD uQtdsvCpFZNAIWU6L7uh1fyKmudwhHBeGJfqOBxUOCwZ28DkyIdzgEJOg7m1S8OW osF8QNSOqwttyA+hs5yck5bihCTGy7L18t1U93GCqOshd6h4rUsh+OWN28UXzeHJ GCbARPqOL1rJW+EhgiqX7yH76MeWxPSDhW9qOx46cHIDyCB0Y7nSZ9YQqJJIulU9 02MNhnXko+3d3XtpMGHHbEomGBj8 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtUzbaRodkWFJ4QoSHOhM VYvlvF59crQPyBjqgmvPKEqYouYq/c+dvwqw1hYfV/9yVSctNAodVNsIpSSYsC0e PJ4QKLbQsWWFd2cRIgeY02TRHHYFcO+BkN743R3Aw+knD1gWs4qN6QtjROZCmbGi gZAljyop8nldEnOAYQu2NR8/c5GKyreFkkHyLuFL7USdFEvuKd9AAbmlhmAvUol3 wPGiSYyFVrGTvj+oBivm4Dyt/PJFqYQSmGNcyZUs4FmNhE9T7MW5hSCNRmJq5CKX h9V7BB/KdZeNmdnbwXoIB+o8mXy3SLcMa5+LYGXoKOVsmy8Fd/a10nGSna+xoQ9m 2wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 153576345962841977451008014808933679660 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-05-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-05-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hessen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Frankfurt am Main' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'DER Touristik GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'DERTOUR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'phxu.deronline.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22887032833834970467831304617979654428024359685163247094207303973769852931982181183245629706078542658294367193112829228493915689690743949586057846109962038709675406591017234341157409168759482845222766384625192890334298467683766534815613858049295622225888607490600146186266537268761678362661771962340964070257218604939753866164612453482878428775675322867108631313565331000293699355829474522948798966091460221634879814518215354368077359978931532279598775373958694426203805004705030769732377609426229097413876616924857042004352915423861352285957210943213849238227518015775079950146097340739003163101677774114409159812827 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'phxu.deronline.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a7a283bb3445403dfcd5304f12b93ea1019ff6db . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tb.symcb.com/tb.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tb.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tb.symcb.com/tb.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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