kommunalportal.new.de
Issued by R3
About this certificate
This digital certificate with serial number 04:69:73:7d:0b:a9:d2:35:a4:e4:29:f7:07:89:41:76:69:9e was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=kommunalportal.new.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:69:73:7d:0b:a9:d2:35:a4:e4:29:f7:07:89:41:76:69:9eSerial Number (int): 384332302746923229237874390404335343659422
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 4c:7a:a9:3a:b4:6a:ce:42:a5:cd:24:b5:3a:2c:3d:10:85:3c:15:78
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 89:df:59:c1:1d:e3:72:17:1f:8a:67:a5:84:4a:84:19:18:9f:d0:f6
Fingerprint (sha256): 2f:a8:17:ed:5f:7e:23:76:b8:66:22:cd:16:a2:e3:c0:5d:34:0b:67:7e:1c:e5:c3:f0:b7:af:b0:9b:c0:c4:c1
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate kommunalportal.new.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kommunalportal.new.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kommunalportal.new.de
www.kommunalportal.new.de
www.kommunalportal.new.de
Other certificates including the domain name new.de
(limited to 100 certificates)
revenswan.science
suscripcion.tecnotrust.com
mapp-test.new.de
datenaustausch.new.de
link.marlim.co
www.danier.dev
kuemmern.new.de
intra.grosenia.link
mde-test.new.de
bewerbung.new.de
www.chronofit.net
meeting.vc.new.de
umfrage.new.de
pp.new.de
intranetcms.fibrastorage.com.mx
staging.backoffice.uapplyabroad.com
www.devtuple.in
ticketshop-moebus.new.de
www.estacaometeorologica.com
wimball.com
staging.elearning.kawandasss.com
www.qbila.org
auth.freech.zone
links.clubvtc.com
wdt.new.de
timio.new.de
www.swingdata.app
mapp.new.de
gwatool.veekel.one
kommunalportal.new.de
dynamopro.co
caminointegral.pe
car.indiacost.in
lucidstreamer.com
lumi.rootasjey.dev
mde-test.new.de
*.new.de
www.cbslabuan.com
meine.new.de
donate.tfkhdyt.my.id
mydoc.vip
kommunalportal-dev.new.de
app.ualasribeiro.com.br
bewerbung.new.de
ndes.new.de
www.simpleclub.nl
www.connecttokc.com
mapp.new.de
app.horde.no
www.new-energie.de
laden.new.de
kuemmern.new.de
playcribbage-online.com
meeting.we.new.de
app.betterwise.com
bolanfaq.se
gloryofgodcenter.org
abhisheknairofficial.com
*.apps.new.de
biblegpu.com
dev-sagt-admin.acuizen.com
www.momentum-events.co.za
www.dresez.com
www.burnr.io
eac.new.de
www.newjoshicateringservice.com
ro.test.funeasylearn.com
jsatom.everytale.com
eac.new.de
expe01.new.de
recover-hub.com
www.omnilogic.com.br
victorsandru.com
futureclima.ziggu.app
mde.new.de
svc-test.kukunawa.pl
www.verusperformance.de
samo.apps.new.de
mde-test.new.de
www.new.de
krishnapraneeth.in
ecwid-dev.banked.com
ticketshop-moebus.new.de
www.rogpd.ovh
www.lagoon.chat
admin.lezan.work
kuemmern.new.de
www.rs-protection.at
www.app.gonerocket.com
invite.getinshoot.com
laden.new.de
*.geo.new.de
hmbyye.piticommerce.com
kommunalportal.new.de
www.iotreeminds.com
classroom-components.illuminateed.net
www.361.ventures
new.de
aurypup.com
www.bluetor.io
suscripcion.tecnotrust.com
mapp-test.new.de
datenaustausch.new.de
link.marlim.co
www.danier.dev
kuemmern.new.de
intra.grosenia.link
mde-test.new.de
bewerbung.new.de
www.chronofit.net
meeting.vc.new.de
umfrage.new.de
pp.new.de
intranetcms.fibrastorage.com.mx
staging.backoffice.uapplyabroad.com
www.devtuple.in
ticketshop-moebus.new.de
www.estacaometeorologica.com
wimball.com
staging.elearning.kawandasss.com
www.qbila.org
auth.freech.zone
links.clubvtc.com
wdt.new.de
timio.new.de
www.swingdata.app
mapp.new.de
gwatool.veekel.one
kommunalportal.new.de
dynamopro.co
caminointegral.pe
car.indiacost.in
lucidstreamer.com
lumi.rootasjey.dev
mde-test.new.de
*.new.de
www.cbslabuan.com
meine.new.de
donate.tfkhdyt.my.id
mydoc.vip
kommunalportal-dev.new.de
app.ualasribeiro.com.br
bewerbung.new.de
ndes.new.de
www.simpleclub.nl
www.connecttokc.com
mapp.new.de
app.horde.no
www.new-energie.de
laden.new.de
kuemmern.new.de
playcribbage-online.com
meeting.we.new.de
app.betterwise.com
bolanfaq.se
gloryofgodcenter.org
abhisheknairofficial.com
*.apps.new.de
biblegpu.com
dev-sagt-admin.acuizen.com
www.momentum-events.co.za
www.dresez.com
www.burnr.io
eac.new.de
www.newjoshicateringservice.com
ro.test.funeasylearn.com
jsatom.everytale.com
eac.new.de
expe01.new.de
recover-hub.com
www.omnilogic.com.br
victorsandru.com
futureclima.ziggu.app
mde.new.de
svc-test.kukunawa.pl
www.verusperformance.de
samo.apps.new.de
mde-test.new.de
www.new.de
krishnapraneeth.in
ecwid-dev.banked.com
ticketshop-moebus.new.de
www.rogpd.ovh
www.lagoon.chat
admin.lezan.work
kuemmern.new.de
www.rs-protection.at
www.app.gonerocket.com
invite.getinshoot.com
laden.new.de
*.geo.new.de
hmbyye.piticommerce.com
kommunalportal.new.de
www.iotreeminds.com
classroom-components.illuminateed.net
www.361.ventures
new.de
aurypup.com
www.bluetor.io
Certificate
The complete raw certificate details for kommunalportal.new.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEHzCCAwegAwIBAgISBGlzfQup0jWk5Cn3B4lBdmmeMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDIwNDI2MDdaFw0yNDA3MDEwNDI2MDZaMCAxHjAcBgNVBAMT FWtvbW11bmFscG9ydGFsLm5ldy5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBANHo9BBKfJYwWifK/V253uslT0gINoXOz5Fsv97RDlU9EVSC547q8Bf/ OYMDOEiVRwAVV5yg0XmtFnb51bMtzbjl/UQlJiW2NflwE3cjh2nvHs7eg1D0Rd9a nJU/NE1PEBVesz3Brmv8IDQrFMQ6d/crTcfY3Dn1rhRepLX71V+spvpbSLXa6vtc x6ipsQJ/Cj18okNaAxmN0nYwlqK5Icug2I6zYdxkfPW+6e43j/9KEmkhSLX6jXm4 tbc5izOruWq3CK20z0EqwkyzwlOJVnJ1KYYM69mhOt6tyljEfXdaQFCScbBefzp2 BBc5loQ+IXmvQYzrsEtrpbXgoq67e2ECAwEAAaOCAT8wggE7MA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIw ADAdBgNVHQ4EFgQUTHqpOrRqzkKlzSS1Oiw9EIU8FXgwHwYDVR0jBBgwFoAUFC6z F7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVo dHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxl bmNyLm9yZy8wOwYDVR0RBDQwMoIVa29tbXVuYWxwb3J0YWwubmV3LmRlghl3d3cu a29tbXVuYWxwb3J0YWwubmV3LmRlMBMGA1UdIAQMMAowCAYGZ4EMAQIBMBMGCisG AQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQABJcjj3ByKJhq6Yfwr ZF5q0+KhXtFhwbeHeQ3kStAspD7vLSOy+rTOrhCDM+l9MFSkfPs42zX/XDumyRNU sSdx/3NZCYc6KxC7/3x/aNh9cyGKA5Abp8Rnt8YuXh5Ig1t/QNmsN4ZzWi//6xdw yKKHXWdWe3TQtG2F5/NxE34fRpN5mE3xTLhILIsBdXYUmWVfqtLDeggW6YCm6enF mzHCHfr4A3d6d21iBMULDpdRAMiC9JLr109sGZBlu7ki/GByl1TZT1ET9Uo4SD9p JbscMHwUMyjzwMbOLz0XqojC5wtM4HsUcx2x7rlMP5tu6aI0aP8/0RnupM+Sn2dg ppay -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ej0EEp8ljBaJ8r9Xbne 6yVPSAg2hc7PkWy/3tEOVT0RVILnjurwF/85gwM4SJVHABVXnKDRea0WdvnVsy3N uOX9RCUmJbY1+XATdyOHae8ezt6DUPRF31qclT80TU8QFV6zPcGua/wgNCsUxDp3 9ytNx9jcOfWuFF6ktfvVX6ym+ltItdrq+1zHqKmxAn8KPXyiQ1oDGY3SdjCWorkh y6DYjrNh3GR89b7p7jeP/0oSaSFItfqNebi1tzmLM6u5arcIrbTPQSrCTLPCU4lW cnUphgzr2aE63q3KWMR9d1pAUJJxsF5/OnYEFzmWhD4hea9BjOuwS2ulteCirrt7 YQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 384332302746923229237874390404335343659422 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-02 04:26:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-01 04:26:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kommunalportal.new.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26498679327816063491936492367765117265468216086399279076852505979028975799592681319339006714828380958060018719365511723335300412824978508817624565089153472839986371574387613401311523865627941346057333619233551967603936167947017186466237687069212713803169973767291637928303891446725819950951121756799250401873209648819082212968394673318667794768288018854776846290095558485673266107784172884345674168938943632653256189099484557881825386708203449443818089078163114019392839017872112970952236859578300792945341009030760930351426481014606953024752623444450155737610224444584860457394423619115149306921126582008897169226593 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4c7aa93ab46ace42a5cd24b53a2c3d10853c1578 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kommunalportal.new.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kommunalportal.new.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 000125c8e3dc1c8a261aba61fc2b645e6ad3e2a15ed161c1b787790de44ad02ca43eef2d23b2fab4ceae108333e97d3054a47cfb38db35ff5c3ba6c91354b12771ff735909873a2b10bbff7c7f68d87d73218a03901ba7c467b7c62e5e1e48835b7f40d9ac3786735a2fffeb1770c8a2875d67567b74d0b46d85e7f371137e1f469379984df14cb8482c8b0175761499655faad2c37a0816e980a6e9e9c59b31c21dfaf803777a776d6204c50b0e975100c882f492ebd74f6c199065bbb922fc60729754d94f5113f54a38483f6925bb1c307c143328f3c0c6ce2f3d17aa88c2e70b4ce07b14731db1eeb94c3f9b6ee9a23468ff3fd119eea4cf929f6760a696b2